File: rpl_encryption.result

package info (click to toggle)
mysql-8.0 8.0.43-3
  • links: PTS, VCS
  • area: main
  • in suites:
  • size: 1,273,924 kB
  • sloc: cpp: 4,684,605; ansic: 412,450; pascal: 108,398; java: 83,641; perl: 30,221; cs: 27,067; sql: 26,594; sh: 24,181; python: 21,816; yacc: 17,169; php: 11,522; xml: 7,388; javascript: 7,076; makefile: 2,194; lex: 1,075; awk: 670; asm: 520; objc: 183; ruby: 97; lisp: 86
file content (129 lines) | stat: -rw-r--r-- 7,197 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
 
include/master-slave.inc
Warnings:
Note	####	Sending passwords in plain text without SSL/TLS is extremely insecure.
Note	####	Storing MySQL user name or password information in the connection metadata repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START REPLICA; see the 'START REPLICA Syntax' in the MySQL Manual for more information.
[connection master]
CALL mtr.add_suppression('Failed to store key');
CALL mtr.add_suppression('Failed to initialize binlog encryption');
CALL mtr.add_suppression('Unable to recover binlog encryption master key');
CALL mtr.add_suppression('Aborting');
CALL mtr.add_suppression('Cannot get file password for encrypted replication log file');
CALL mtr.add_suppression('Could not parse relay log event entry');
CALL mtr.add_suppression('Failed to fetch key from keyring');
[connection slave]
[connection master]
# Part 1
SET @@GLOBAL.binlog_encryption = ON;
ERROR HY000: Unable to recover binlog encryption master key, please check if keyring is loaded.
include/assert.inc [binlog_encryption option shall be OFF]
include/assert.inc [Binary log was not rotated]
include/assert.inc [Binary log is not encrypted]
include/assert.inc [1st binary log is not encrypted on master]
include/rpl_stop_server.inc [server_number=1]
Starting the server with "--binlog_encryption=ON" but no keyring installed
include/assert_grep.inc [Server failed to initialize binlog encryption]
include/assert_grep.inc [Server aborted to start]
# Part 2
Starting the master with "--binlog_encryption=ON" and keyring installed
include/rpl_start_server.inc [server_number=1]
include/assert.inc [binlog_encryption option shall be ON]
include/assert.inc [2nd binary log is encrypted on master]
include/assert.inc [Binary log is encrypted using 1st master key]
include/assert.inc [Binary log rotated as expected at master startup]
SET PERSIST binlog_encryption = ON;
Restart the master with keyring installed
include/rpl_restart_server.inc [server_number=1]
include/assert.inc [binlog_encryption option shall be ON]
include/assert.inc [3rd binary log is encrypted on master]
include/assert.inc [Binary log is encrypted using 1st master key]
include/assert.inc [Binary log rotated as expected at master startup]
[connection slave]
include/assert.inc [1st binary log is not encrypted on slave]
include/assert.inc [Relay log is not encrypted for slave-relay-bin.000001]
Restart the slave with keyring installed
include/rpl_restart_server.inc [server_number=2]
include/assert.inc [binlog_encryption option shall be OFF]
include/assert.inc [2nd binary log is not encrypted on slave]
include/assert.inc [Relay log is not encrypted for slave-relay-bin.000002]
SET GLOBAL binlog_encryption = ON;
include/assert.inc [binlog_encryption option shall be ON]
include/assert.inc [3rd binary log is encrypted on slave]
include/assert.inc [Binary log rotated as expected at server startup]
include/assert.inc [New binary log is encrypted using 1st master key]
include/assert.inc [Relay log rotated as expected at server startup]
include/assert.inc [Relay log is encrypted for slave-relay-bin.000003]
# Adding debug point 'verify_unusable_encryption_keys_are_purged' to @@GLOBAL.debug
ALTER INSTANCE ROTATE BINLOG MASTER KEY;
# Removing debug point 'verify_unusable_encryption_keys_are_purged' from @@GLOBAL.debug
include/assert.inc [The third relay log is re-encrypted using second master key]
include/assert.inc [The after relay log is encrypted using second master key]
# Part 3
[connection master]
CREATE TABLE t1 (c1 INT PRIMARY KEY);
INSERT INTO t1 (c1) VALUES (1), (2), (3);
INSERT INTO t1 (c1) VALUES (4), (5), (6);
[connection slave]
include/start_slave.inc
[connection master]
include/sync_slave_sql_with_master.inc
# Part 4
[connection slave]
UNINSTALL PLUGIN keyring_file;
[connection master]
include/sync_slave_sql_with_master.inc
FLUSH LOGS;
include/assert.inc [5th binary log is encrypted on slave]
include/assert.inc [Binary log rotated as expected by the FLUSH LOGS]
include/assert.inc [New binary log is still encrypted]
include/wait_for_slave_sql_error.inc [errno=13121]
include/stop_slave_io.inc
RESET SLAVE ALL;
Warnings:
Warning	1287	'RESET SLAVE' is deprecated and will be removed in a future release. Please use RESET REPLICA instead
include/assert.inc [New relay log is still encrypted]
CHANGE REPLICATION SOURCE TO SOURCE_HOST='127.0.0.1', SOURCE_PORT=MASTER_MYPORT, SOURCE_USER='root';
Warnings:
Note	1759	Sending passwords in plain text without SSL/TLS is extremely insecure.
Note	1760	Storing MySQL user name or password information in the connection metadata repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START REPLICA; see the 'START REPLICA Syntax' in the MySQL Manual for more information.
include/assert.inc [New relay log is still encrypted]
START SLAVE SQL_THREAD;
Warnings:
Warning	1287	'START SLAVE' is deprecated and will be removed in a future release. Please use START REPLICA instead
include/wait_for_slave_sql_error.inc [errno=13117]
SET GLOBAL binlog_encryption = OFF;
include/assert.inc [6th binary log is not encrypted on slave]
include/assert.inc [Binary log rotated as expected when disabling the option]
include/assert.inc [New binary log is not encrypted]
RESET SLAVE ALL;
Warnings:
Warning	1287	'RESET SLAVE' is deprecated and will be removed in a future release. Please use RESET REPLICA instead
include/assert.inc [New relay log is not encrypted]
CHANGE REPLICATION SOURCE TO SOURCE_HOST='127.0.0.1', SOURCE_PORT=MASTER_MYPORT, SOURCE_USER='root';
Warnings:
Note	1759	Sending passwords in plain text without SSL/TLS is extremely insecure.
Note	1760	Storing MySQL user name or password information in the connection metadata repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START REPLICA; see the 'START REPLICA Syntax' in the MySQL Manual for more information.
include/assert.inc [New relay log is not encrypted]
include/start_slave.inc
[connection master]
third_binary_log: master-bin.000003
include/assert.inc [the third binary log is encrypted using first master key]
# Part 5
# Adding debug point 'verify_unusable_encryption_keys_are_purged' to @@GLOBAL.debug
ALTER INSTANCE ROTATE BINLOG MASTER KEY;
# Removing debug point 'verify_unusable_encryption_keys_are_purged' from @@GLOBAL.debug
include/assert.inc [the fourth binary log is encrypted on master]
include/assert.inc [the third binary log is re-encrypted using second master key]
include/assert.inc [the fourth binary log is encrypted using second master key]
SET PERSIST binlog_encryption = OFF;
include/assert.inc [5th binary log is not encrypted on master]
ALTER INSTANCE ROTATE BINLOG MASTER KEY;
ERROR HY000: Cannot rotate binary log master key when 'binlog-encryption' is off.
RESET PERSIST binlog_encryption;
UNINSTALL PLUGIN keyring_file;
DROP TABLE t1;
include/sync_slave_sql_with_master.inc
include/stop_slave.inc
include/rpl_restart_server.inc [server_number=1]
include/rpl_restart_server.inc [server_number=2]
include/start_slave.inc
include/rpl_end.inc