/
encryption.go
140 lines (110 loc) · 3.37 KB
/
encryption.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
package examples_lib
import (
"fmt"
tiledb "github.com/TileDB-Inc/TileDB-Go"
)
// The 256-bit encryption key, stored as a string for convenience.
const encryption_key = "0123456789abcdeF0123456789abcdeF"
func createEncryptedArray(dir string) {
// Create a TileDB context.
ctx, err := tiledb.NewContext(nil)
checkError(err)
defer ctx.Free()
// The array will be 4x4 with dimensions "rows" and "cols", with domain [1,4].
domain, err := tiledb.NewDomain(ctx)
checkError(err)
defer domain.Free()
rowDim, err := tiledb.NewDimension(ctx, "rows", tiledb.TILEDB_INT32, []int32{1, 4}, int32(4))
checkError(err)
colDim, err := tiledb.NewDimension(ctx, "cols", tiledb.TILEDB_INT32, []int32{1, 4}, int32(4))
checkError(err)
err = domain.AddDimensions(rowDim, colDim)
checkError(err)
// The array will be dense.
schema, err := tiledb.NewArraySchema(ctx, tiledb.TILEDB_DENSE)
checkError(err)
defer schema.Free()
err = schema.SetDomain(domain)
checkError(err)
err = schema.SetCellOrder(tiledb.TILEDB_ROW_MAJOR)
checkError(err)
err = schema.SetTileOrder(tiledb.TILEDB_ROW_MAJOR)
checkError(err)
// Add a single attribute "a" so each (i,j) cell can store an integer.
a, err := tiledb.NewAttribute(ctx, "a", tiledb.TILEDB_INT32)
checkError(err)
defer a.Free()
err = schema.AddAttributes(a)
checkError(err)
// Create the (empty) encrypted array with AES-256-GCM.
array, err := tiledb.NewArray(ctx, dir)
checkError(err)
defer array.Free()
err = array.CreateWithKey(schema, tiledb.TILEDB_AES_256_GCM, encryption_key)
checkError(err)
}
func writeEncryptedArray(dir string) {
ctx, err := tiledb.NewContext(nil)
checkError(err)
defer ctx.Free()
// Prepare some data for the array
data := []int32{
1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16}
// Open the array for writing and create the query.
array, err := tiledb.NewArray(ctx, dir)
checkError(err)
defer array.Free()
err = array.OpenWithKey(tiledb.TILEDB_WRITE, tiledb.TILEDB_AES_256_GCM,
encryption_key)
checkError(err)
defer array.Close()
query, err := tiledb.NewQuery(ctx, array)
checkError(err)
defer query.Free()
err = query.SetLayout(tiledb.TILEDB_ROW_MAJOR)
checkError(err)
_, err = query.SetBuffer("a", data)
checkError(err)
// Perform the write and close the array.
err = query.Submit()
checkError(err)
}
func readEncryptedArray(dir string) {
ctx, err := tiledb.NewContext(nil)
checkError(err)
defer ctx.Free()
// Prepare the array for reading
array, err := tiledb.NewArray(ctx, dir)
checkError(err)
defer array.Free()
err = array.OpenWithKey(tiledb.TILEDB_READ, tiledb.TILEDB_AES_256_GCM,
encryption_key)
checkError(err)
defer array.Close()
// Slice only rows 1, 2 and cols 2, 3, 4
subArray := []int32{1, 2, 2, 4}
// Prepare the vector that will hold the result (of size 6 elements)
data := make([]int32, 6)
// Prepare the query
query, err := tiledb.NewQuery(ctx, array)
checkError(err)
defer query.Free()
err = query.SetSubArray(subArray)
checkError(err)
err = query.SetLayout(tiledb.TILEDB_ROW_MAJOR)
checkError(err)
_, err = query.SetBuffer("a", data)
checkError(err)
// Submit the query and close the array.
err = query.Submit()
checkError(err)
// Print out the results.
fmt.Println(data)
}
func RunEncryptedArray() {
tempDir := temp("encrypted_array")
defer cleanup(tempDir)
createEncryptedArray(tempDir)
writeEncryptedArray(tempDir)
readEncryptedArray(tempDir)
}