feat: support crc32c checksum validation #173

tam7t · 2022-05-26T23:06:00Z

SecretVersions created after July 2021 all have a checksum either
generated by the end user when calling AddSecretVersion or server
side by the Secret Manager API when initially written.

https://cloud.google.com/secret-manager/docs/data-integrity

This change adds an additional crc32c validation to catch possible
data corruption. Note this will not catch corruption that may occur
downstream of the provider (i.e. by the driver process, linux tmpfs
mount, or the process consuming the secret).

SecretVersions created after July 2021 all have a checksum either generated by the end user when calling AddSecretVersion or server side by the Secret Manager API when initially written. https://cloud.google.com/secret-manager/docs/data-integrity This change adds an additional crc32c validation to catch possible data corruption. Note this will not catch corruption that may occur downstream of the provider (i.e. by the driver process, linux tmpfs mount, or the process consuming the secret).

tam7t requested a review from colinman as a code owner May 26, 2022 23:06

tam7t had a problem deploying to e2e-test May 26, 2022 23:06 Failure

tam7t force-pushed the tam7t/checksum branch from ddbdee4 to 1c95dde Compare May 27, 2022 00:23

tam7t temporarily deployed to e2e-test May 27, 2022 00:23 Inactive

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: support crc32c checksum validation #173

feat: support crc32c checksum validation #173

tam7t commented May 26, 2022

feat: support crc32c checksum validation #173

Are you sure you want to change the base?

feat: support crc32c checksum validation #173

Conversation

tam7t commented May 26, 2022