-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Manage file key by the file to encrypt itself - all changes #3
Commits on Aug 1, 2023
-
remove duplicate comments in EncryptedEnv (facebook#11549) (#1)
Summary: There are some comments on subclasses in EncryptedEnv module which are duplicate to their parent classes, it would be nice to remove the duplication and keep the consistency if the comments on parent classes updated in someday. Pull Request resolved: facebook#11549 Reviewed By: akankshamahajan15 Differential Revision: D47007061 Pulled By: ajkr fbshipit-source-id: 8bfdaf9f2418a24ca951c30bb88e90ac861d9016
Configuration menu - View commit details
-
Copy full SHA for e95d27f - Browse repository at this point
Copy the full SHA e95d27fView commit details
Commits on Aug 7, 2023
-
Add KeyManagedEncryptedEnv and AESBlockCipher (#4)
apache/incubator-pegasus#1575 Cherry-pick from tikv@113b363 Summary: Introduce `KeyManagedEncryptedEnv` which wraps around `EncryptedEnv` but provides an `KeyManager` API to enable key management per file. Also implements `AESBlockCipher` with OpenSSL. Test Plan: not tested yet. will update. Signed-off-by: Yi Wu <[email protected]> Signed-off-by: tabokie <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 7941b8f - Browse repository at this point
Copy the full SHA 7941b8fView commit details -
encryption: change to use openssl EVP API (#5)
apache/incubator-pegasus#1575 Cherry-pick from tikv@3d44a33 Summary: Instead of using openssl's raw `AES_encrypt` and `AES_decrypt` API, which is a low level call to encrypt or decrypt exact one block (16 bytes), we change to use the `EVP_*` API. The former is deprecated, and will use the default C implementation without AES-NI support. Also the EVP API is capable of handing CTR mode on its own. Test Plan: will add tests Signed-off-by: Yi Wu <[email protected]> --------- Signed-off-by: Yi Wu <[email protected]> Co-authored-by: yiwu-arbug <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for bcb12d2 - Browse repository at this point
Copy the full SHA bcb12d2View commit details -
Fix NewRandomRWFile and ReuseWritableFile in KeyManagedEncryptedEnv (#6)
apache/incubator-pegasus#1575 Cherry-pick from tikv@2360562 Summary: Fix NewRandomRWFile and ReuseWritableFile misuse of `GetFile()` and `NewFile()`. See inline comments. Test Plan: manual test with tikv Signed-off-by: Yi Wu <[email protected]> Co-authored-by: yiwu-arbug <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0470a0b - Browse repository at this point
Copy the full SHA 0470a0bView commit details
Commits on Aug 8, 2023
-
Atomize RenameFile in KeyManagedEncryptedEnv (facebook#7)
apache/incubator-pegasus#1575 Cherry-pick from tikv@93e89a5 fix bug: tikv/tikv#9115 Summary: we need to update encryption metadata via encryption::DataKeyManager, which cannot combine with the actual file operation into one atomic operation. In RenameFile, when the src_file has been removed, power is off, then we may lost the file info of src_file next restart. Signed-off-by: Xintao [[email protected]](mailto:[email protected]) Signed-off-by: Xintao <[email protected]> Co-authored-by: Xintao <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 243004c - Browse repository at this point
Copy the full SHA 243004cView commit details -
Atomize Rename operation when encryption is enabled (facebook#8)
apache/incubator-pegasus#1575 Cherry-pick from tikv@bbd27cf used LinkFile instead of RenameFile api of key manager. But LinkFile needs check the dst file information, in RenameFile logic, we don't care about that. So just skip encryption for current file. Signed-off-by: Xintao [[email protected]](mailto:[email protected])
Configuration menu - View commit details
-
Copy full SHA for e84b0b2 - Browse repository at this point
Copy the full SHA e84b0b2View commit details -
Fix the bug that the key manager is not updated during the Rename (fa…
…cebook#9) apache/incubator-pegasus#1575 Cherry-pick from tikv@1868d12 Signed-off-by: Xintao <[email protected]> Signed-off-by: tabokie <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 31abef3 - Browse repository at this point
Copy the full SHA 31abef3View commit details -
Add sm4 encryption (facebook#10)
apache/incubator-pegasus#1575 Cherry-pick from tikv@4cebfc1 * Add SM4-CTR encryption algorithm * Adjust block size for sm4 encryption * Add UT for SM4 encryption * Adjust macros indentation for sm4 * Fix format for adding sm4 Signed-off-by: Jarvis Zheng <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for eff2f56 - Browse repository at this point
Copy the full SHA eff2f56View commit details -
Check OPENSSL_NO_SM4 before using sm4 encryption (facebook#11)
apache/incubator-pegasus#1575 Cherry-pick from tikv@9464766 In some env, user installed openssl by yum install, and the openssl software may compiled with OPENSSL_NO_SM4 flag, so although the version is >= 1.1.1, but we still could not use sm4 in that situation. Signed-off-by: Jarvis Zheng <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 0f1574f - Browse repository at this point
Copy the full SHA 0f1574fView commit details -
hook delete dir in encrypted env (facebook#334) (facebook#12)
apache/incubator-pegasus#1575 Cherry-pick from tikv@acc624f * hook delete dir in encrypted env * add a comment Signed-off-by: tabokie <[email protected]> Co-authored-by: Xinye Tao <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 8ab89e1 - Browse repository at this point
Copy the full SHA 8ab89e1View commit details
Commits on Aug 9, 2023
-
fix renaming encrypted directory (facebook#13)
apache/incubator-pegasus#1575 Cherry-pick from tikv@14f36f8 (without compaction related code) * fix renaming encrypted directory Signed-off-by: tabokie <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1d09030 - Browse repository at this point
Copy the full SHA 1d09030View commit details
Commits on Aug 11, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 52eeb27 - Browse repository at this point
Copy the full SHA 52eeb27View commit details -
Configuration menu - View commit details
-
Copy full SHA for b3d3068 - Browse repository at this point
Copy the full SHA b3d3068View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5701095 - Browse repository at this point
Copy the full SHA 5701095View commit details -
Configuration menu - View commit details
-
Copy full SHA for 339e256 - Browse repository at this point
Copy the full SHA 339e256View commit details -
Configuration menu - View commit details
-
Copy full SHA for cc41e50 - Browse repository at this point
Copy the full SHA cc41e50View commit details -
Configuration menu - View commit details
-
Copy full SHA for 54c29fa - Browse repository at this point
Copy the full SHA 54c29faView commit details -
Configuration menu - View commit details
-
Copy full SHA for 6dc4ed7 - Browse repository at this point
Copy the full SHA 6dc4ed7View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1885171 - Browse repository at this point
Copy the full SHA 1885171View commit details -
Configuration menu - View commit details
-
Copy full SHA for ca5ab98 - Browse repository at this point
Copy the full SHA ca5ab98View commit details -
Configuration menu - View commit details
-
Copy full SHA for d8723d5 - Browse repository at this point
Copy the full SHA d8723d5View commit details
Commits on Aug 14, 2023
-
Configuration menu - View commit details
-
Copy full SHA for d231f58 - Browse repository at this point
Copy the full SHA d231f58View commit details -
Configuration menu - View commit details
-
Copy full SHA for 10e12a1 - Browse repository at this point
Copy the full SHA 10e12a1View commit details -
Configuration menu - View commit details
-
Copy full SHA for f67739c - Browse repository at this point
Copy the full SHA f67739cView commit details -
Configuration menu - View commit details
-
Copy full SHA for ee35f7b - Browse repository at this point
Copy the full SHA ee35f7bView commit details
Commits on Aug 15, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 4e41bb6 - Browse repository at this point
Copy the full SHA 4e41bb6View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3fdc497 - Browse repository at this point
Copy the full SHA 3fdc497View commit details -
Configuration menu - View commit details
-
Copy full SHA for caebbee - Browse repository at this point
Copy the full SHA caebbeeView commit details -
Configuration menu - View commit details
-
Copy full SHA for ea2bb71 - Browse repository at this point
Copy the full SHA ea2bb71View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6578331 - Browse repository at this point
Copy the full SHA 6578331View commit details -
Configuration menu - View commit details
-
Copy full SHA for 112a13d - Browse repository at this point
Copy the full SHA 112a13dView commit details -
Configuration menu - View commit details
-
Copy full SHA for c895d1c - Browse repository at this point
Copy the full SHA c895d1cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3630a6d - Browse repository at this point
Copy the full SHA 3630a6dView commit details -
Configuration menu - View commit details
-
Copy full SHA for 4933ea4 - Browse repository at this point
Copy the full SHA 4933ea4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 519e053 - Browse repository at this point
Copy the full SHA 519e053View commit details -
Configuration menu - View commit details
-
Copy full SHA for 496e3c1 - Browse repository at this point
Copy the full SHA 496e3c1View commit details -
Configuration menu - View commit details
-
Copy full SHA for d1982e5 - Browse repository at this point
Copy the full SHA d1982e5View commit details
Commits on Aug 16, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 623c4ba - Browse repository at this point
Copy the full SHA 623c4baView commit details -
Configuration menu - View commit details
-
Copy full SHA for c526ad4 - Browse repository at this point
Copy the full SHA c526ad4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6fe322d - Browse repository at this point
Copy the full SHA 6fe322dView commit details -
Configuration menu - View commit details
-
Copy full SHA for 510c34b - Browse repository at this point
Copy the full SHA 510c34bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 629ff24 - Browse repository at this point
Copy the full SHA 629ff24View commit details