[LU-17138] Avoid poor performing crypto engines for client-side encryption - Whamcloud Community JIRA

Details

Type: Bug
Resolution: Fixed
Priority: Minor
Fix Version/s: Lustre 2.16.0
Affects Version/s: Lustre 2.16.0
Labels:
- encryption
- patch

Severity:
3
Rank (Obsolete):
9223372036854775807

Description

Lustre client encryption relies on the llcrypt lib to carry out encryption/decryption. This lib leverages the kernel Crypto API to choose the crypto cipher to use. By default it looks for generic implementations of xts(aes), cts(cbc(aes)) and cbc(aes).

While this is fine most of the time, we might want to avoid using some cipher implementations that register under the generic name. For instance, if a cipher is provided by an external accelerator card, we might want to avoid it and prefer in-CPU engines.

Attachments

Activity

[LU-17138] Avoid poor performing crypto engines for client-side encryption

Peter Jones added a comment - 28/Oct/23 1:09 AM

Landed for 2.16

Peter Jones added a comment - 28/Oct/23 1:09 AM Landed for 2.16

Gerrit Updater added a comment - 25/Oct/23 6:07 PM

"Oleg Drokin <green@whamcloud.com>" merged in patch https://review.whamcloud.com/c/fs/lustre-release/+/52477/
Subject: ~~LU-17138~~ enc: prefer specific crypto engines
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: 056eb9dcc0d5f80451c400342d54037f6de24bd9

Gerrit Updater added a comment - 25/Oct/23 6:07 PM "Oleg Drokin <green@whamcloud.com>" merged in patch https://review.whamcloud.com/c/fs/lustre-release/+/52477/ Subject: LU-17138 enc: prefer specific crypto engines Project: fs/lustre-release Branch: master Current Patch Set: Commit: 056eb9dcc0d5f80451c400342d54037f6de24bd9

Gerrit Updater added a comment - 22/Sep/23 4:42 PM

"Sebastien Buisson <sbuisson@ddn.com>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/52477
Subject: ~~LU-17138~~ enc: prefer specific crypto engines
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 314b2281a7fb73fdb4560d5a6746a4781c4a9030

Gerrit Updater added a comment - 22/Sep/23 4:42 PM "Sebastien Buisson <sbuisson@ddn.com>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/52477 Subject: LU-17138 enc: prefer specific crypto engines Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 314b2281a7fb73fdb4560d5a6746a4781c4a9030

People

Assignee:: Sebastien Buisson

Reporter:: Sebastien Buisson

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 22/Sep/23 4:32 PM

Updated:: 28/Oct/23 1:09 AM

Resolved:: 28/Oct/23 1:09 AM