maxmustermann/minio
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
minio/pkg
History
Andreas Auernhammer a1f70b106f
sse: add support for SSE-KMS bucket configurations (#12295) 
This commit adds support for SSE-KMS bucket configurations.
Before, the MinIO server did not support SSE-KMS, and therefore,
it was not possible to specify an SSE-KMS bucket config.

Now, this is possible. For example:
```
mc encrypt set sse-kms some-key <alias>/my-bucket
```

Further, this commit fixes an issue caused by not supporting
SSE-KMS bucket configuration and switching to SSE-KMS as default
SSE method.

Before, the server just checked whether an SSE bucket config was
present (not which type of SSE config) and applied the default
SSE method (which was switched from SSE-S3 to SSE-KMS).

This caused objects to get encrypted with SSE-KMS even though a
SSE-S3 bucket config was present.

This issue is fixed as a side-effect of this commit.

Signed-off-by: Andreas Auernhammer <aead@mail.de>
2021-05-14 00:59:05 -07:00
..
auth admin: Return exported errors with invalid access secret keys (#12234) 2021-05-05 14:44:54 -07:00
bpool update license change for MinIO 2021-04-23 11:58:53 -07:00
bucket sse: add support for SSE-KMS bucket configurations (#12295) 2021-05-14 00:59:05 -07:00
certs kms: replace KES client implementation with minio/kes (#12207) 2021-05-10 18:15:11 -07:00
cgroup update license change for MinIO 2021-04-23 11:58:53 -07:00
color update license change for MinIO 2021-04-23 11:58:53 -07:00
console update license change for MinIO 2021-04-23 11:58:53 -07:00
disk move madmin to github.com/minio/madmin-go (#12239) 2021-05-06 08:52:02 -07:00
dsync lock: Timeout Unlock RPC call (#12213) 2021-05-11 02:11:29 -07:00
ellipses update license change for MinIO 2021-04-23 11:58:53 -07:00
env update license change for MinIO 2021-04-23 11:58:53 -07:00
etag update license change for MinIO 2021-04-23 11:58:53 -07:00
event Add support for Elasticsearch 7.x (#12053) 2021-05-10 15:06:58 -07:00
fips config: enforce AES-GCM in FIPS mode (#12265) 2021-05-10 08:24:11 -07:00
handlers update license change for MinIO 2021-04-23 11:58:53 -07:00
hash update license change for MinIO 2021-04-23 11:58:53 -07:00
iam/policy Support for remote tier management (#12090) 2021-04-23 11:58:53 -07:00
ioutil add missing wait groups for certain io.Pipe() usage (#12264) 2021-05-11 09:18:37 -07:00
kms kms: KES client should return non-nil error when GenerateKey fails (#12290) 2021-05-13 09:11:10 -07:00
licverifier update license change for MinIO 2021-04-23 11:58:53 -07:00
lock update license change for MinIO 2021-04-23 11:58:53 -07:00
lsync update license change for MinIO 2021-04-23 11:58:53 -07:00
mimedb Support for remote tier management (#12090) 2021-04-23 11:58:53 -07:00
mountinfo update license change for MinIO 2021-04-23 11:58:53 -07:00
net move madmin to github.com/minio/madmin-go (#12239) 2021-05-06 08:52:02 -07:00
pubsub update license change for MinIO 2021-04-23 11:58:53 -07:00
quick update license change for MinIO 2021-04-23 11:58:53 -07:00
s3select move parquet-go to github.com/minio/parquet-go repo 2021-05-03 08:52:07 -07:00
safe update license change for MinIO 2021-04-23 11:58:53 -07:00
smart move madmin to github.com/minio/madmin-go (#12239) 2021-05-06 08:52:02 -07:00
sync/errgroup update license change for MinIO 2021-04-23 11:58:53 -07:00
sys update license change for MinIO 2021-04-23 11:58:53 -07:00
trie update license change for MinIO 2021-04-23 11:58:53 -07:00
wildcard update license change for MinIO 2021-04-23 11:58:53 -07:00
words update license change for MinIO 2021-04-23 11:58:53 -07:00