[MDEV-8138] strange results from encrypt-and-grep test Created: 2015-05-11  Updated: 2015-05-18  Resolved: 2015-05-18

Status: Closed
Project: MariaDB Server
Component/s: Encryption, Storage Engine - InnoDB, Storage Engine - XtraDB
Affects Version/s: 10.1.4
Fix Version/s: 10.1.5

Type: Bug Priority: Blocker
Reporter: Sergei Golubchik Assignee: Jan Lindström (Inactive)
Resolution: Fixed Votes: 0
Labels: None

Attachments: File encrypt_and_grep.opt     File encrypt_and_grep.test    

 Description   

mysql-test/suite/innodb/t/encrypt-and-grep.test

 
-- source include/have_innodb.inc
 
-- source include/have_example_key_management_plugin.inc
 
 
 
# embedded does not support restart
 
-- source include/not_embedded.inc
 
 
 
--let $MYSQLD_DATADIR=`select @@datadir`
 
--let ib1_IBD = $MYSQLD_DATADIR/ibdata1
 
--let t1_IBD = $MYSQLD_DATADIR/test/t1.ibd
 
--let t2_IBD = $MYSQLD_DATADIR/test/t2.ibd
 
--let t3_IBD = $MYSQLD_DATADIR/test/t3.ibd
 
--let SEARCH_RANGE = 10000000
 
--let SEARCH_PATTERN=foobar
 
 
 
SHOW VARIABLES LIKE 'innodb_encrypt%';
 
 
 
create table t1 (a varchar(255)) engine=innodb encrypted=yes;
 
create table t2 (a varchar(255)) engine=innodb;
 
create table t3 (a varchar(255)) engine=innodb encrypted=no;
 
 
 
insert t1 values (repeat('foobar', 42));
 
insert t2 values (repeat('foobar', 42));
 
insert t3 values (repeat('foobar', 42));
 
 
 
--echo # Wait max 10 min for key encryption threads to encrypt all space
 
--let $wait_timeout= 600
 
--let $wait_condition=SELECT COUNT(*) = 0 FROM INFORMATION_SCHEMA.INNODB_TABLESPACES_ENCRYPTION WHERE MIN_KEY_VERSION = 0
 
--source include/wait_condition.inc
 
 
 
--echo # t1 yes on
 
-- let SEARCH_FILE=$t1_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t2 ... on
 
-- let SEARCH_FILE=$t2_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t3 no  on
 
-- let SEARCH_FILE=$t3_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # ibdata1
 
-- let SEARCH_FILE=$ib1_IBD
 
-- source include/search_pattern_in_file.inc
 
 
 
--echo # Now turn off encryption and wait for threads to decrypt everything
 
SET GLOBAL innodb_encrypt_tables = off;
 
 
 
--echo # Wait max 10 min for key encryption threads to decrypt all space
 
--let $wait_timeout= 600
 
--let $wait_condition=SELECT COUNT(*) = 1 FROM INFORMATION_SCHEMA.INNODB_TABLESPACES_ENCRYPTION WHERE MIN_KEY_VERSION <> 0
 
--source include/wait_condition.inc
 
 
 
--echo # t1 yes off
 
-- let SEARCH_FILE=$t1_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t2 ... off
 
-- let SEARCH_FILE=$t2_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t3 no  off
 
-- let SEARCH_FILE=$t3_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # ibdata1
 
-- let SEARCH_FILE=$ib1_IBD
 
-- source include/search_pattern_in_file.inc
 
 
 
--echo # Turn on encryption
 
SET GLOBAL innodb_encrypt_tables = on;
 
 
 
--echo # Wait max 10 min for key encryption threads to encrypt all space
 
--let $wait_timeout= 600
 
--let $wait_condition=SELECT COUNT(*) = 0 FROM INFORMATION_SCHEMA.INNODB_TABLESPACES_ENCRYPTION WHERE MIN_KEY_VERSION = 0
 
--source include/wait_condition.inc
 
 
 
--echo # t1 yes on
 
-- let SEARCH_FILE=$t1_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t2 ... on
 
-- let SEARCH_FILE=$t2_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # t3 no  on
 
-- let SEARCH_FILE=$t3_IBD
 
-- source include/search_pattern_in_file.inc
 
--echo # ibdata1
 
-- let SEARCH_FILE=$ib1_IBD
 
-- source include/search_pattern_in_file.inc
 
 
 
drop table t1, t2, t3;

Here my results:

  • encryption enabled, the pattern is not found in encrypted tables, it is found in the unencrypted table. It is either found or not (unreliably) in ibdata1 — bug?
  • encryption disabled, the pattern is found everywhere, even in the table with encrypted=ON. bug.
  • encryption enabled. the pattern is found in all tables — bug, not found in ibdata1.

 Comments   
Comment by Jan Lindström (Inactive) [ 2015-05-18 ]

commit 20c23048c1d2f28942f2f99e4150a58b6545c0cd
Author: Jan Lindström <jan.lindstrom@mariadb.com>
Date: Sun May 17 14:14:16 2015 +0300

MDEV-8164: Server crashes in pfs_mutex_enter_func after fil_crypt_is_closing or alike

Analysis: Problem was that tablespaces not encrypted might not have
crypt_data stored on disk.

Fixed by always creating crypt_data to memory cache of the tablespace.

MDEV-8138: strange results from encrypt-and-grep test

Analysis: crypt_data->type is not updated correctly on memory
cache. This caused problem with state tranfer on
encrypted => unencrypted => encrypted.

Fixed by updating memory cache of crypt_data->type correctly based on
current srv_encrypt_tables value to either CRYPT_SCHEME_1 or
CRYPT_SCHEME_UNENCRYPTED.

Generated at Thu Feb 08 07:24:55 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.