Skip to content

Instantly share code, notes, and snippets.

View poornas's full-sized avatar

Poorna poornas

43 followers · 12 following
View GitHub Profile
@poornas
poornas / sse.md
Last active October 17, 2018 01:48
SSE implementation considerations

ETag

For objects created by the PUT Object, POST Object, or Copy operation, AWS returns MD5(object) for SSE-S3 encrypted objects and random ETag for SSE-C encrypted objects

To preserve security guarantees, we must not store MD5(object) in plaintext as ETag.Hence the ETag has to be stored in encrypted form as Encrypt(ETag = MD5(object)). However since APIs like ListObject do not require SSE-C key but return ETag information, this forces Minio server to also store encrypted MD5Sum for SSE-S3 and SSE-C, but return random ETag for SSE-C, and MD5(object) for SSE-S3.

In the gateway for double encryption scenario, to maintain compatibility X-Minio-Internal-ETag needs to be maintained with Encrypt(ETag = MD5(object)), and ETag set at the backend needs to be discarded and return Decrypt(Metadata['X-Minio-Internal-ETag']).

For server side copy operations, the encrypted ETag of original object MD5 needs to be decrypted correctly and re-encrypted with the target side key.

Custom format for double encr

@poornas
poornas / gateway sse backend format.md
Last active August 29, 2018 09:16

Gateway SSE backend format

There is a need for custom format in the backend for gateway sse encryption for multipart operations, primarily because of limitations of s3 multipart API protocol and the need for size of each encrypted part to be maintained for successful decryption.

multipart operation with sse at gateway

multipart gateway sse encryption creates an object per object-part at the backend like below:

  1. Gateway receives a new-multi-part request for bucket/foo by client. -> Gateway creates the object-prefix bucket/foo and stores encryption metadata for foo as bucket/foo/dare.meta This file will itself be encrypted to avoid leaking information.
@poornas
poornas / gateway_sse.md
Last active August 8, 2018 11:07
SSE handling for gateway

SSE Handling for Gateway

Provide a env variable MINIO_GATEWAY_ENCRYPTION = ON | OFF | BOTH that allows user to configure whether gateway does all the encryption, passes through to the backend storage provider or have gateway encrypt and forward with headers to backend so that backend will re-encrypt the object

1. MINIO_GATEWAY_ENCRYPTION=OFF (Pass-through for gateway)

Encryption is handled by the backend,SSE headers are forwarded to backend as is the case today.

2. MINIO_GATEWAY_ENCRYPTION=ON (Encryption at gateway)
@poornas
poornas / fs.json_format.md
Created March 22, 2018 19:15

fs.json format changes

  • remove redundant fields minio and format which are currently used only for verification, and update fs.json version
  • In the future, checksum info will be used by caching for storing bit-rot checksum. Since the version is being updated for fs.json checksum info fields are being piggy-backed as as placeholder.

Existing format

{
  "version": "1.0.1",
 "format": "fs",
@poornas
poornas / disk-cache-support.md
Last active February 7, 2018 00:47
disk cache

Summary

  • Edge caching for gateway and server with a disk based cache

Requirements

  • cache on GET, PUT and POST operations
  • cache should be highly available. In the event of an offline drive, object should still be cached to any available online drive.
  • when backend is down, List, Get, Head options should work seamlessly. Put operations will fail

Assumptions:

  • All drives have same capacity
@poornas
poornas / Dockerfile.bosh
Created August 5, 2017 16:33
Dockerfile with bosh cli v1
FROM ubuntu:16.04
MAINTAINER https://github.com/cloudfoundry/garden-dockerfiles
################################
# Install system packages
RUN apt-get update && \
apt-get -y install \
build-essential \
git \
jq \