The feature request page says that I need to make a forum post in order to submit a report, so I'll start here
I'm wanting to clone a backup from one bucket to another -- shouldn't be too hard with rclone, except that the SSE-C key I'm using does not seem to be usable in the config file because it is not 32 printable characters, so there seems to be no way to put it into the file.
I was able to make it work from the command line using this:
That's just an arbitrary key I created using openssl rand -base64 32 but I can't find a way to put that in the config file.
I had two thoughts on how this could work:
It could allow you to provide the key base64 encoded -- either by detecting "this is too long, must be base64 encoded" or allowing a prefix (e.g. base64:)
It could allow you to provide an obscured value, since it seems I can pass the output of the above like base64 -d < <(echo 'l/83cl9skdoczIu+ZmqHbYX5SR8lCQk6jsKg35bmeVg=') | rclone obscure -
It actually seems like the customer-key should be obscured anyway -- not that most keys you are likely to be able to read, of course...
Any thoughts? Is there a solution I'm missing? Limiting the AES256 keys to printable characters inherently limits the security of the key anyway, which seems less than ideal...
Good thought! I tried it and got Error: found key without value
EDIT: And then I realized I was dumb and missed the quotes, so I tried it again and it looks like it worked. It's ... definitely not ideal still, but it may be usable. We'll see what happens when I try an actual pre-determined key.
As a developer myself I certainly do not begrudge someone the chance to take a break =] I'm just trying to help make an already fantastic tool a little bit better and more usable.
Hopefully this thread will at least help the next person who needs to do this!