Examples with KeyEncryptionKey org.apache.parquet.crypto.keytools.KeyToolkit.KeyEncryptionKey used on opensource projects

Search in sources :

Example 1 with KeyEncryptionKey

use of org.apache.parquet.crypto.keytools.KeyToolkit.KeyEncryptionKey in project parquet-mr by apache.

the class FileKeyWrapper method getEncryptionKeyMetadata.

byte[] getEncryptionKeyMetadata(byte[] dataKey, String masterKeyID, boolean isFooterKey, String keyIdInFile) {
    if (null == kmsClient) {
        throw new ParquetCryptoRuntimeException("No KMS client available. See previous errors.");
    }
    String encodedKekID = null;
    String encodedWrappedKEK = null;
    String encodedWrappedDEK = null;
    if (!doubleWrapping) {
        encodedWrappedDEK = kmsClient.wrapKey(dataKey, masterKeyID);
    } else {
        // Find in cache, or generate KEK for Master Key ID
        KeyEncryptionKey keyEncryptionKey = KEKPerMasterKeyID.computeIfAbsent(masterKeyID, (k) -> createKeyEncryptionKey(masterKeyID));
        // Encrypt DEK with KEK
        byte[] AAD = keyEncryptionKey.getID();
        encodedWrappedDEK = KeyToolkit.encryptKeyLocally(dataKey, keyEncryptionKey.getBytes(), AAD);
        encodedKekID = keyEncryptionKey.getEncodedID();
        encodedWrappedKEK = keyEncryptionKey.getEncodedWrappedKEK();
    }
    boolean storeKeyMaterialInternally = (null == keyMaterialStore);
    String serializedKeyMaterial = KeyMaterial.createSerialized(isFooterKey, kmsInstanceID, kmsInstanceURL, masterKeyID, doubleWrapping, encodedKekID, encodedWrappedKEK, encodedWrappedDEK, storeKeyMaterialInternally);
    // Internal key material storage: key metadata and key material are the same
    if (storeKeyMaterialInternally) {
        return serializedKeyMaterial.getBytes(StandardCharsets.UTF_8);
    }
    // External key material storage: key metadata is a reference to a key in the material store
    if (null == keyIdInFile) {
        if (isFooterKey) {
            keyIdInFile = KeyMaterial.FOOTER_KEY_ID_IN_FILE;
        } else {
            keyIdInFile = KeyMaterial.COLUMN_KEY_ID_IN_FILE_PREFIX + keyCounter;
            keyCounter++;
        }
    }
    keyMaterialStore.addKeyMaterial(keyIdInFile, serializedKeyMaterial);
    String serializedKeyMetadata = KeyMetadata.createSerializedForExternalMaterial(keyIdInFile);
    return serializedKeyMetadata.getBytes(StandardCharsets.UTF_8);
}
Also used : ParquetCryptoRuntimeException(org.apache.parquet.crypto.ParquetCryptoRuntimeException) KeyEncryptionKey(org.apache.parquet.crypto.keytools.KeyToolkit.KeyEncryptionKey)

Aggregations

ParquetCryptoRuntimeException (org.apache.parquet.crypto.ParquetCryptoRuntimeException)1 KeyEncryptionKey (org.apache.parquet.crypto.keytools.KeyToolkit.KeyEncryptionKey)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial