[libvirt] [PATCH 0/2] A couple of volume encryption patches

Michal Privoznik mprivozn at redhat.com
Mon Sep 12 12:00:11 UTC 2016

On 06.09.2016 23:16, John Ferlan wrote:
> I'm assume there will be a couple of bz's on these...
> Patch 1 fixes a problem where the vol-dumpxml would not list the <secret>
> element from a volume in a pool after the initial creation and a pool
> refresh (or libvirtd restart). This issue was missed due to rewriting
> the LUKS support to not use it's own "new" secret type (key), but rather
> use the existing "volume" secret type.
> Patch 2 fixes a problem where QCOW2 (or QCOW1) encrypted volume would
> lose the <encryption> and <secret> after a volume refresh. Details are
> in the patch. The issue is rooted in proper detection of the volume type
> during the virStorageFileGetMetadataFromBuf call.
> John Ferlan (2):
>   storage: Need to refresh secret for luks volume after volume refresh
>   storage: Need to properly read the crypt offset value
>  src/storage/storage_backend_fs.c | 16 ++++++++++------
>  src/util/virstoragefile.c        |  7 +++++--
>  2 files changed, 15 insertions(+), 8 deletions(-)

ACK to both.


More information about the libvir-list mailing list