You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@couchdb.apache.org by ei...@apache.org on 2020/04/03 20:47:03 UTC
[couchdb] branch prototype/fdb-encryption updated (513114c ->
865b560)
This is an automated email from the ASF dual-hosted git repository.
eiri pushed a change to branch prototype/fdb-encryption
in repository https://gitbox.apache.org/repos/asf/couchdb.git.
discard 513114c Improvements in encryption server
discard 75d5584 Encrypt whole stored in fdb value, not just doc body
discard 9679c54 Rename encode/decode methods to encrypt/decrypt
discard dead7f1 Revert from using update counter back to doc revs for key derivation
discard c1cd042 Change encryption provider to be default
discard db79fdf Implement key management as an epi plugin
discard 1295298 Add on/off config switch for encryption
discard 8f9a988 Switch from rev to update counter for key derivation
discard 41c9691 Switch to old crypto API for now
discard 9339e95 Add basic tests
discard 06ecf2e Store wrapped KEK in db config
discard efcecb8 Add basic KEK cache
discard d2a0f63 Grab KEK in main server loop
discard 63af132 Don't block encryption server on encode/decode operations
discard 7c1df94 Add basic data encryption
add e520294 Fix database re-creation
add a008c6d Add a fabric doc fold test when db is re-created
add 3fba9ff Fix couch_jobs after recent db re-creation commit
add f81f117 add info endpoint for fdb stored views (#2706)
add 2c704ac set DbPrefix with value allocated with erlfdb_hca
add ed83bf9 Implement fabric2_db:get_design_docs/1
add 0f27bf5 Improve fabric2_events
add e06c5f3 Handle db re-creation in view indexing
add f05b3ad Fix db prefix checks in fabric2_fdb
add d67f507 Make sure to clear db metadata flag before each transaction
add 9912d49 Implement AES KW algorithm*
add efe53e4 Merge pull request #2722 from apache/couch-keywrap
add bf887c5 Return a 400 error code for an invalid update sequence
add 7ca2ca5 Don't advertise unimplemented features
add 9b325b7 change _all_docs to raw collation
add 24524a4 Switch erlfdb to the couchdb repo at tag v1.0.0
add 4707af4 Merge pull request #2743 from apache/switch-erlfdb-couch
add 85f81d8 Use `couch_rate` application for `couch_view`
add d520d73 Merge pull request #2662 from cloudant/couch_view-rate_limit
add 48169f2 Add basic data encryption
add c88f233 Don't block encryption server on encode/decode operations
add 650bb58 Grab KEK in main server loop
add a895535 Add basic KEK cache
add ee247bf Store wrapped KEK in db config
add 5d6774c Add basic tests
add 8bb32d4 Switch to old crypto API for now
add 35b08f2 Switch from rev to update counter for key derivation
add b21aee2 Add on/off config switch for encryption
add 0dd7152 Implement key management as an epi plugin
add b014408 Change encryption provider to be default
add 19d1e31 Revert from using update counter back to doc revs for key derivation
add 95c47e6 Rename encode/decode methods to encrypt/decrypt
add 2802c1f Encrypt whole stored in fdb value, not just doc body
add fdcc6f5 Improvements in encryption server
add 56cc121 Request wrapped KEK out of encryption server loop
add e803f9b Delegate AAD generation to encryption plugin
add 988cffa Use a record for cache entries for better clarity
add b8907f1 Switch to couch_keywrap in encryption provider
add 58162d2 Make sure to use mocked config call in get_mek_failure_test
add 88911aa Use macro to choose old vs new crypto API depending on OTP version
add a3d252f Change interface for plugin's unwrap_kek
add a439c34 Cache AAD alongside of KEK
add 865b560 Unwrap KEK outside the main loop
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (513114c)
\
N -- N -- N refs/heads/prototype/fdb-encryption (865b560)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
No new revisions were added by this update.
Summary of changes:
.credo.exs | 1 +
.gitignore | 1 +
Makefile | 1 +
mix.exs | 8 +-
mix.lock | 1 +
rebar.config.script | 9 +-
rel/files/eunit.ini | 3 +
rel/overlay/etc/default.ini | 23 +-
src/chttpd/src/chttpd.erl | 2 +
src/chttpd/src/chttpd_db.erl | 2 +-
src/couch/src/couch_keywrap.erl | 103 ++++++
src/couch/src/couch_server.erl | 6 -
src/couch_rate/README.md | 155 +++++++++
.../src/couch_rate.app.src} | 15 +-
src/couch_rate/src/couch_rate.erl | 318 +++++++++++++++++
.../src/couch_rate.hrl} | 22 +-
.../src/couch_rate_app.erl} | 6 +-
src/couch_rate/src/couch_rate_config.erl | 66 ++++
src/couch_rate/src/couch_rate_ets.erl | 119 +++++++
src/couch_rate/src/couch_rate_limiter.erl | 387 +++++++++++++++++++++
src/couch_rate/src/couch_rate_pd.erl | 90 +++++
.../src/couch_rate_sup.erl} | 13 +-
.../test/exunit/couch_rate_config_test.exs | 88 +++++
.../test/exunit/couch_rate_limiter_test.exs | 350 +++++++++++++++++++
.../couch_rate/test/exunit/test_helper.exs | 3 +
.../src/couch_replicator_scheduler.erl | 3 +-
src/couch_views/README.md | 33 ++
src/couch_views/src/couch_views.app.src | 3 +-
src/couch_views/src/couch_views.erl | 52 ++-
src/couch_views/src/couch_views_indexer.erl | 108 +++---
src/couch_views/src/couch_views_jobs.erl | 15 +-
src/couch_views/test/couch_views_indexer_test.erl | 162 ++++++++-
src/couch_views/test/couch_views_info_test.erl | 154 ++++++++
.../test/couch_views_trace_index_test.erl | 2 +-
src/fabric/include/fabric2.hrl | 1 +
src/fabric/src/fabric2_db.erl | 35 +-
src/fabric/src/fabric2_encryption.erl | 203 ++++++++---
src/fabric/src/fabric2_encryption_plugin.erl | 17 +-
src/fabric/src/fabric2_encryption_provider.erl | 159 +++++++--
src/fabric/src/fabric2_events.erl | 52 ++-
src/fabric/src/fabric2_fdb.erl | 57 ++-
src/fabric/src/fabric2_server.erl | 12 +-
src/fabric/src/fabric2_util.erl | 8 +-
src/fabric/test/fabric2_db_crud_tests.erl | 32 ++
src/fabric/test/fabric2_db_misc_tests.erl | 64 +++-
src/fabric/test/fabric2_doc_fold_tests.erl | 33 +-
src/fabric/test/fabric2_get_design_docs_tests.erl | 138 ++++++++
src/mem3/src/mem3_reshard.erl | 5 -
test/elixir/test/all_docs_test.exs | 3 +-
49 files changed, 2897 insertions(+), 246 deletions(-)
create mode 100644 src/couch/src/couch_keywrap.erl
create mode 100644 src/couch_rate/README.md
copy src/{couch_eval/src/couch_eval.app.src => couch_rate/src/couch_rate.app.src} (78%)
create mode 100644 src/couch_rate/src/couch_rate.erl
copy src/{couch/src/couch_rand.erl => couch_rate/src/couch_rate.hrl} (72%)
copy src/{ctrace/src/ctrace_app.erl => couch_rate/src/couch_rate_app.erl} (91%)
create mode 100644 src/couch_rate/src/couch_rate_config.erl
create mode 100644 src/couch_rate/src/couch_rate_ets.erl
create mode 100644 src/couch_rate/src/couch_rate_limiter.erl
create mode 100644 src/couch_rate/src/couch_rate_pd.erl
copy src/{ctrace/src/ctrace_sup.erl => couch_rate/src/couch_rate_sup.erl} (73%)
create mode 100644 src/couch_rate/test/exunit/couch_rate_config_test.exs
create mode 100644 src/couch_rate/test/exunit/couch_rate_limiter_test.exs
copy rel/files/vm.args => src/couch_rate/test/exunit/test_helper.exs (86%)
create mode 100644 src/couch_views/test/couch_views_info_test.erl
create mode 100644 src/fabric/test/fabric2_get_design_docs_tests.erl