Luks device naming cleanup

Adjusts naming in the LUKS package

Author: jharrod

frontend/csi/controller_helpers/kubernetes/import.go

@@ -116,7 +116,7 @@ func (h *helper) ImportVolume(
 	// LUKS annotation should be accepted as either "LUKSEncryption" or "luksEncryption" to match storage pools.
 	if luksAnnotation := getCaseFoldedAnnotation(claim.GetObjectMeta().GetAnnotations(), AnnLUKSEncryption); luksAnnotation != "" {
 		if convert.ToBool(luksAnnotation) {
-			dataSize -= luks.LUKSMetadataSize
+			dataSize -= luks.MetadataSize
 		}
 	}
 

frontend/csi/node_server.go

@@ -584,7 +584,7 @@ func (p *Plugin) nodeExpandVolume(
 
 	devicePath := publishInfo.DevicePath
 	if convert.ToBool(publishInfo.LUKSEncryption) {
-		if !luks.IsLegacyLUKSDevicePath(devicePath) {
+		if !luks.IsLegacyDevicePath(devicePath) {
 			devicePath, err = p.devices.GetLUKSDeviceForMultipathDevice(devicePath)
 			if err != nil {
 				Logc(ctx).WithFields(LogFields{
@@ -1330,7 +1330,7 @@ func (p *Plugin) nodeStageFCPVolume(
 		}
 
 		var luksDevice luks.Device
-		luksDevice = luks.NewLUKSDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
+		luksDevice = luks.NewDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
 
 		// Ensure we update the passphrase in case it has never been set before
 		err = ensureLUKSVolumePassphrase(ctx, p.restClient, luksDevice, volumeId, req.GetSecrets(), true)
@@ -1393,7 +1393,7 @@ func (p *Plugin) nodeUnstageFCPVolume(
 			var luksMapperPath string
 			fields := LogFields{"device": publishInfo.DevicePath}
 			// Set device path to dm device to correctly verify legacy volumes.
-			if luks.IsLegacyLUKSDevicePath(publishInfo.DevicePath) {
+			if luks.IsLegacyDevicePath(publishInfo.DevicePath) {
 				luksMapperPath = publishInfo.DevicePath
 				dmPath, err := luks.GetDmDevicePathFromLUKSLegacyPath(ctx, p.command,
 					publishInfo.DevicePath)
@@ -1482,7 +1482,7 @@ func (p *Plugin) nodeUnstageFCPVolume(
 		}
 
 		// Set device path to dm device to correctly verify legacy volumes.
-		if luks.IsLegacyLUKSDevicePath(publishInfo.DevicePath) {
+		if luks.IsLegacyDevicePath(publishInfo.DevicePath) {
 			publishInfo.DevicePath = deviceInfo.MultipathDevice
 		}
 	}
@@ -1615,16 +1615,16 @@ func (p *Plugin) nodePublishFCPVolume(
 		// Rotate the LUKS passphrase if needed, on failure, log and continue to publish
 
 		var luksDevice luks.Device
-		if luks.IsLegacyLUKSDevicePath(devicePath) {
+		if luks.IsLegacyDevicePath(devicePath) {
 			// Supports legacy volumes that store the LUKS device path
-			luksDevice, err = luks.NewLUKSDeviceFromMappingPath(
+			luksDevice, err = luks.NewDeviceFromMappingPath(
 				ctx, p.command, devicePath, req.VolumeContext["internalName"],
 			)
 			if err != nil {
 				return nil, status.Error(codes.Internal, err.Error())
 			}
 		} else {
-			luksDevice = luks.NewLUKSDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
+			luksDevice = luks.NewDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
 		}
 
 		err = ensureLUKSVolumePassphrase(ctx, p.restClient, luksDevice, req.GetVolumeId(), req.GetSecrets(), false)
@@ -1782,7 +1782,7 @@ func (p *Plugin) nodeStageISCSIVolume(
 		}
 
 		var luksDevice luks.Device
-		luksDevice = luks.NewLUKSDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
+		luksDevice = luks.NewDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
 
 		// Ensure we update the passphrase in case it has never been set before
 		err = ensureLUKSVolumePassphrase(ctx, p.restClient, luksDevice, volumeId, req.GetSecrets(), true)
@@ -1889,7 +1889,7 @@ func (p *Plugin) nodeUnstageISCSIVolume(
 			var luksMapperPath string
 			fields := LogFields{"device": publishInfo.DevicePath}
 			// Set device path to dm device to correctly verify legacy volumes.
-			if luks.IsLegacyLUKSDevicePath(publishInfo.DevicePath) {
+			if luks.IsLegacyDevicePath(publishInfo.DevicePath) {
 				luksMapperPath = publishInfo.DevicePath
 				dmPath, err := luks.GetDmDevicePathFromLUKSLegacyPath(ctx, p.command,
 					publishInfo.DevicePath)
@@ -1977,7 +1977,7 @@ func (p *Plugin) nodeUnstageISCSIVolume(
 		}
 
 		// Set device path to dm device to correctly verify legacy volumes.
-		if luks.IsLegacyLUKSDevicePath(publishInfo.DevicePath) {
+		if luks.IsLegacyDevicePath(publishInfo.DevicePath) {
 			publishInfo.DevicePath = deviceInfo.MultipathDevice
 		}
 	}
@@ -2152,12 +2152,12 @@ func (p *Plugin) nodePublishISCSIVolume(
 		// Rotate the LUKS passphrase if needed, on failure, log and continue to publish
 		var luksDevice luks.Device
 		var err error
-		if luks.IsLegacyLUKSDevicePath(devicePath) {
+		if luks.IsLegacyDevicePath(devicePath) {
 			// Supports legacy volumes that store the LUKS device path
-			luksDevice, err = luks.NewLUKSDeviceFromMappingPath(ctx, p.command, devicePath,
+			luksDevice, err = luks.NewDeviceFromMappingPath(ctx, p.command, devicePath,
 				req.VolumeContext["internalName"])
 		} else {
-			luksDevice = luks.NewLUKSDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
+			luksDevice = luks.NewDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
 		}
 
 		if err != nil {
@@ -2866,7 +2866,7 @@ func (p *Plugin) nodeStageNVMeVolume(
 	}
 
 	if isLUKS {
-		luksDevice := luks.NewLUKSDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
+		luksDevice := luks.NewDevice(publishInfo.DevicePath, req.VolumeContext["internalName"], p.command)
 
 		// Ensure we update the passphrase in case it has never been set before
 		err = ensureLUKSVolumePassphrase(ctx, p.restClient, luksDevice, volumeId, req.GetSecrets(), true)
@@ -3070,7 +3070,7 @@ func (p *Plugin) nodePublishNVMeVolume(
 	devicePath := publishInfo.DevicePath
 	if convert.ToBool(publishInfo.LUKSEncryption) {
 		// Rotate the LUKS passphrase if needed, on failure, log and continue to publish
-		luksDevice := luks.NewLUKSDevice(devicePath, req.VolumeContext["internalName"], p.command)
+		luksDevice := luks.NewDevice(devicePath, req.VolumeContext["internalName"], p.command)
 
 		err = ensureLUKSVolumePassphrase(ctx, p.restClient, luksDevice, req.GetVolumeId(), req.GetSecrets(), false)
 		if err != nil {

frontend/csi/node_server_test.go

@@ -2267,7 +2267,7 @@ func TestNodeUnstageISCSIVolume(t *testing.T) {
 				return mockNodeHelper
 			},
 		},
-		"SAN: iSCSI unstage: GetUnderlyingDevicePathForLUKSDevice error": {
+		"SAN: iSCSI unstage: GetUnderlyingDevicePathForDevice error": {
 			assertError: assert.NoError,
 			request:     NewNodeUnstageVolumeRequestBuilder().Build(),
 			publishInfo: NewVolumePublishInfoBuilder(TypeiSCSIVolumePublishInfo).WithLUKSEncryption("true").Build(),

mocks/mock_utils/mock_devices/mock_luks/mock_luks.go

@@ -4422,7 +4422,7 @@ func incrementWithLUKSMetadataIfLUKSEnabled(ctx context.Context, size uint64, lu
 	}
 
 	if isLUKS {
-		return size + luks.LUKSMetadataSize
+		return size + luks.MetadataSize
 	}
 
 	return size
@@ -4435,13 +4435,13 @@ func decrementWithLUKSMetadataIfLUKSEnabled(ctx context.Context, size uint64, lu
 		Logc(ctx).WithError(err).Debug("Could not parse luksEncryption string.")
 	}
 
-	if luks.LUKSMetadataSize > size {
+	if luks.MetadataSize > size {
 		Logc(ctx).WithError(err).WithField("size", size).Error("Size too small to subtract LUKS metadata.")
 		return 0
 	}
 
 	if isLUKS {
-		return size - luks.LUKSMetadataSize
+		return size - luks.MetadataSize
 	}
 
 	return size

storage_drivers/ontap/ontap_common.go

@@ -756,7 +756,7 @@ func (d *SANStorageDriver) Import(ctx context.Context, volConfig *storage.Volume
 	volConfig.Size = lunInfo.Size
 
 	if convert.ToBool(volConfig.LUKSEncryption) {
-		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.LUKSMetadataSize)
+		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.MetadataSize)
 		if err != nil {
 			return err
 		}

storage_drivers/ontap/ontap_san.go

@@ -942,7 +942,7 @@ func (d *SANEconomyStorageDriver) Import(
 	volConfig.Size = extantLUN.Size
 
 	if convert.ToBool(volConfig.LUKSEncryption) {
-		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.LUKSMetadataSize)
+		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.MetadataSize)
 		if err != nil {
 			return err
 		}

storage_drivers/ontap/ontap_san_economy.go

@@ -685,7 +685,7 @@ func (d *NVMeStorageDriver) Import(ctx context.Context, volConfig *storage.Volum
 	// If the import is a LUKS encrypted volume, then remove the LUKS metadata overhead from the reported
 	// size on the volConfig.
 	if convert.ToBool(volConfig.LUKSEncryption) {
-		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.LUKSMetadataSize)
+		newSize, err := subtractUintFromSizeString(volConfig.Size, luks.MetadataSize)
 		if err != nil {
 			return err
 		}

storage_drivers/ontap/ontap_san_nvme.go

@@ -19,13 +19,13 @@ import (
 )
 
 const (
-	luksDevicePrefix = "luks-"
+	devicePrefix = "luks-"
 	// LUKS2 requires ~16MiB for overhead. Default to 18MiB just in case.
-	LUKSMetadataSize = 18874368
+	MetadataSize = 18874368
 )
 
 type Device interface {
-	EnsureLUKSDeviceMappedOnHost(ctx context.Context, name string, secrets map[string]string) (bool, error)
+	EnsureDeviceMappedOnHost(ctx context.Context, name string, secrets map[string]string) (bool, error)
 	MappedDevicePath() string
 	MappedDeviceName() string
 	RawDevicePath() string
@@ -42,8 +42,8 @@ type LUKSDevice struct {
 	osFs             afero.Fs
 }
 
-func NewLUKSDevice(rawDevicePath, volumeId string, command execCmd.Command) *LUKSDevice {
-	luksDeviceName := luksDevicePrefix + volumeId
+func NewDevice(rawDevicePath, volumeId string, command execCmd.Command) *LUKSDevice {
+	luksDeviceName := devicePrefix + volumeId
 	devices := devices.New()
 	osFs := afero.NewOsFs()
 	return NewDetailed(rawDevicePath, luksDeviceName, command, devices, osFs)
@@ -61,18 +61,18 @@ func NewDetailed(rawDevicePath, mappedDeviceName string, command execCmd.Command
 	}
 }
 
-func NewLUKSDeviceFromMappingPath(
+func NewDeviceFromMappingPath(
 	ctx context.Context, command execCmd.Command, mappingPath, volumeId string,
 ) (*LUKSDevice, error) {
-	rawDevicePath, err := GetUnderlyingDevicePathForLUKSDevice(ctx, command, mappingPath)
+	rawDevicePath, err := GetUnderlyingDevicePathForDevice(ctx, command, mappingPath)
 	if err != nil {
 		return nil, fmt.Errorf("could not determine underlying device for LUKS mapping; %v", err)
 	}
-	return NewLUKSDevice(rawDevicePath, volumeId, command), nil
+	return NewDevice(rawDevicePath, volumeId, command), nil
 }
 
 // EnsureLUKSDeviceMappedOnHost ensures the specified device is LUKS formatted, opened, and has the current passphrase.
-func (d *LUKSDevice) EnsureLUKSDeviceMappedOnHost(ctx context.Context, name string, secrets map[string]string) (bool, error) {
+func (d *LUKSDevice) EnsureDeviceMappedOnHost(ctx context.Context, name string, secrets map[string]string) (bool, error) {
 	// Try to Open with current luks passphrase
 	luksPassphraseName, luksPassphrase, previousLUKSPassphraseName, previousLUKSPassphrase := GetLUKSPassphrasesFromSecretMap(secrets)
 	if luksPassphrase == "" {
@@ -149,7 +149,7 @@ func (d *LUKSDevice) ensureLUKSDevice(ctx context.Context, luksPassphrase string
 		return true, nil
 	}
 
-	if err := d.lUKSFormat(ctx, luksPassphrase); err != nil {
+	if err := d.formatUnformattedDevice(ctx, luksPassphrase); err != nil {
 		Logc(ctx).WithError(err).Error("Could not LUKS format device.")
 		return false, fmt.Errorf("could not LUKS format device; %w", err)
 	}
@@ -176,8 +176,8 @@ func GetLUKSPassphrasesFromSecretMap(secrets map[string]string) (string, string,
 	return luksPassphraseName, luksPassphrase, previousLUKSPassphraseName, previousLUKSPassphrase
 }
 
-// IsLegacyLUKSDevicePath returns true if the device path points to mapped LUKS device instead of mpath device.
-func IsLegacyLUKSDevicePath(devicePath string) bool {
+// IsLegacyDevicePath returns true if the device path points to mapped LUKS device instead of mpath device.
+func IsLegacyDevicePath(devicePath string) bool {
 	return strings.Contains(devicePath, "luks")
 }
 
@@ -186,7 +186,7 @@ func IsLegacyLUKSDevicePath(devicePath string) bool {
 func GetDmDevicePathFromLUKSLegacyPath(
 	ctx context.Context, command execCmd.Command, devicePath string,
 ) (string, error) {
-	if !IsLegacyLUKSDevicePath(devicePath) {
+	if !IsLegacyDevicePath(devicePath) {
 		return "", fmt.Errorf("device path is not a legacy LUKS device path")
 	}
 	lsblk := lsblk.NewLsblkUtilDetailed(command)

utils/devices/luks/luks.go

@@ -22,11 +22,11 @@ func (d *LUKSDevice) RotatePassphrase(ctx context.Context, volumeId, previousLUK
 	return errors.UnsupportedError("RotatePassphrase is not supported for darwin")
 }
 
-// IsLUKSFormatted returns whether LUKS headers have been placed on the device
-func (d *LUKSDevice) IsLUKSFormatted(ctx context.Context) (bool, error) {
-	Logc(ctx).Debug(">>>> devices_darwin.IsLUKSFormatted")
-	defer Logc(ctx).Debug("<<<< devices_darwin.IsLUKSFormatted")
-	return false, errors.UnsupportedError("IsLUKSFormatted is not supported for darwin")
+// IsFormatted returns whether LUKS headers have been placed on the device
+func (d *LUKSDevice) IsFormatted(ctx context.Context) (bool, error) {
+	Logc(ctx).Debug(">>>> devices_darwin.IsFormatted")
+	defer Logc(ctx).Debug("<<<< devices_darwin.IsFormatted")
+	return false, errors.UnsupportedError("IsFormatted is not supported for darwin")
 }
 
 // IsOpen returns whether the device is an active luks device on the host
@@ -36,12 +36,12 @@ func (d *LUKSDevice) IsOpen(ctx context.Context) (bool, error) {
 	return false, errors.UnsupportedError("IsOpen is not supported for darwin")
 }
 
-// lUKSFormat attempts to set up LUKS headers on a device with the specified passphrase, but bails if the
+// formatUnformattedDevice attempts to set up LUKS headers on a device with the specified passphrase, but bails if the
 // underlying device already has a format present that is not LUKS.
-func (d *LUKSDevice) lUKSFormat(ctx context.Context, _ string) error {
-	Logc(ctx).Debug(">>>> devices_darwin.LUKSFormat")
-	defer Logc(ctx).Debug("<<<< devices_darwin.LUKSFormat")
-	return errors.UnsupportedError("LUKSFormat is not supported for darwin")
+func (d *LUKSDevice) formatUnformattedDevice(ctx context.Context, _ string) error {
+	Logc(ctx).Debug(">>>> devices_darwin.formatUnformattedDevice")
+	defer Logc(ctx).Debug("<<<< devices_darwin.formatUnformattedDevice")
+	return errors.UnsupportedError("formatUnformattedDevice is not supported for darwin")
 }
 
 // Open makes the device accessible on the host
@@ -51,10 +51,10 @@ func (d *LUKSDevice) Open(ctx context.Context, luksPassphrase string) error {
 	return errors.UnsupportedError("Open is not supported for darwin")
 }
 
-func GetUnderlyingDevicePathForLUKSDevice(ctx context.Context, command exec.Command, luksDevicePath string) (string, error) {
-	Logc(ctx).Debug(">>>> devices_darwin.GetUnderlyingDevicePathForLUKSDevice")
-	defer Logc(ctx).Debug("<<<< devices_darwin.GetUnderlyingDevicePathForLUKSDevice")
-	return "", errors.UnsupportedError("GetUnderlyingDevicePathForLUKSDevice is not supported for darwin")
+func GetUnderlyingDevicePathForDevice(ctx context.Context, command exec.Command, luksDevicePath string) (string, error) {
+	Logc(ctx).Debug(">>>> devices_darwin.GetUnderlyingDevicePathForDevice")
+	defer Logc(ctx).Debug("<<<< devices_darwin.GetUnderlyingDevicePathForDevice")
+	return "", errors.UnsupportedError("GetUnderlyingDevicePathForDevice is not supported for darwin")
 }
 
 // Resize performs a luksResize on the LUKS device