RepoMirrors/ceph
1
0
Fork 0
mirror of https://github.com/ceph/ceph synced 2025-03-11 02:39:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Change ceph-disk default to use LUKS for encrypted partitions

Browse Source 
LUKS allows for validation of the key at mount time (rather than
simply mounting a random partition), specification of the encryption
parameters in the header and key rollover of the slot key (the one
that needs to be stored).

The previous default, plain mode (rather than using LUKS) is available
by setting 'osd dmcrypt type = plain'

Existing encrypted OSDs are still recognised and used, only new
OSDs now use LUKS.

Signed-off-by: Andrew Bartlett <abartlet@catalyst.net.nz>
This commit is contained in:
Andrew Bartlett 2014-11-05 11:38:41 +13:00 committed by Andrew Bartlett
parent c83a288ab8
commit 998b461536
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/ceph-disk
View File

@ -1582,7 +1582,7 @@ def main_prepare(args):
)
if dmcrypt_type is None:
dmcrypt_type = "plain"
dmcrypt_type = "luks"
if dmcrypt_type == "plain":
if dmcrypt_keysize_str is None: