[HADOOP-14705] Add batched interface reencryptEncryptedKeys to KMS - ASF JIRA

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.0.0-beta1
Component/s: kms
Labels:
None

Target Version/s:

3.0.0-beta1
Hadoop Flags:

Reviewed

Description

~~HADOOP-13827~~ already enabled the KMS to re-encrypt a EncryptedKeyVersion.

As the performance results of ~~HDFS-10899~~ turns out, communication overhead with the KMS occupies the majority of the time. So this jira proposes to add a batched interface to re-encrypt multiple EDEKs in 1 call.

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending

Attachments

HADOOP-14705.01.patch
01/Aug/17 04:18
42 kB
Xiao Chen
HADOOP-14705.02.patch
02/Aug/17 03:52
46 kB
Xiao Chen
HADOOP-14705.03.patch
08/Aug/17 05:08
59 kB
Xiao Chen
HADOOP-14705.04.patch
16/Aug/17 05:06
58 kB
Xiao Chen
HADOOP-14705.05.patch
16/Aug/17 17:30
58 kB
Xiao Chen
HADOOP-14705.06.patch
17/Aug/17 17:40
61 kB
Xiao Chen
HADOOP-14705.07.patch
17/Aug/17 20:54
62 kB
Xiao Chen
HADOOP-14705.08.patch
17/Aug/17 22:36
62 kB
Xiao Chen
HADOOP-14705.09.patch
18/Aug/17 19:23
65 kB
Xiao Chen
HADOOP-14705.10.patch
21/Aug/17 06:01
65 kB
Xiao Chen
HADOOP-14705.11.patch
22/Aug/17 02:30
66 kB
Xiao Chen

Issue Links

causes

HADOOP-15214 Make Hadoop compatible with Guava 21.0

Resolved

is depended upon by

HDFS-10899 Add functionality to re-encrypt EDEKs

Resolved

requires

HADOOP-14779 Refactor decryptEncryptedKey in KeyProviderCryptoExtension

Resolved

Activity

People

Assignee:

Xiao Chen

Reporter:

Xiao Chen

Votes:

0 Vote for this issue

Watchers:

6 Start watching this issue

Dates

Created:

01/Aug/17 04:18

Updated:

08/Feb/18 18:52

Resolved:

22/Aug/17 14:47