Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HDDS-2247. Delete FileEncryptionInfo from KeyInfo when a Key is deleted #200

Merged
merged 3 commits into from Nov 20, 2019
Merged

HDDS-2247. Delete FileEncryptionInfo from KeyInfo when a Key is deleted #200

merged 3 commits into from Nov 20, 2019

Conversation

dineshchitlangia
Copy link
Contributor

What changes were proposed in this pull request?

As part of HDDS-2174 we are deleting GDPR Encryption Key on delete file operation.
However, if KMS is enabled, we are skipping GDPR Encryption Key approach when writing file in a GDPR enforced Bucket.
In such scenario, when KMS is enabled & GDPR enforced on a bucket, if user deletes a file, we should delete the FileEncryptionInfo from KeyInfo, before moving it to deletedTable, else we cannot guarantee Right to Erasure.

Changes proposed:

  • Delete FileEncryptionInfo from KeyInfo when a Key is deleted
  • Added new test to verify this scenario

What is the link to the Apache JIRA

https://issues.apache.org/jira/browse/HDDS-2247

How was this patch tested?

New test contributed as part of the PR

@dineshchitlangia
Copy link
Contributor Author

Integration failure is related. I will update the PR to fix it.

bharatviswa504
bharatviswa504 approved these changes Nov 18, 2019
View reviewed changes
Copy link
Contributor

@bharatviswa504 bharatviswa504 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1 LGTM.

@dineshchitlangia
Copy link
Contributor Author

Verified the failures are unrelated to patch.

@xiaoyuyao
Copy link
Contributor

Change LGTM, +1. Thanks @dineshchitlangia for the patch.

@bharatviswa504 bharatviswa504 merged commit f29de78 into apache:master Nov 20, 2019
@bharatviswa504
Copy link
Contributor

Thank You @dineshchitlangia for the contribution and @xiaoyuyao for the review.

@dineshchitlangia dineshchitlangia deleted the HDDS-2247 branch November 20, 2019 20:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@xiaoyuyao xiaoyuyao xiaoyuyao approved these changes

@bharatviswa504 bharatviswa504 bharatviswa504 approved these changes

@anuengineer anuengineer Awaiting requested review from anuengineer

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
3 participants
@dineshchitlangia @xiaoyuyao @bharatviswa504