Example 61 with ColumnFamilyDescriptorBuilder
use of org.apache.hadoop.hbase.client.ColumnFamilyDescriptorBuilder in project hbase by apache.
the class TestEncryptionKeyRotation method testMasterKeyRotation.
@Test
public void testMasterKeyRotation() throws Exception {
// Create the table schema
TableDescriptorBuilder tableDescriptorBuilder = TableDescriptorBuilder.newBuilder(TableName.valueOf("default", name.getMethodName()));
ColumnFamilyDescriptorBuilder columnFamilyDescriptorBuilder = ColumnFamilyDescriptorBuilder.newBuilder(Bytes.toBytes("cf"));
String algorithm = conf.get(HConstants.CRYPTO_KEY_ALGORITHM_CONF_KEY, HConstants.CIPHER_AES);
columnFamilyDescriptorBuilder.setEncryptionType(algorithm);
columnFamilyDescriptorBuilder.setEncryptionKey(EncryptionUtil.wrapKey(conf, "hbase", initialCFKey));
tableDescriptorBuilder.setColumnFamily(columnFamilyDescriptorBuilder.build());
TableDescriptor tableDescriptor = tableDescriptorBuilder.build();
// Create the table and some on disk files
createTableAndFlush(tableDescriptor);
// Verify we have store file(s) with the initial key
List<Path> storeFilePaths = findStorefilePaths(tableDescriptor.getTableName());
assertTrue(storeFilePaths.size() > 0);
for (Path path : storeFilePaths) {
assertTrue("Store file " + path + " has incorrect key", Bytes.equals(initialCFKey.getEncoded(), extractHFileKey(path)));
}
// Now shut down the HBase cluster
TEST_UTIL.shutdownMiniHBaseCluster();
// "Rotate" the master key
conf.set(HConstants.CRYPTO_MASTERKEY_NAME_CONF_KEY, "other");
conf.set(HConstants.CRYPTO_MASTERKEY_ALTERNATE_NAME_CONF_KEY, "hbase");
// Start the cluster back up
TEST_UTIL.startMiniHBaseCluster();
// Verify the table can still be loaded
TEST_UTIL.waitTableAvailable(tableDescriptor.getTableName(), 5000);
// Double check that the store file keys can be unwrapped
storeFilePaths = findStorefilePaths(tableDescriptor.getTableName());
assertTrue(storeFilePaths.size() > 0);
for (Path path : storeFilePaths) {
assertTrue("Store file " + path + " has incorrect key", Bytes.equals(initialCFKey.getEncoded(), extractHFileKey(path)));
}
}
Also used :
Path(org.apache.hadoop.fs.Path)
ColumnFamilyDescriptorBuilder(org.apache.hadoop.hbase.client.ColumnFamilyDescriptorBuilder)
TableDescriptorBuilder(org.apache.hadoop.hbase.client.TableDescriptorBuilder)
TableDescriptor(org.apache.hadoop.hbase.client.TableDescriptor)
Test(org.junit.Test)
Aggregations
ColumnFamilyDescriptorBuilder (org.apache.hadoop.hbase.client.ColumnFamilyDescriptorBuilder)61
TableDescriptorBuilder (org.apache.hadoop.hbase.client.TableDescriptorBuilder)43
TableDescriptor (org.apache.hadoop.hbase.client.TableDescriptor)19
ColumnFamilyDescriptor (org.apache.hadoop.hbase.client.ColumnFamilyDescriptor)16
Test (org.junit.Test)9
Table (org.apache.hadoop.hbase.client.Table)7
Admin (org.apache.hadoop.hbase.client.Admin)6
Put (org.apache.hadoop.hbase.client.Put)6
IOException (java.io.IOException)5
Configuration (org.apache.hadoop.conf.Configuration)5
Path (org.apache.hadoop.fs.Path)5
TableName (org.apache.hadoop.hbase.TableName)4
ArrayList (java.util.ArrayList)3
Map (java.util.Map)3
QName (javax.xml.namespace.QName)3
TableNotEnabledException (org.apache.hadoop.hbase.TableNotEnabledException)3
TableNotFoundException (org.apache.hadoop.hbase.TableNotFoundException)3
RegionInfo (org.apache.hadoop.hbase.client.RegionInfo)3
FileStatus (org.apache.hadoop.fs.FileStatus)2
FileSystem (org.apache.hadoop.fs.FileSystem)2
