You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@kudu.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2022/05/26 15:05:00 UTC

[jira] [Commented] (KUDU-3368) Encrypt file keys with server keys

    [ https://issues.apache.org/jira/browse/KUDU-3368?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17542527#comment-17542527 ] 

ASF subversion and git services commented on KUDU-3368:
-------------------------------------------------------

Commit b6aaf2b71da05c5427e1bee0dccc0e66101c684d in kudu's branch refs/heads/master from Attila Bukor
[ https://gitbox.apache.org/repos/asf?p=kudu.git;h=b6aaf2b71 ]

KUDU-3368 Encrypt file keys with server keys

This patch removes the dummy encryption key used to encrypt all file
keys and introduces the server key, which is used instead on a
per-server basis. The server key is stored in the instance files,
currently in cleartext. Encrypting the server key will be done in a
follow-up patch.

Servers in internal mini-cluster are forced to use the same server key
as they share an environment, but servers in external mini-cluster can
use different keys. Multiple (non-default) PosixEnv instances can now be
created to make this possible.

Change-Id: I1884f62fde3bb110291b1d01c5e68942c6071318
Reviewed-on: http://gerrit.cloudera.org:8080/18192
Tested-by: Kudu Jenkins
Reviewed-by: Alexey Serbin <al...@apache.org>
Reviewed-by: Zoltan Chovan <zc...@cloudera.com>


> Encrypt file keys with server keys
> ----------------------------------
>
>                 Key: KUDU-3368
>                 URL: https://issues.apache.org/jira/browse/KUDU-3368
>             Project: Kudu
>          Issue Type: Sub-task
>            Reporter: Attila Bukor
>            Assignee: Attila Bukor
>            Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.20.7#820007)