Details
-
Bug
-
Status: Done
-
Medium
-
Resolution: Fixed
-
None
-
None
-
None
Description
While creating PS-5635 : Intoduce crypt_schema 2 for better error checking in encryption threads I have added an assert that page has to be decrypted if there is no key available for this space in keyring. This is an extension of that PS-5635 only allows encrypted tables to be opened when there are all required encryption keys available in the keyring to decrypt this table. Test create_or_replace reveled that when default_table_encryption is changed multiple times and encryption threads are enabled and disabled - there can be a situation that some pages are left encrypted. I have verified that this problem occurs pre PS-5635, but was not visible due to lack of the assert.