block/rbd: Add luks-any encryption opening option

author Or Ozeri <oro@il.ibm.com>

Sun, 29 Jan 2023 11:31:19 +0000 (05:31 -0600)

committer Kevin Wolf <kwolf@redhat.com>

Thu, 23 Feb 2023 18:49:35 +0000 (19:49 +0100)
author Or Ozeri <oro@il.ibm.com>
Sun, 29 Jan 2023 11:31:19 +0000 (05:31 -0600)
committer Kevin Wolf <kwolf@redhat.com>
Thu, 23 Feb 2023 18:49:35 +0000 (19:49 +0100)
diff --git a/block/rbd.c b/block/rbd.c

index 4bd75c9bb7174c95486432c3b3570b5d9c2f0d7d..744f84c222a8692ab254392cb7445efc6e98975f 100644 (file)
--- a/block/rbd.c
+++ b/block/rbd.c
@@ -469,6 +469,9 @@ static int qemu_rbd_encryption_load(rbd_image_t image,
      g_autofree char *passphrase = NULL;
      rbd_encryption_luks1_format_options_t luks_opts;
      rbd_encryption_luks2_format_options_t luks2_opts;
+#ifdef LIBRBD_SUPPORTS_ENCRYPTION_LOAD2
+    rbd_encryption_luks_format_options_t luks_any_opts;
+#endif
      rbd_encryption_format_t format;
      rbd_encryption_options_t opts;
      size_t opts_size;
@@ -502,6 +505,22 @@ static int qemu_rbd_encryption_load(rbd_image_t image,
              luks2_opts.passphrase = passphrase;
              break;
          }
+#ifdef LIBRBD_SUPPORTS_ENCRYPTION_LOAD2
+        case RBD_IMAGE_ENCRYPTION_FORMAT_LUKS_ANY: {
+            memset(&luks_any_opts, 0, sizeof(luks_any_opts));
+            format = RBD_ENCRYPTION_FORMAT_LUKS;
+            opts = &luks_any_opts;
+            opts_size = sizeof(luks_any_opts);
+            r = qemu_rbd_convert_luks_options(
+                    qapi_RbdEncryptionOptionsLUKSAny_base(&encrypt->u.luks_any),
+                    &passphrase, &luks_any_opts.passphrase_size, errp);
+            if (r < 0) {
+                return r;
+            }
+            luks_any_opts.passphrase = passphrase;
+            break;
+        }
+#endif
          default: {
              r = -ENOTSUP;
              error_setg_errno(
diff --git a/qapi/block-core.json b/qapi/block-core.json

index 7f331eb8eaca7b70756da8a48d8ab784ca8e6c9a..5f09b1d31a43f6ed5d505f38a0f9e23d8592c537 100644 (file)
--- a/qapi/block-core.json
+++ b/qapi/block-core.json
@@ -3922,10 +3922,12 @@
  ##
  # @RbdImageEncryptionFormat:
  #
+# @luks-any: Used for opening either luks or luks2 (Since 8.0)
+#
  # Since: 6.1
  ##
  { 'enum': 'RbdImageEncryptionFormat',
-  'data': [ 'luks', 'luks2' ] }
+  'data': [ 'luks', 'luks2', 'luks-any' ] }
  
  ##
  # @RbdEncryptionOptionsLUKSBase:
@@ -3967,6 +3969,15 @@
    'base': 'RbdEncryptionOptionsLUKSBase',
    'data': { } }
  
+##
+# @RbdEncryptionOptionsLUKSAny:
+#
+# Since: 8.0
+##
+{ 'struct': 'RbdEncryptionOptionsLUKSAny',
+  'base': 'RbdEncryptionOptionsLUKSBase',
+  'data': { } }
+
  ##
  # @RbdEncryptionCreateOptionsLUKS:
  #
@@ -3994,7 +4005,8 @@
    'base': { 'format': 'RbdImageEncryptionFormat' },
    'discriminator': 'format',
    'data': { 'luks': 'RbdEncryptionOptionsLUKS',
-            'luks2': 'RbdEncryptionOptionsLUKS2' } }
+            'luks2': 'RbdEncryptionOptionsLUKS2',
+            'luks-any': 'RbdEncryptionOptionsLUKSAny'} }
  
  ##
  # @RbdEncryptionCreateOptions:
author	Or Ozeri <oro@il.ibm.com>
	Sun, 29 Jan 2023 11:31:19 +0000 (05:31 -0600)
committer	Kevin Wolf <kwolf@redhat.com>
	Thu, 23 Feb 2023 18:49:35 +0000 (19:49 +0100)
block/rbd.c		patch \| blob \| blame \| history
qapi/block-core.json		patch \| blob \| blame \| history