Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-8813

Allow mysqlbinlog read encrypted binary logs

Details

    Description

      Allow mysqlbinlog decrypt binary logs.

      Attachments

        Issue Links

          duplicates

          Task - A task that needs to be done. MDEV-9418 mysqlbinlog can't decryption the encrypted binlog

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          relates to

          Task - A task that needs to be done. MDEV-20098 Implement key rotation for binary log and relay log

          • Major - Major loss of function.
          • Open

          Activity

            Ascending order - Click to sort in descending order
            ralf.gebhardt Ralf Gebhardt added a comment -

            The current option to get binary logs decrypted is mysqlbinlog used with the parameter --read-from-remote-server, as only the server has access to the keys via the Encryption Plugin API and Plugin. Be aware this adds load to the server.

            ralf.gebhardt Ralf Gebhardt added a comment - The current option to get binary logs decrypted is mysqlbinlog used with the parameter --read-from-remote-server, as only the server has access to the keys via the Encryption Plugin API and Plugin. Be aware this adds load to the server.
            GeoffMontee Geoff Montee (Inactive) added a comment -

            I added a note about this to the documentation:

            https://mariadb.com/kb/en/library/encrypting-binary-logs/#effects-of-encryption-on-mysqlbinlog

            GeoffMontee Geoff Montee (Inactive) added a comment - I added a note about this to the documentation: https://mariadb.com/kb/en/library/encrypting-binary-logs/#effects-of-encryption-on-mysqlbinlog
            rpizzi Rick Pizzi (Inactive) added a comment - - edited

            Just found out that there is NO WAY to read encrypted relay logs from outside the server. We really need to add decode capabilities to mysqlbinlog tool instead of relying on server to do the decode.

            rpizzi Rick Pizzi (Inactive) added a comment - - edited Just found out that there is NO WAY to read encrypted relay logs from outside the server. We really need to add decode capabilities to mysqlbinlog tool instead of relying on server to do the decode.

            People

              serg Sergei Golubchik
              elenst Elena Stepanova
              Votes:
              11 Vote for this issue
              Watchers:
              17 Start watching this issue

              Dates

                Created:
                Updated:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.