Add translog encryption #39

RajatGupta02 · 2025-08-04T12:50:07Z

Description

Adds transaction log (translog) encryption using AES-GCM with 8KB chunks.

Related Issues

Resolves

[FEATURE] Encrypt Transaction logs #12

Check List

New functionality includes testing.
New functionality has been documented.
API changes companion pull request created.
Commits are signed per the DCO using --signoff.
Public documentation issue/PR created.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

Signed-off-by: Rajat Gupta <[email protected]>

RajatGupta02 · 2025-08-04T12:50:55Z

OSB:

   ____                  _____                      __       ____                  __                         __
  / __ \____  ___  ____ / ___/___  ____ ___________/ /_     / __ )___  ____  _____/ /_  ____ ___  ____ ______/ /__
 / / / / __ \/ _ \/ __ \\__ \/ _ \/ __ `/ ___/ ___/ __ \   / __  / _ \/ __ \/ ___/ __ \/ __ `__ \/ __ `/ ___/ //_/
/ /_/ / /_/ /  __/ / / /__/ /  __/ /_/ / /  / /__/ / / /  / /_/ /  __/ / / / /__/ / / / / / / / / /_/ / /  / ,<
\____/ .___/\___/_/ /_/____/\___/\__,_/_/   \___/_/ /_/  /_____/\___/_/ /_/\___/_/ /_/_/ /_/ /_/\__,_/_/  /_/|_|
    /_/

[INFO] [Test Execution ID]: 62df2d1a-e8cc-407a-ada2-6908578aac11
[INFO] Executing test with workload [http_logs], test_procedure [append-no-conflicts] and provision_config_instance ['external'] with version [3.1.0-SNAPSHOT].

Running delete-index                                                           [100% done]
Running create-index                                                           [100% done]
Running check-cluster-health                                                   [100% done]
Running index-append                                                           [100% done]

------------------------------------------------------
    _______             __   _____
   / ____(_)___  ____ _/ /  / ___/_________  ________
  / /_  / / __ \/ __ `/ /   \__ \/ ___/ __ \/ ___/ _ \
 / __/ / / / / / /_/ / /   ___/ / /__/ /_/ / /  /  __/
/_/   /_/_/ /_/\__,_/_/   /____/\___/\____/_/   \___/
------------------------------------------------------

|                                                         Metric |         Task |      Value |   Unit |
|---------------------------------------------------------------:|-------------:|-----------:|-------:|
|                     Cumulative indexing time of primary shards |              |    90.6941 |    min |
|             Min cumulative indexing time across primary shards |              |          0 |    min |
|          Median cumulative indexing time across primary shards |              |   0.832217 |    min |
|             Max cumulative indexing time across primary shards |              |    13.3068 |    min |
|            Cumulative indexing throttle time of primary shards |              |          0 |    min |
|    Min cumulative indexing throttle time across primary shards |              |          0 |    min |
| Median cumulative indexing throttle time across primary shards |              |          0 |    min |
|    Max cumulative indexing throttle time across primary shards |              |          0 |    min |
|                        Cumulative merge time of primary shards |              |    56.9138 |    min |
|                       Cumulative merge count of primary shards |              |        366 |        |
|                Min cumulative merge time across primary shards |              |          0 |    min |
|             Median cumulative merge time across primary shards |              |   0.159675 |    min |
|                Max cumulative merge time across primary shards |              |    11.2751 |    min |
|               Cumulative merge throttle time of primary shards |              |    34.9319 |    min |
|       Min cumulative merge throttle time across primary shards |              |          0 |    min |
|    Median cumulative merge throttle time across primary shards |              |  0.0684667 |    min |
|       Max cumulative merge throttle time across primary shards |              |    7.42787 |    min |
|                      Cumulative refresh time of primary shards |              |    6.23562 |    min |
|                     Cumulative refresh count of primary shards |              |        698 |        |
|              Min cumulative refresh time across primary shards |              |          0 |    min |
|           Median cumulative refresh time across primary shards |              |    0.04855 |    min |
|              Max cumulative refresh time across primary shards |              |    1.18855 |    min |
|                        Cumulative flush time of primary shards |              |    12.4516 |    min |
|                       Cumulative flush count of primary shards |              |        110 |        |
|                Min cumulative flush time across primary shards |              |          0 |    min |
|             Median cumulative flush time across primary shards |              | 0.00915833 |    min |
|                Max cumulative flush time across primary shards |              |    2.74023 |    min |
|                                        Total Young Gen GC time |              |     11.307 |      s |
|                                       Total Young Gen GC count |              |       1529 |        |
|                                          Total Old Gen GC time |              |          0 |      s |
|                                         Total Old Gen GC count |              |          0 |        |
|                                                     Store size |              |    19.3875 |     GB |
|                                                  Translog size |              |   0.851454 |     GB |
|                                         Heap used for segments |              |          0 |     MB |
|                                       Heap used for doc values |              |          0 |     MB |
|                                            Heap used for terms |              |          0 |     MB |
|                                            Heap used for norms |              |          0 |     MB |
|                                           Heap used for points |              |          0 |     MB |
|                                    Heap used for stored fields |              |          0 |     MB |
|                                                  Segment count |              |        363 |        |
|                                                 Min Throughput | index-append |     310791 | docs/s |
|                                                Mean Throughput | index-append |     351236 | docs/s |
|                                              Median Throughput | index-append |     342389 | docs/s |
|                                                 Max Throughput | index-append |     423096 | docs/s |
|                                        50th percentile latency | index-append |    91.4905 |     ms |
|                                        90th percentile latency | index-append |    207.304 |     ms |
|                                        99th percentile latency | index-append |    439.635 |     ms |
|                                      99.9th percentile latency | index-append |    673.783 |     ms |
|                                     99.99th percentile latency | index-append |    840.751 |     ms |
|                                       100th percentile latency | index-append |    1033.87 |     ms |
|                                   50th percentile service time | index-append |    91.4905 |     ms |
|                                   90th percentile service time | index-append |    207.304 |     ms |
|                                   99th percentile service time | index-append |    439.635 |     ms |
|                                 99.9th percentile service time | index-append |    673.783 |     ms |
|                                99.99th percentile service time | index-append |    840.751 |     ms |
|                                  100th percentile service time | index-append |    1033.87 |     ms |
|                                                     error rate | index-append |          0 |      % |


---------------------------------
[INFO] SUCCESS (took 836 seconds)
---------------------------------

kumargu · 2025-08-04T13:00:45Z

I will take a look at the PR but do you know why the throughout dropped and latency increased?

kumargu · 2025-08-04T13:01:28Z

is it solely coming from the Translog operation? can we isolate it by disabling and enabling it?

RajatGupta02 · 2025-08-04T13:17:33Z

I will take a look at the PR but do you know why the throughout dropped and latency increased?

Not sure but on my cluster in main branch (without translog encryption) the throughput was lesser:

   ____                  _____                      __       ____                  __                         __
  / __ \____  ___  ____ / ___/___  ____ ___________/ /_     / __ )___  ____  _____/ /_  ____ ___  ____ ______/ /__
 / / / / __ \/ _ \/ __ \\__ \/ _ \/ __ `/ ___/ ___/ __ \   / __  / _ \/ __ \/ ___/ __ \/ __ `__ \/ __ `/ ___/ //_/
/ /_/ / /_/ /  __/ / / /__/ /  __/ /_/ / /  / /__/ / / /  / /_/ /  __/ / / / /__/ / / / / / / / / /_/ / /  / ,<
\____/ .___/\___/_/ /_/____/\___/\__,_/_/   \___/_/ /_/  /_____/\___/_/ /_/\___/_/ /_/_/ /_/ /_/\__,_/_/  /_/|_|
    /_/

[INFO] [Test Execution ID]: b9cc6edd-c97f-4ca9-bae4-663bcc995793
[INFO] Executing test with workload [http_logs], test_procedure [append-no-conflicts] and provision_config_instance ['external'] with version [3.1.0-SNAPSHOT].

Running delete-index                                                           [100% done]
Running create-index                                                           [100% done]
Running check-cluster-health                                                   [100% done]
Running index-append                                                           [100% done]

------------------------------------------------------
    _______             __   _____
   / ____(_)___  ____ _/ /  / ___/_________  ________
  / /_  / / __ \/ __ `/ /   \__ \/ ___/ __ \/ ___/ _ \
 / __/ / / / / / /_/ / /   ___/ / /__/ /_/ / /  /  __/
/_/   /_/_/ /_/\__,_/_/   /____/\___/\____/_/   \___/
------------------------------------------------------

|                                                         Metric |         Task |      Value |   Unit |
|---------------------------------------------------------------:|-------------:|-----------:|-------:|
|                     Cumulative indexing time of primary shards |              |    89.8183 |    min |
|             Min cumulative indexing time across primary shards |              |          0 |    min |
|          Median cumulative indexing time across primary shards |              |   0.793783 |    min |
|             Max cumulative indexing time across primary shards |              |    13.2682 |    min |
|            Cumulative indexing throttle time of primary shards |              |          0 |    min |
|    Min cumulative indexing throttle time across primary shards |              |          0 |    min |
| Median cumulative indexing throttle time across primary shards |              |          0 |    min |
|    Max cumulative indexing throttle time across primary shards |              |          0 |    min |
|                        Cumulative merge time of primary shards |              |    55.5683 |    min |
|                       Cumulative merge count of primary shards |              |        353 |        |
|                Min cumulative merge time across primary shards |              |          0 |    min |
|             Median cumulative merge time across primary shards |              |   0.164208 |    min |
|                Max cumulative merge time across primary shards |              |    11.0191 |    min |
|               Cumulative merge throttle time of primary shards |              |    33.5325 |    min |
|       Min cumulative merge throttle time across primary shards |              |          0 |    min |
|    Median cumulative merge throttle time across primary shards |              |   0.075375 |    min |
|       Max cumulative merge throttle time across primary shards |              |    7.01237 |    min |
|                      Cumulative refresh time of primary shards |              |    5.56612 |    min |
|                     Cumulative refresh count of primary shards |              |        658 |        |
|              Min cumulative refresh time across primary shards |              |          0 |    min |
|           Median cumulative refresh time across primary shards |              |  0.0472333 |    min |
|              Max cumulative refresh time across primary shards |              |    1.00503 |    min |
|                        Cumulative flush time of primary shards |              |    10.7243 |    min |
|                       Cumulative flush count of primary shards |              |        110 |        |
|                Min cumulative flush time across primary shards |              |          0 |    min |
|             Median cumulative flush time across primary shards |              | 0.00650833 |    min |
|                Max cumulative flush time across primary shards |              |    2.06405 |    min |
|                                        Total Young Gen GC time |              |     11.469 |      s |
|                                       Total Young Gen GC count |              |       1476 |        |
|                                          Total Old Gen GC time |              |          0 |      s |
|                                         Total Old Gen GC count |              |          0 |        |
|                                                     Store size |              |    20.1427 |     GB |
|                                                  Translog size |              |    1.58456 |     GB |
|                                         Heap used for segments |              |          0 |     MB |
|                                       Heap used for doc values |              |          0 |     MB |
|                                            Heap used for terms |              |          0 |     MB |
|                                            Heap used for norms |              |          0 |     MB |
|                                           Heap used for points |              |          0 |     MB |
|                                    Heap used for stored fields |              |          0 |     MB |
|                                                  Segment count |              |        364 |        |
|                                                 Min Throughput | index-append |     314034 | docs/s |
|                                                Mean Throughput | index-append |     345564 | docs/s |
|                                              Median Throughput | index-append |     341424 | docs/s |
|                                                 Max Throughput | index-append |     396002 | docs/s |
|                                        50th percentile latency | index-append |    90.0694 |     ms |
|                                        90th percentile latency | index-append |    207.734 |     ms |
|                                        99th percentile latency | index-append |    438.242 |     ms |
|                                      99.9th percentile latency | index-append |    652.081 |     ms |
|                                     99.99th percentile latency | index-append |    848.135 |     ms |
|                                       100th percentile latency | index-append |    1045.64 |     ms |
|                                   50th percentile service time | index-append |    90.0694 |     ms |
|                                   90th percentile service time | index-append |    207.734 |     ms |
|                                   99th percentile service time | index-append |    438.242 |     ms |
|                                 99.9th percentile service time | index-append |    652.081 |     ms |
|                                99.99th percentile service time | index-append |    848.135 |     ms |
|                                  100th percentile service time | index-append |    1045.64 |     ms |
|                                                     error rate | index-append |          0 |      % |


---------------------------------
[INFO] SUCCESS (took 831 seconds)
---------------------------------

udabhas · 2025-08-05T06:18:45Z

src/main/java/org/opensearch/index/translog/CryptoTranslog.java

+    private static ChannelFactory createCryptoChannelFactory(KeyIvResolver keyIvResolver, String translogUUID) throws IOException {
+        try {
+            CryptoChannelFactory channelFactory = new CryptoChannelFactory(keyIvResolver, translogUUID);
+            LogManager.getLogger(CryptoTranslog.class).debug("CryptoChannelFactory initialized for translog: {}", translogUUID);


we can use logger defined above?

udabhas · 2025-08-05T06:21:08Z

src/main/java/org/opensearch/index/translog/CryptoTranslog.java

+    public KeyIvResolver getKeyIvResolver() {
+        return keyIvResolver;
+    }


Who calls this method?

same here, forgot to clean this.

udabhas · 2025-08-05T06:39:14Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+    public FileChannel getDelegate() {
+        return delegate;
+    }


who is calling this method?

forgot to clean this.

udabhas · 2025-08-05T07:04:00Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+            ChunkInfo chunkInfo = getChunkInfo(position);
+
+            // Read-modify-write chunk pattern
+            byte[] existingChunk = readAndDecryptChunk(chunkInfo.chunkIndex);


we are decrypting entire file everytime and re-encrypting it along with new incoming diff. This may increase overall time. do we know rough idea, how frequently we write to this?

I did not understand, we are encrypting and decrypting in 8kb chunks, not the whole file.

ohh okay, we are decrypting only last chunk

Signed-off-by: Rajat Gupta <[email protected]>

udabhas

Looks good to me!

kumargu · 2025-08-06T07:03:56Z

src/main/java/org/opensearch/index/store/CryptoEngineFactory.java

+
+            // Create new engine config by copying all fields from existing config
+            // but replace the translog factory with our crypto version
+            EngineConfig cryptoConfig = new EngineConfig.Builder()


can we just not override (the builder should allow) the cryptoTranslogFactory to an existing config rather than copying over all these configs?

That was the issue, EngineConfig.java doesn't have any copy constructor :/

src/main/java/org/opensearch/index/store/CryptoEngineFactory.java

src/main/java/org/opensearch/index/translog/CryptoChannelFactory.java

kumargu · 2025-08-06T09:07:37Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+ *
+ * @opensearch.internal
+ */
+public class CryptoFileChannelWrapper extends FileChannel {


sounds very very weird to extend the FileChannel. Did we do the same in actual Translog Impl?

In the Translog impl, it was just returning FileChannel::open so it did not need to wrap the file channel

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

kumargu · 2025-08-06T09:09:30Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+     * @throws IOException if there is an error setting up the channel
+     */
+    public CryptoFileChannelWrapper(
+        FileChannel delegate,


see this is the weird part, we extend a FileChannel and then use it a constructor args.

We are just using it as a wrapper, when we pass this FileChannel as the delegate field arg we are forwarding actual I/O operations to this delegate

We actually use a similar pattern here: https://github.com/opensearch-project/security/blob/main/src/main/java/org/opensearch/security/filter/DelegatingRestHandler.java#L28-L31

kumargu · 2025-08-06T09:10:07Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+            return 0;
+        }
+
+        positionLock.writeLock().lock();


why do we need a writeLock in read?

Line 280: if (position == this.position.get()) { this.position.addAndGet(dst.remaining()); }

this was modifying the position, but yes for stateful reads I should use writeLock and for positional reads readLock, will update this.

Signed-off-by: Rajat Gupta <[email protected]>

cwperks · 2025-08-07T14:42:25Z

build.gradle

 buildscript {
    ext {
-        opensearch_version = System.getProperty("opensearch.version", "3.1.0-SNAPSHOT")
+        opensearch_version = System.getProperty("opensearch.version", "3.2.0-SNAPSHOT")


Can you sync with the latest changes on the main branch? Not sure why this is showing here.

Actually, we were using 3.1.0 snapshot earlier, but for translog once the core changes are merged we will have to use 3.2.0 here.

src/main/java/org/opensearch/index/store/CryptoEngineFactory.java

Signed-off-by: Rajat Gupta <[email protected]>

kumargu · 2025-08-13T05:51:08Z

src/main/java/org/opensearch/index/translog/TranslogChunkManager.java

+
+    // TranslogHeader constants replicated to avoid cross-classloader access
+    private static final String TRANSLOG_CODEC = "translog";
+    private static final int VERSION_PRIMARY_TERM = 3;


how do we derive this value?

Not sure, but it was hardcoded here in the TranslogHeader impl: https://github.com/opensearch-project/OpenSearch/blob/8f310f5e37c65f9c3116c05685a6713eb5e68886/server/src/main/java/org/opensearch/index/translog/TranslogHeader.java#L67

can we use (i.e import) the constants as it is in the core? a change in there will also reflect at our side, otherwise we will corrupt the data.

Signed-off-by: Rajat Gupta <[email protected]>

kumargu · 2025-08-13T09:27:38Z

src/main/java/org/opensearch/index/store/CryptoEngineFactory.java

+            EngineConfig cryptoConfig = config
+                .toBuilder()


kumargu · 2025-08-13T14:06:42Z

src/main/java/org/opensearch/index/translog/CryptoFileChannelWrapper.java

+    }
+
+    @Override
+    public MappedByteBuffer map(MapMode mode, long position, long size) throws IOException {


core supports Mmap?

We added it here just so that in future if map is used it clearly throws an exception.

RajatGupta02 · 2025-08-28T13:30:06Z

On c5.12xLarge instance

   ____                  _____                      __       ____                  __                         __
  / __ \____  ___  ____ / ___/___  ____ ___________/ /_     / __ )___  ____  _____/ /_  ____ ___  ____ ______/ /__
 / / / / __ \/ _ \/ __ \\__ \/ _ \/ __ `/ ___/ ___/ __ \   / __  / _ \/ __ \/ ___/ __ \/ __ `__ \/ __ `/ ___/ //_/
/ /_/ / /_/ /  __/ / / /__/ /  __/ /_/ / /  / /__/ / / /  / /_/ /  __/ / / / /__/ / / / / / / / / /_/ / /  / ,<
\____/ .___/\___/_/ /_/____/\___/\__,_/_/   \___/_/ /_/  /_____/\___/_/ /_/\___/_/ /_/_/ /_/ /_/\__,_/_/  /_/|_|
    /_/

[INFO] [Test Execution ID]: 00286d83-ba64-4f72-b933-1a1630b3b426
[INFO] Executing test with workload [http_logs], test_procedure [append-no-conflicts] and provision_config_instance ['external'] with version [3.3.0-SNAPSHOT].

Running delete-index                                                           [100% done]
Running create-index                                                           [100% done]
Running check-cluster-health                                                   [100% done]
Running index-append                                                           [100% done]

------------------------------------------------------
    _______             __   _____
   / ____(_)___  ____ _/ /  / ___/_________  ________
  / /_  / / __ \/ __ `/ /   \__ \/ ___/ __ \/ ___/ _ \
 / __/ / / / / / /_/ / /   ___/ / /__/ /_/ / /  /  __/
/_/   /_/_/ /_/\__,_/_/   /____/\___/\____/_/   \___/
------------------------------------------------------

|                                                         Metric |         Task |      Value |   Unit |
|---------------------------------------------------------------:|-------------:|-----------:|-------:|
|                     Cumulative indexing time of primary shards |              |    92.4556 |    min |
|             Min cumulative indexing time across primary shards |              |          0 |    min |
|          Median cumulative indexing time across primary shards |              |   0.816375 |    min |
|             Max cumulative indexing time across primary shards |              |    13.8116 |    min |
|            Cumulative indexing throttle time of primary shards |              |          0 |    min |
|    Min cumulative indexing throttle time across primary shards |              |          0 |    min |
| Median cumulative indexing throttle time across primary shards |              |          0 |    min |
|    Max cumulative indexing throttle time across primary shards |              |          0 |    min |
|                        Cumulative merge time of primary shards |              |    51.1364 |    min |
|                       Cumulative merge count of primary shards |              |        367 |        |
|                Min cumulative merge time across primary shards |              |          0 |    min |
|             Median cumulative merge time across primary shards |              |    0.16525 |    min |
|                Max cumulative merge time across primary shards |              |    11.5136 |    min |
|               Cumulative merge throttle time of primary shards |              |    31.7153 |    min |
|       Min cumulative merge throttle time across primary shards |              |          0 |    min |
|    Median cumulative merge throttle time across primary shards |              |  0.0618417 |    min |
|       Max cumulative merge throttle time across primary shards |              |    7.84568 |    min |
|                      Cumulative refresh time of primary shards |              |    5.77467 |    min |
|                     Cumulative refresh count of primary shards |              |        645 |        |
|              Min cumulative refresh time across primary shards |              |          0 |    min |
|           Median cumulative refresh time across primary shards |              |   0.042125 |    min |
|              Max cumulative refresh time across primary shards |              |    1.15592 |    min |
|                        Cumulative flush time of primary shards |              |    10.2951 |    min |
|                       Cumulative flush count of primary shards |              |        110 |        |
|                Min cumulative flush time across primary shards |              |          0 |    min |
|             Median cumulative flush time across primary shards |              | 0.00853333 |    min |
|                Max cumulative flush time across primary shards |              |    2.22543 |    min |
|                                        Total Young Gen GC time |              |     10.453 |      s |
|                                       Total Young Gen GC count |              |       1576 |        |
|                                          Total Old Gen GC time |              |          0 |      s |
|                                         Total Old Gen GC count |              |          0 |        |
|                                                     Store size |              |     20.181 |     GB |
|                                                  Translog size |              |    0.89674 |     GB |
|                                         Heap used for segments |              |          0 |     MB |
|                                       Heap used for doc values |              |          0 |     MB |
|                                            Heap used for terms |              |          0 |     MB |
|                                            Heap used for norms |              |          0 |     MB |
|                                           Heap used for points |              |          0 |     MB |
|                                    Heap used for stored fields |              |          0 |     MB |
|                                                  Segment count |              |        382 |        |
|                                                 Min Throughput | index-append |     336298 | docs/s |
|                                                Mean Throughput | index-append |     373312 | docs/s |
|                                              Median Throughput | index-append |     364584 | docs/s |
|                                                 Max Throughput | index-append |     439061 | docs/s |
|                                        50th percentile latency | index-append |    62.7845 |     ms |
|                                        90th percentile latency | index-append |     279.89 |     ms |
|                                        99th percentile latency | index-append |     572.23 |     ms |
|                                      99.9th percentile latency | index-append |    837.665 |     ms |
|                                     99.99th percentile latency | index-append |    1013.91 |     ms |
|                                       100th percentile latency | index-append |    1036.72 |     ms |
|                                   50th percentile service time | index-append |    62.7845 |     ms |
|                                   90th percentile service time | index-append |     279.89 |     ms |
|                                   99th percentile service time | index-append |     572.23 |     ms |
|                                 99.9th percentile service time | index-append |    837.665 |     ms |
|                                99.99th percentile service time | index-append |    1013.91 |     ms |
|                                  100th percentile service time | index-append |    1036.72 |     ms |
|                                                     error rate | index-append |          0 |      % |


---------------------------------
[INFO] SUCCESS (took 776 seconds)

kumargu · 2025-08-28T13:31:55Z

Perfect. we should consider this is our baseline.

This reverts commit 352ac8a.

Add translog encryption

ebfafec

Signed-off-by: Rajat Gupta <[email protected]>

RajatGupta02 requested review from asonje, kumargu, shubhmkr-amazon and udabhas as code owners August 4, 2025 12:50

RajatGupta02 mentioned this pull request Aug 4, 2025

Add Channel Factory parameter to Translog opensearch-project/OpenSearch#18908

Closed

3 tasks

udabhas reviewed Aug 5, 2025

View reviewed changes

Cleanup unused functions

be4f23d

Signed-off-by: Rajat Gupta <[email protected]>

udabhas approved these changes Aug 5, 2025

View reviewed changes

RajatGupta02 mentioned this pull request Aug 5, 2025

Add Channel Factory parameter to Translog opensearch-project/OpenSearch#18918

Merged

3 tasks

kumargu reviewed Aug 6, 2025

View reviewed changes

Minor changes

acbea36

Signed-off-by: Rajat Gupta <[email protected]>

cwperks reviewed Aug 7, 2025

View reviewed changes

src/main/java/org/opensearch/index/store/CryptoEngineFactory.java Outdated Show resolved Hide resolved

Rajat Gupta added 2 commits August 11, 2025 14:06

Use imports rather than classnames

5983d6f

Signed-off-by: Rajat Gupta <[email protected]>

Fix forbidden api checks

98f2a35

Signed-off-by: Rajat Gupta <[email protected]>

kumargu reviewed Aug 13, 2025

View reviewed changes

Use imports for constants

3092dab

Signed-off-by: Rajat Gupta <[email protected]>

kumargu reviewed Aug 13, 2025

View reviewed changes

RajatGupta02 mentioned this pull request Aug 13, 2025

Add toBuilder() method in EngineConfig opensearch-project/OpenSearch#19054

Merged

3 tasks

kumargu reviewed Aug 13, 2025

View reviewed changes

kumargu approved these changes Aug 13, 2025

View reviewed changes

kumargu approved these changes Aug 28, 2025

View reviewed changes

kumargu merged commit 352ac8a into opensearch-project:main Aug 28, 2025
1 check passed

RajatGupta02 mentioned this pull request Sep 15, 2025

Backport to 3.1 for channelFactory param in translog opensearch-project/OpenSearch#19288

Closed

3 tasks

udabhas pushed a commit to udabhas/opensearch-storage-encryption that referenced this pull request Oct 1, 2025

Revert "Add translog encryption (opensearch-project#39)"

965a7b1

This reverts commit 352ac8a.

kumargu mentioned this pull request Oct 16, 2025

[FEATURE] Encrypt Transaction logs #12

Closed

Add translog encryption #39

Add translog encryption #39

Uh oh!

Conversation

RajatGupta02 commented Aug 4, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description

Related Issues

Check List

Uh oh!

RajatGupta02 commented Aug 4, 2025

Uh oh!

kumargu commented Aug 4, 2025

Uh oh!

kumargu commented Aug 4, 2025

Uh oh!

RajatGupta02 commented Aug 4, 2025

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

udabhas Aug 5, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

udabhas left a comment

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

RajatGupta02 commented Aug 28, 2025

Uh oh!

RajatGupta02 commented Aug 4, 2025 •

edited

Loading

udabhas Aug 5, 2025 •

edited

Loading