PARQUET-1228: Format Structures encryption

[ggershinsky]

No description provided.

[gszadovszky]

To have a passing travis on your feature branch you may use the dev script feature introduced in PARQUET-1490. See https://github.com/apache/parquet-mr/blob/bloom-filter/dev/travis-before_install-bloom-filter.sh as an example.

[ggershinsky]

@gszadovszky Thanks, but this wont help, because the format pull request is not merged yet in that feature branch,
apache/parquet-format#124
Would appreciate if you could check if this can be accelerated..

[Fokko]

LGTM in general, can you do an autoformat? A lot of weird indenting and trailing whitespace.

[Fokko]

This one implements Closeable, can we wrap a try-with-resources around this? And why 100 buffer size? Maybe move this to a constant, instead of having a magic variable.

[ggershinsky]

try-with-resources sounds good.
100 is the initial alloc. Usually enough for page headers etc, but will auto-grow for larger ones.
Will make it a constant.

[Fokko]

I like to make variables like these final

[Fokko]

I like to make variables like these final

[Fokko]

I would omit the casting since it doesn't add any value.

[ggershinsky]

The value is in compiler detection of buggy calls to wrong methods (wrong signature), causes by typeless nulls.

[ggershinsky]

caused

[chenjunjiedada]

Could you please paste what kind of compiling error you met? Maybe we can set an option in the compiler?

[nandorKollar]

I removed the extra casts, and didn't get any compile error. I'm also curious what was the error message you got.

[ggershinsky]

Yep, it compiles, but the reason is to prevent compiler to cast this to an overloaded method with a different object type in place of the decryptor etc. A sort of precaution.

[nandorKollar]

I can't imagine any scenario where this could happen. I think if there's an overloaded method with different parameters, and the compile can't figure out which method to call, then it would be a compilation error. In that case casting is the way to give hint to the compiler, that you'd like to call the method with BlockCipher.Decryptor and byte[] parameters, but in this case the method invocation is clear without casting too.

[ggershinsky]

I see. Ok, looks like we have two options: 1) leave the code as is - the cast helps code readers to understand what is nulled (in this case, that we call methods without encryption); also, it's harmless 2) remove the casts in this and other pull requests.
Please let me know your preference, I'm fine with either option.

[nandorKollar]

I personally prefer more compact code, and looks like @Fokko thinks the same, so if you don't mind, then let's remove those casts, that are not necessary and don't add any value!

[ggershinsky]

Ok, will do that.

[Fokko]

I would omit the casting since it doesn't add any value.

[ggershinsky]

as above.

[Fokko]

I would split the Encryptor and Decryptor in separate files and put them in the BlockCipher package. WDYT?

[ggershinsky]

I'm reluctant to do that. Extra package, with two small files; extra file..

[nandorKollar]

I think keeping these interfaces in the same file is acceptable, they're not too big.

[ggershinsky]

Hi Fokko, thanks for the review, much appreciated. Finally, I got some respite from the C++ PRs, now getting to the Java ones.
Regarding autoformat - can do, but please suggest a (Linux cli?) tool for that.

[chenjunjiedada]

nit: please move this line to the end of last line.

[nandorKollar]

nit, but not yet addressed, @ggershinsky could you please apply Junjie's recommendation?

[ggershinsky]

will do, sorry for missing this.

[chenjunjiedada]

Could you please paste what kind of compiling error you met? Maybe we can set an option in the compiler?

[nandorKollar]

Would be nice to not use abbreviation in the parameter description, but resolve it.
Something like: @param AAD Additional Authenticated Data for the encryption algorithm (ignored in case of CTR cipher)

[ggershinsky]

sounds good

[nandorKollar]

Please document when does it throw IOException.

[ggershinsky]

will do

[nandorKollar]

Same as for Encryptor interface

[nandorKollar]

Please document parameters, return value and exception. Also, I'd recommend use method overloading, and name this method as decrypt too. Eventually the only change between this and the other decrypt method is in the input parameter: the 'from' in this case is an input stream instead of a byte array, but otherwise they do the same.

[ggershinsky]

sounds good

[nandorKollar]

Undocumented throws.

[ggershinsky]

will document

[nandorKollar]

nit: remove empty line here

[nandorKollar]

I'm afraid that in order for this to work, we'll need 3d8eae7 too. @ggershinsky should we rebase this branch onto master?

[ggershinsky]

@nandorKollar please ignore my previous text here:), now I see what you mean. Yes, rebasing this branch onto master sounds good to me.

[ggershinsky]

@nandorKollar can I ask you to rebase this branch? Or let me know if you prefer me to create a pull request for that.

[nandorKollar]

@ggershinsky done, let me retrigger Travis to see the test results.

[nandorKollar]

Seems that Travis fails because the default JDK version is now 11, #665 fixes it.

[nandorKollar]

I think Travis fails, because the branch specific install script clones parquet-format inside the parquet-mr working folder (see this path /home/travis/build/apache/parquet-mr/parquet-format/pom.xml), and Rat check fails because parquet-format/blob/master/.github/PULL_REQUEST_TEMPLATE.md is not excluded (in format it is - that's why format builds are not failing, but in mr no exclude pattern matches this file).

I recommend modifying the encryption specific before_install script with cloning and building parquet-format in build directory (before clone, move to TRAVIS_BUILD_DIR cd $TRAVIS_BUILD_DIR), and at the end going back to the original directory. Something like this:

cd $TRAVIS_BUILD_DIR
git clone https://github.com/apache/parquet-format.git
mvn -f $TRAVIS_BUILD_DIR/apache/parquet-format/pom.xm install -DskipTests
cd -

[nandorKollar]

Hmm okay, my bad, TRAVIS_BUILD_DIR is the cloned repository path as per https://docs.travis-ci.com/user/environment-variables/.
Then maybe this?

cd ../..
git clone -b encryption --single-branch https://github.com/apache/parquet-format.git
cd parquet-format
mvn install -DskipTests
cd $TRAVIS_BUILD_DIR

[nandorKollar]

Ouch, hit log record limit. When building parquet-format, I recommend adding --batch-mode so that download progress report messages are not emitted.

[ggershinsky]

yesss. thanks @nandorKollar for helping with this! I'll get working on addressing the comments.

[ggershinsky]

Hi guys, I think I've addressed all comments, but let me know if I've missed anything.

[nandorKollar]

@ggershinsky I think you missed some of the comments from @Fokko about final variables and formatting.

[ggershinsky]

@nandorKollar I have made these variables final as per the recommendation from @Fokko. Have I missed some variables? I'll check again.
Regarding auto-formatting - I don't know how to do that, that's why I've asked for an advise before. Is there a tool for that? Or a simple "ctrl-i" in Eclipse will do?

[ggershinsky]

@nandorKollar comments are addressed.
To format the code, I've used the Eclipse formatting tool.

[Fokko]

Codewise LGTM