Skip to content

Make StandardEncryptionManager serializable #14751

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
tom-s-powell wants to merge 22 commits into
base: main
Choose a base branch
from
Open

Make StandardEncryptionManager serializable #14751

tom-s-powell wants to merge 22 commits into from

Conversation

@tom-s-powell
Copy link
Contributor

@tom-s-powell tom-s-powell commented Dec 3, 2025

StandardEncryptionManager and KeyManagementClient are already declared as Serializable but they are not actually serializable. This breaks use of EncryptingFileIO with certain things such as AllManifestsTableScan.

#14750 will ensure key ids are preserved.

@tom-s-powell tom-s-powell marked this pull request as ready for review December 4, 2025 16:52
@smaheshwar-pltr smaheshwar-pltr mentioned this pull request Dec 4, 2025
Open
3 tasks
@huaxingao
Copy link
Contributor

huaxingao commented Dec 5, 2025

cc @ggershinsky

@ggershinsky
Copy link
Contributor

ggershinsky commented Dec 5, 2025

In general, sounds good to me. The security model of Iceberg table encryption does not preclude distribution of the encryption manager and the kms client.
I'll have a closer look at the patch code details.

@tom-s-powell tom-s-powell mentioned this pull request Dec 5, 2025
Merged
ggershinsky
ggershinsky reviewed Dec 8, 2025
View reviewed changes
@github-actions github-actions bot added the AZURE label Jan 6, 2026
@github-actions github-actions bot added the spark label Jan 7, 2026
@tom-s-powell
Copy link
Contributor Author

tom-s-powell commented Jan 12, 2026

@huaxingao okay with this one?

@huaxingao
Copy link
Contributor

huaxingao commented Jan 16, 2026

LGTM except a minor comment.

@huaxingao
Copy link
Contributor

huaxingao commented Jan 16, 2026

@ggershinsky @smaheshwar-pltr Do you have any more comments for this PR?

ggershinsky
ggershinsky approved these changes Jan 16, 2026
View reviewed changes
Copy link
Contributor

@ggershinsky ggershinsky left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, LGTM

smaheshwar-pltr
smaheshwar-pltr approved these changes Jan 16, 2026
View reviewed changes
Copy link
Contributor

@smaheshwar-pltr smaheshwar-pltr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM too, only nits. Thanks!

@rashworld-max rashworld-max mentioned this pull request Jan 16, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@huaxingao huaxingao huaxingao left review comments

@singhpk234 singhpk234 singhpk234 left review comments

+2 more reviewers

@ggershinsky ggershinsky ggershinsky approved these changes

@smaheshwar-pltr smaheshwar-pltr smaheshwar-pltr approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

API AWS AZURE core GCP spark

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@tom-s-powell @huaxingao @ggershinsky @singhpk234 @smaheshwar-pltr @iamthomaspowell