-
Notifications
You must be signed in to change notification settings - Fork 528
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WIP] rbd: add additional space for encrypted volumes #4582
base: devel
Are you sure you want to change the base?
[WIP] rbd: add additional space for encrypted volumes #4582
Conversation
minikube testing, Created a 1GiB block-mode pvc, and then expanded to 2GiB
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Add E2E checks new size.
b7586df
to
850dd3a
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
850dd3a
to
357a727
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
29e4f91
to
4f0f3fc
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
@Mergifyio rebase This causes a run of the GitHub CI jobs. Logs for ci/centos/mini-e2e-helm/k8s-1.28 show that e2e passed earlier. |
4f0f3fc
to
69aeda7
Compare
✅ Branch has been successfully rebased |
227bcf0
to
a4eabb3
Compare
/test ci/centos/mini-e2e/k8s-1.28 |
7b79d41
to
ca95618
Compare
/test ci/centos/mini-e2e/k8s-1.29/test_type-rbd |
/test ci/centos/mini-e2e/k8s-1.29 |
@karthik-us, is this the correct command to run |
/test ci/centos/mini-e2e/k8s-1.29 |
ca95618
to
72252c7
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
72252c7
to
9d52790
Compare
9d52790
to
b8c9e50
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
624153c
to
d756a9d
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed in two weeks if no further activity occurs. Thank you for your contributions. |
d756a9d
to
de7dc06
Compare
issue: when a block-mode pvc is created with encryption enabled there is some space reserved for the encryption metadata. Which doesn't allows users to write extact amount of data that they have requested for. solution: create pvc with extra space needed for the encryption metadata. `GetLuksHeaderSize()` function returns the luks2 encryption metadata(header size). The extra space is added during the CreateVolume and ExpandVolume operations. And while returning the response remove the extra space so the client/user gets the requested size reported. Signed-off-by: Praveen M <m.praveen@ibm.com>
de7dc06
to
2c82ef6
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
1 similar comment
/test ci/centos/mini-e2e/k8s-1.29 |
f9d3bd5
to
267715e
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
267715e
to
38a71b5
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
This commit adds testcase for the create/resize/clone/restore operations for a RBD block PVC and validate imageSize and deviceSize. Signed-off-by: Praveen M <m.praveen@ibm.com>
38a71b5
to
bc141c1
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
Describe what this PR does
rbd: add additional space for encrypted volumes
issue: when a block-mode pvc is created with encryption enabled
there is some space reserved for the encryption metadata.
Which doesn't allows users to write extact amount of data that
they have requested for.
solution: create pvc with extra space needed for the encryption
metadata.
GetLuksHeaderSize()
function returns the luks2encryption metadata(header size).
The extra space is added during the CreateVolume and ExpandVolume
operations. And while returning the response remove the extra space
so the client/user gets the requested size reported.
Test result:
$ k exec rbd-pod-e -- blockdev --getsize64 /dev/xvda 2147483648
Related issues
Fixes: #issue_number
Checklist:
Show available bot commands
These commands are normally not required, but in case of issues, leave any of
the following bot commands in an otherwise empty comment in this PR:
/retest ci/centos/<job-name>
: retest the<job-name>
after unrelatedfailure (please report the failure too!)