Andrew Wong has posted comments on this change. ( http://gerrit.cloudera.org:8080/17974 )
Change subject: [encryption] KUDU-3331 Encrypt file system ...................................................................... Patch Set 4: (1 comment) http://gerrit.cloudera.org:8080/#/c/17974/3//COMMIT_MSG Commit Message: http://gerrit.cloudera.org:8080/#/c/17974/3//COMMIT_MSG@32 PS3, Line 32: and tablet metadata files. > So far, we haven't treated this metadata as sensitive (e.g. when you run wa I don't think we should treat our redaction policy as the gold standard for whether files should be considered sensitive. IMO we'd be better off likening our mindset here to our mindset for fine-grained authz, where all user data/metadata is considered sensitive by default. That aside, tablet metadata has more than just the table schema in it -- in its current form it includes live row count, and could one day include more user data like min/max values (provided we don't redo the metadata layer first). ...which isn't to say that this patch needs to implement tablet metadata changes. Maybe that could be a separate patch, assuming we can agree on whether to treat metadata as sensitive. -- To view, visit http://gerrit.cloudera.org:8080/17974 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: comment Gerrit-Change-Id: I909d0c4af0c1fca0d14c99a6627842dbe2ed7524 Gerrit-Change-Number: 17974 Gerrit-PatchSet: 4 Gerrit-Owner: Attila Bukor <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Andrew Wong <[email protected]> Gerrit-Reviewer: Attila Bukor <[email protected]> Gerrit-Reviewer: Bankim Bhavsar <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120) Gerrit-Comment-Date: Tue, 02 Nov 2021 19:53:37 +0000 Gerrit-HasComments: Yes
