]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 707c78b) | patch
Rework ceph-disk to allow LUKS for encrypted partitions
authorAndrew Bartlett <abartlet@catalyst.net.nz>
Thu, 30 Oct 2014 21:29:36 +0000 (10:29 +1300)
committerAndrew Bartlett <abartlet@samba.org>
Fri, 30 Jan 2015 01:34:42 +0000 (14:34 +1300)
commitc83a288ab84bf06cd9b09e823626a2ccdf2852f9
tree42dcfa1362c19503f429efdfa8426bc2ddf21bfatree | snapshot
parent707c78b57b849da484d2fd18c4d9fc4114b8a7a1commit | diff
Rework ceph-disk to allow LUKS for encrypted partitions

LUKS allows for validation of the key at mount time (rather than
simply mounting a random partition), specification of the encryption
parameters in the header and key rollover of the slot key (the one
that needs to be stored).

New parameters 'osd cryptsetup parameters' and 'osd dmcrypt key size' are
added.  These allow these important policy choices to be overridden or
kept consistent per-site.

The previous default plain mode (rather than using LUKS) remains, select
LUKS by setting 'osd dmcrypt type = luks'

Signed-off-by: Andrew Bartlett <abartlet@catalyst.net.nz>
src/ceph-disk diff | blob | history
src/ceph-disk-udev diff | blob | history
udev/95-ceph-osd.rules diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.