Uploaded image for project: 'Percona Server'
  1. Percona Server
  2. PS-5668

Ensure keyring encryption header doesn't cross MK header encryption size

    Details

    • Type: Improvement
    • Status: Done
    • Priority: Medium
    • Resolution: Fixed
    • Affects Version/s: 8.0.15-6
    • Fix Version/s: 8.0.16-7
    • Component/s: None

      Description

      We have to ensure that the header size written by keyring key encryption doesn't cross the encryption header size used by Master Key encryption. Once the header size is crossed, it will corrupt the data written for other features.

      Size of MK encryption header size: ENCRYPTION_INFO_MAX_SIZE ( 115 bytes)

      Size of Keyring encryption header size: fil_get_encrypt_info_size(16) = 105.0

      The aim of this improvement is to add safeguard checks (release build asserts) that can detect corruption of headers when keyring header size crosses 115 bytes.

       

        Smart Checklist

          Attachments

            Activity

              People

              • Assignee:
                satya.bodapati Satya Bodapati
                Reporter:
                satya.bodapati Satya Bodapati
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - Not Specified
                  Not Specified
                  Logged:
                  Time Spent - 1 day
                  1d