Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PS-7887-2: RocksDB encryption #4578

Draft
wants to merge 35 commits into
base: 8.0
Choose a base branch
from
Draft

PS-7887-2: RocksDB encryption #4578

wants to merge 35 commits into from

Conversation

kamil-holubicki
Copy link
Contributor

This work is based on top of #4462

  1. Rebased to current 8.0 HEAD
  2. SST files are immutable. Master Key rotation affects only new files
  3. Introduced EncryptionInfoStorage interface with EncryptionInfoPlainFileStorage implementation

NOTE: There is 1 change in rocksdb repository: missing override added. It will be added in upstream in the future, or if not, we can put this class wrapper in myrocks namespace.

White: Parts provided by RocksDB, located in rocksdb namespace
Pink: Parts provided by RocksDB, located in rocksdb namespace that we cannot use (do not meet our requirements)
Blue: Parts provided by Percona, located in myrocks namespace.
RDB-encryption-version2-ClassDiagram

@kamil-holubicki
PS-7887
a003c5f
@kamil-holubicki
PS-7887:
34f757b 
1. Detection of MKs used
2. (Keyring)MasterKeyManager introduced
@kamil-holubicki
PS-7887:
565aaf6 
1. MK generated and stored in KeyringComponent (dirty implementation)
@kamil-holubicki
PS-7887:
492a000 
1. MK rotation
@kamil-holubicki
PS-7887:
f009021 
1. Moved (almost) everything into MyRocks layer
@kamil-holubicki
PS-7887:
32f333a 
1. Cleanup (files renamed, classes renamed)
@kamil-holubicki
PS-7887:
7376424 
1. Master key manager synchronization
@kamil-holubicki
PS-7887:
8241d55 
1. clang
@kamil-holubicki
PS-7887:
cbaff93 
1. fix MasterKeyManager synchronization
@kamil-holubicki
PS-7887:
28e1aea 
1. Introduced thread safe AesCtrCipherStreamTS needed by
EncryptedRandomAccessFile::Read() (concurrent read support)
@kamil-holubicki
PS-7887:
7c6f662 
1. Thread safe CipherStream (also for write, probably not needed)
2. Solved double encryption prefix problem (reopenRWFile)
3. MTR suite adjusted
4. KeyringManager deinitialization method added (todo: solve it in better way)
@kamil-holubicki
PS-7887:
68ce8b0 
1. MTR fixes
@kamil-holubicki
PS-7887:
e5a738b 
1. Fix new writable file encryption
@kamil-holubicki
PS-7887:
2bd221b 
1. Fix writable file recreation (MTR)
@kamil-holubicki
PS-7887:
ab9d851 
1. adjust MTR tests
2. added tests combinations for encryption
3. removed execution with encryption=1 from suite.opt (moved to
combinations)
@kamil-holubicki
PS-7887:
ef59108 
1. OPTIONS file encryption
@kamil-holubicki
PS-7887:
cdf5adf 
1. Header CRC calculation/validation added
2. CRC moved after key and IV
3. key+IV+CRC are encrypted with master key
@kamil-holubicki
PS-7887:
9c24bb5 
1. Cleanup around MK manager
@kamil-holubicki
PS-7887:
34136d5 
1. MTR fixes
@kamil-holubicki
PS-7887:
4f0db57 
1. fault_env and enc_env deinitialization improved
@kamil-holubicki
PS-7887:
d71ee68 
1. Logging improved
2. Error handling improved
3. Disabled tests not suitable for encryption
(have_rocksdb_encryption_disabled.inc)
4. Fixed file size calculation (allowed size of 0 as we can have
not encrypted files as well)
@kamil-holubicki
PS-7887:
9d58925 
1. Suppressed too verbose error logging
2. Fixed error log typos
@kamil-holubicki
PS-7887:
695bb8b 
1. Master key rotation prefix read/read synchronized
@kamil-holubicki
PS-7887:
d318828 
1. Implemented main/backup encryption prefix to make master key rotation
crash safe
2. MyRocks logger full initialization move before encryption init
@kamil-holubicki
PS-7887:
e205bef 
rocksdb submodule repo url updated
@kamil-holubicki
PS-7887:
24ecf04 
make rocksdb_encryption variable dynamic
@kamil-holubicki
PS-7887:
8cdf1ef 
I_S.ROCKSDB_ENCRYPTION table introduced
@kamil-holubicki
Rocksdb pointer updated
20dbdb2
@kamil-holubicki
1. EncryptionInfoStorage interface introduced
19c0484 
2. SST files are immutables
3. MK rotation reworked (now affects only new files)
@kamil-holubicki
1. Encryption info storage + recovery
e7d22e1 
2. Master key rotation recovery
@kamil-holubicki
1. Cleanup
0456dc9 
2. Logging + error handling added to
enc_info_plainfile_storage
@kamil-holubicki kamil-holubicki marked this pull request as draft December 31, 2021 10:52
@kamil-holubicki
Changes needed for integration with backup tool:
0038fa7 
1. uuid used for MK identification managed by EncryptionUuidProvider.
Backup does not archive uuid, so after restoring new uuid will
be generated and used
2. MK rotation blocked for the 1st phase of backup when files deletions
are disabled. This is to avoid inconsistencies during backup.
As the rotation is only generation of new MK in Keyring and storing this
info in .encryption_info file it simplifies the whole things. Blocking
MK rotation does not block normal MyRocks operations (insert, delete,
etc), but simplifies the flow a lot.
@kamil-holubicki
Clenup: unused method removed.
b02cc1c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@george-lorch george-lorch Awaiting requested review from george-lorch

@LenzGr LenzGr Awaiting requested review from LenzGr

@Oneiroi Oneiroi Awaiting requested review from Oneiroi

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kamil-holubicki