You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Thomas Demoor (JIRA)" <ji...@apache.org> on 2016/05/19 21:16:13 UTC
[jira] [Commented] (HADOOP-13131) Add tests to verify that S3A
supports SSE-S3 encryption
[ https://issues.apache.org/jira/browse/HADOOP-13131?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15292150#comment-15292150 ]
Thomas Demoor commented on HADOOP-13131:
----------------------------------------
[~PieterReuse] ran some test on our "non-AWS s3 implementation which supports SSE(AES)" and things went as expected. Only the error you expected for the invalid algorithm was wrapped in an IOException but I noticed this is being addressed in another patch.
You are correct, most implementations ignore headers they do not support (if possible) and I assume they would simply store the object unencrypted.
> Add tests to verify that S3A supports SSE-S3 encryption
> -------------------------------------------------------
>
> Key: HADOOP-13131
> URL: https://issues.apache.org/jira/browse/HADOOP-13131
> Project: Hadoop Common
> Issue Type: Sub-task
> Components: fs/s3
> Affects Versions: 2.7.2
> Reporter: Steve Loughran
> Assignee: Steve Loughran
> Priority: Minor
> Attachments: HADOOP-13131-001.patch, HADOOP-13131-002.patch, HADOOP-13131-003.patch, HADOOP-13131-004.patch, HADOOP-13131-005.patch
>
> Original Estimate: 1h
> Remaining Estimate: 1h
>
> Although S3A claims to support server-side S3 encryption (and does, if you set the option), we don't have any test to verify this. Of course, as the encryption is transparent, it's hard to test.
> Here's what I propose
> # a test which sets encryption = AES256; expects things to work as normal.
> # a test which sets encyption = DES and expects any operation creating a file or directory to fail with a 400 "bad request" error
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org