Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | make encrypt-binlog and encrypt-tmp-files to fail if no encryption | Sergei Golubchik | 2015-09-09 | 1 | -14/+17 |
| | | | | | | --encrypt-binlog and --encrypt-tmp-files used to mean "encrypt XXX if encryption is available, otherwise don't encrypt", now they mean "encrypt or fail with an error". | ||||
* | New encryption API. Piece-wise encryption. | Sergei Golubchik | 2015-09-04 | 1 | -7/+9 |
| | | | | | | | | | | | | | Instead of encrypt(src, dst, key, iv) that encrypts all data in one go, now we have encrypt_init(key,iv), encrypt_update(src,dst), and encrypt_finish(dst). This also causes collateral changes in the internal my_crypt.cc encryption functions and in the encryption service. There are wrappers to provide the old all-at-once encryption functionality. But binlog events are often written piecewise, they'll need the new api. | ||||
* | my_aes_get_size() | Sergei Golubchik | 2015-06-02 | 1 | -1/+1 |
| | | | | | return unsigned, not signed. return a value large enough for GCM | ||||
* | just like tempfiles: use key id 2 for temp Aria tables | Sergei Golubchik | 2015-06-02 | 1 | -2/+6 |
| | | | | | introduce ENCRYPTION_KEY_SYSTEM_DATA and ENCRYPTION_KEY_TEMPORARY_DATA constants; use them everywhere. | ||||
* | MDEV-8126 encryption for temp files | Sergei Golubchik | 2015-06-02 | 1 | -0/+254 |
IO_CACHE tempfiles encryption |