bruno-roustant opened a new pull request, #51: URL: https://github.com/apache/solr-sandbox/pull/51
A Java-level encryption-at-rest solution. This solution provides the encryption of the Lucene index files at the Java level. It encrypts all (or some) the files in a given index with a provided encryption key. It stores the id of the encryption key in the commit metadata (and obviously the key secret is never stored). It is possible to define a different key per Solr Core. This module also provides an EncryptionRequestHandler so that a client can trigger the (re)encryption of a Solr Core index. The (re)encryption is done concurrently while the Solr Core can continue to serve update and query requests. (See ENCRYPTION.md for more details) This work is a follow up of a previous work in [LUCENE-9379](https://issues.apache.org/jira/projects/LUCENE/issues/LUCENE-9379). There are multiple tests, including a concurrent update/query/encrypt heavy load test. Currently EncryptionMergePolicy is disabled as it does not fully work. The heavy load test shows there is still an issue with it - to be fixed in a next PR. So currently we re-encrypt based on an optimized commit. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@solr.apache.org For additional commands, e-mail: issues-h...@solr.apache.org
