File: sensitive_variables_rewrite.result

package info (click to toggle)

mysql-8.0 8.0.43-3

links: PTS, VCS
area: main
in suites: sid
size: 1,273,924 kB
sloc: cpp: 4,684,605; ansic: 412,450; pascal: 108,398; java: 83,641; perl: 30,221; cs: 27,067; sql: 26,594; sh: 24,181; python: 21,816; yacc: 17,169; php: 11,522; xml: 7,388; javascript: 7,076; makefile: 2,194; lex: 1,075; awk: 670; asm: 520; objc: 183; ruby: 97; lisp: 86

file content (59 lines) | stat: -rw-r--r-- 2,550 bytes

#
# WL#13469: secure storage for sensitive system variables
#
# Test for sensitive variables value rewrite functionality
#
# Setup
#
INSTALL COMPONENT 'file://component_test_sensitive_system_variables';
TRUNCATE TABLE mysql.general_log;
SELECT @@session.autocommit INTO @save_session_autocommit;
SELECT @@session.debug_sensitive_session_string INTO @save_debug_sensitive_session_string;
SET GLOBAL general_log_file = '.../log/rewrite_general.log';
SET GLOBAL log_output =       'FILE,TABLE';
SET GLOBAL general_log=       'ON';
#
# Set sensitive system variables
#
SET @@session.debug_sensitive_session_string= "haha";
SET @@session.autocommit = 0, @@session.debug_sensitive_session_string= "haha";
SET GLOBAL test_component.sensitive_string_1 = "haha";
SET PERSIST test_component.sensitive_string_2 = "haha";
Warnings:
Warning	4098	SENSITIVE system variable 'test_component.sensitive_string_2' was persisted without encryption. Consider restarting server with keyring component support to persist SENSITIVE variables securely.
SET PERSIST_ONLY test_component.sensitive_ro_string_1 = 'haha';
Warnings:
Warning	4098	SENSITIVE system variable 'test_component.sensitive_ro_string_1' was persisted without encryption. Consider restarting server with keyring component support to persist SENSITIVE variables securely.
SET @@session.debug_sensitive_session_string = @save_debug_sensitive_session_string;
SET @@session.autocommit= @save_session_autocommit;
RESET PERSIST;
#
# Check error log data
#
# Must be 1 (Single SELECT statement)
SELECT COUNT(*) FROM mysql.general_log WHERE argument LIKE ('%haha%');
COUNT(*)
1
# Must be 7 (6 SET statement + 1 SELECT statement)
SELECT COUNT(*) FROM mysql.general_log WHERE argument LIKE ('%REDACTED%');
COUNT(*)
7
# List all SET statements
SELECT argument FROM mysql.general_log WHERE argument LIKE ('SET%');
argument
SET GLOBAL general_log=       'ON'
SET SESSION debug_sensitive_session_string=<REDACTED>
SET SESSION autocommit=0, SESSION debug_sensitive_session_string=<REDACTED>
SET GLOBAL test_component.sensitive_string_1=<REDACTED>
SET PERSIST test_component.sensitive_string_2=<REDACTED>
SET PERSIST_ONLY test_component.sensitive_ro_string_1=<REDACTED>
SET SESSION debug_sensitive_session_string=<REDACTED>
SET @@session.autocommit= @save_session_autocommit
#
# cleanup
#
SET GLOBAL general_log_file =  '.../mysqld.1/mysqld.log';
SET GLOBAL log_output=        'FILE';
SET GLOBAL general_log=       1;
TRUNCATE TABLE mysql.general_log;
UNINSTALL COMPONENT "file://component_test_sensitive_system_variables";