-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
None
-
False
-
-
False
-
?
-
?
-
?
-
?
-
None
-
-
-
Moderate
Hi Folks,
I working on developing a workload for test created a encrypted volume and attaching it to vm it fails when the encryption-key-size is 512
logs:
15+00:00 stdout F 2024-09-10 21:08:39.985 1 ERROR barbican.tasks.resources barbican.plugin.crypto.base.CryptoPluginUnsupportedOperation: Could not find an enabled crypto plugin backend that supports the requested operation: store or generate a secret of type SYMMETRIC_KEY_GENERATION with algorithm aes, bit length 512, and mode None
[kni@d16-h02-000-r650 debug_ssh]$ openstack volume create --size 1 --type test-key-size-512 test Key manager error (HTTP 400) (Request-ID: req-04684c46-9169-4a61-b282-7011ed0732a9)
however i'm able to create encrypted volume with key-size to 256 and attach it to vm
[kni@d16-h02-000-r650 debug_ssh]$ openstack volume type create --encryption-provider nova.volume.encryptors.luks.LuksEncryptor --encryption-cipher aes-xts-plain64 --encryption-key-size 256 --encryption-control-location front-end test1 +-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ | Field | Value | +-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ | description | None | | encryption | cipher='aes-xts-plain64', control_location='front-end', encryption_id='f93bb2c3-2c46-4541-9992-6258fda6123d', key_size='256', provider='nova.volume.encryptors.luks.LuksEncryptor' | | id | ee486a41-2cbc-45d1-b2db-99084191659a | | is_public | True | | name | test1 | +-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ [kni@d16-h02-000-r650 debug_ssh]$ openstack volume create --size 1 --type test1 test +---------------------+--------------------------------------+ | Field | Value | +---------------------+--------------------------------------+ | attachments | [] | | availability_zone | nova | | bootable | false | | consistencygroup_id | None | | created_at | 2024-09-10T21:09:21.425419 | | description | None | | encrypted | True | | id | fe334e14-ceb6-404c-8856-8147930c60be | | migration_status | None | | multiattach | False | | name | test | | properties | | | replication_status | None | | size | 1 | | snapshot_id | None | | source_volid | None | | status | creating | | type | test1 | | updated_at | None | | user_id | 05ce606de03a4b4fb7153fe5eb9f62f0 |
