Add dm-crypt interface to microceph

icey · May 2, 2023, 12:45pm

Hey,

Could the recent upload of microceph adding support for the dm-crypt interface be approved? It adds support for encrypting Ceph OSDs in microceph!

It would also be appreciated if this interface could be auto-connected as a user asking to encrypt a disk would be surprised that the command didn’t work (microceph disk add --encrypt /dev/sdg). The dm-crypt support in microceph is only used when a user explicitly asks to use encryption.

icey · May 2, 2023, 12:55pm

this is the change that added the dm-crypt support to microceph, with the snap’s code and a snap service helper to consume it

ogra · May 2, 2023, 1:02pm

i have moved your post into the store-requests category so it shows up in the correct queue …

alexmurray · May 2, 2023, 8:48pm

Since this is only used in this case, would it be possible to try and detect at this time whether the interface is connected (snapctl is-connected dm-crypt), and if not, ask the user to connect it manually?

petersabaini · May 3, 2023, 1:20pm

It might be possible to try and detect this, it’s a bit against MicroCephs idea of simplicity however – so from my POV it would be preferable to make the user experience as simple as possible, making “just work”. Are there security concerns around auto-connecting?

alexmurray · May 4, 2023, 1:42am

There is no specific concern here - just that the use of super-privileged interfaces should be minimised and auto-connecting it increases the attack surface - so if possible it is best to minimise privileges and hence connect it on demand rather than by default.

icey · May 4, 2023, 1:14pm

Hey @alexmurray, we’ve discussed and will add in checks for the interface being connected to nicely handle the case where it isn’t; given that, we’re happy (ok, we’re accepting ) with it not auto-connecting. In the meantime, are there any other questions or concerns about the interface, or could it be approved without auto-connection at this point?

alexmurray · May 4, 2023, 11:27pm

@icey that sounds great. +1 from me for use of (but not auto-connect) dm-crypt for microceph.

Note as per the Process for aliases, auto-connections and tracks there is a 7 day voting period for other @reviewers to add their vote, then this can be tallied and actioned.

alexmurray · May 16, 2023, 7:10am

Can other @reviewers please vote on this request?

dclane · May 16, 2023, 7:24am

No concerns. +1 from me for microceph usage of dm-crypt (without auto-connect).

dclane · May 17, 2023, 1:58am

+2 votes for, 0 against. Granting microceph use of dm-crypt interface. This is now live.