Open qkrorlqr opened 5 months ago
qkrorlqr
commented
4 months ago The same logic will work just fine for all media kinds actually (STORAGE_MEDIA_SSD, STORAGE_MEDIA_HYBRID, etc.). But it will be in conflict with https://github.com/ydb-platform/nbs/issues/9 (encrypted data cannot be compressed).
danmx
commented
4 months ago @qkrorlqr what about compressing before encryption?
qkrorlqr
commented
4 months ago right now encryption is implemented several layers closer to the client than the place where we can efficiently compress data to store it in a compressed form
we can compress before encryption but the implementation will be more cumbersome
it's of course doable - just harder
drbasic
commented
3 weeks ago Нет смысла ограничиваться и проверять на нули только часть блока. Проще проверять целиком. Алгоритм все равно остановится на первом не нулевом байте и время на проверку будет одинаковое.
We can implement default encryption for STORAGE_MEDIASSD{NONREPLICATED,MIRROR2,MIRROR3} both at rest and in transit by encrypting data at the endpoint level - just like user key-based encryption. The default key can be generated upon CreateVolume and stored in NProto::TVolumeConfig and then propagated to the endpoint upon MountVolume. The only remaining problem is the performance hit which is currently mostly caused by the need to update UsedBlockMap in the volume database. But actually we don't need this bitmap. A good encryption algorithm should produce data that's indistinguishable from the data generated by a uniform random generator. Therefore we don't need this bitmap - we can simply check that the block that we have just read from the storage node contains only zeroes - if so, we should not decrypt this block, otherwise - decrypt. We don't even have to check the whole block - checking the first 128 bytes should be more than enough. And just in case (which should be literally impossible - P=1/2^1024) an encrypted block contains zeroes in the first 128 bytes, we can check it upon write and report a E_IO or a E_ARGUMENT error to the client and raise a CriticalEvent. This endpoint-level encryption is also great because it won't impact the vhost-server-based fast rdma datapath - we will just disable it at the fastpath endpoint level.