You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@kudu.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2022/05/26 15:05:00 UTC
[jira] [Commented] (KUDU-3368) Encrypt file keys with server keys
[ https://issues.apache.org/jira/browse/KUDU-3368?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17542527#comment-17542527 ]
ASF subversion and git services commented on KUDU-3368:
-------------------------------------------------------
Commit b6aaf2b71da05c5427e1bee0dccc0e66101c684d in kudu's branch refs/heads/master from Attila Bukor
[ https://gitbox.apache.org/repos/asf?p=kudu.git;h=b6aaf2b71 ]
KUDU-3368 Encrypt file keys with server keys
This patch removes the dummy encryption key used to encrypt all file
keys and introduces the server key, which is used instead on a
per-server basis. The server key is stored in the instance files,
currently in cleartext. Encrypting the server key will be done in a
follow-up patch.
Servers in internal mini-cluster are forced to use the same server key
as they share an environment, but servers in external mini-cluster can
use different keys. Multiple (non-default) PosixEnv instances can now be
created to make this possible.
Change-Id: I1884f62fde3bb110291b1d01c5e68942c6071318
Reviewed-on: http://gerrit.cloudera.org:8080/18192
Tested-by: Kudu Jenkins
Reviewed-by: Alexey Serbin <al...@apache.org>
Reviewed-by: Zoltan Chovan <zc...@cloudera.com>
> Encrypt file keys with server keys
> ----------------------------------
>
> Key: KUDU-3368
> URL: https://issues.apache.org/jira/browse/KUDU-3368
> Project: Kudu
> Issue Type: Sub-task
> Reporter: Attila Bukor
> Assignee: Attila Bukor
> Priority: Major
>
--
This message was sent by Atlassian Jira
(v8.20.7#820007)