Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-7450

file_example_key_management_plugin and example_key_management_plugin don't work with yassl

        Details

        • Type: Bug
        • Status: Closed
        • Priority: Major
        • Resolution: Fixed
        • Affects Version/s: 10.1.3
        • Fix Version/s: 10.1.4
        • Component/s: Encryption
        • Labels:
          None

          Description

          For some strange reason, when compiling with OpenSSL, more internal encryption functions are exported. These plugins use them directly. So, when compiled with YaSSL these symbols aren't available and plugins don't load.

          We need to
          1. consistently export or hide (preferrably) these symbols both with OpenSSL and YaSSL
          2. export the encryption as a service for key management plugins to use or change plugins not to use it.

          When fixed a workaround from plugins' CMakelIsts.txt files should be removed

            Gliffy Diagrams

              Attachments

                Issue Links

                relates to

                Bug - A problem which impairs or prevents the functions of the product. MDEV-7772 SIGSEGV on my_aes_encrypt_cbc when -DWITH_SSL=bundled

                • Major - Major loss of function.
                • Closed

                  Activity

                  Ascending order - Click to sort in descending order
                  Hide
                  Permalink
                  serg Sergei Golubchik added a comment -

                  I've fixed symbol visibility, but plugins still fail. Jan Lindström, could you please take a look at that?

                  Show
                  serg Sergei Golubchik added a comment - I've fixed symbol visibility, but plugins still fail. Jan Lindström , could you please take a look at that?
                  Hide
                  Permalink
                  jplindst Jan Lindström added a comment -

                  After

                  commit 5e6905bb7f1c80e5cc368bb917f6e15afc73a269
Author: Jan Lindström <jan.lindstrom@mariadb.com>
Date:   Tue Mar 17 10:59:25 2015 +0200

    Replace static usage of AES_CTR with current encryption algorithm.

                  Tests seem to work on openSSL with ctr, cbc and ecb modes and on yassl with cbc and ecb modes. Removed static ctr method usage from example_key_management_plugin.

                  I do not follow point 2. What should be done for that ?

                  Show
                  jplindst Jan Lindström added a comment - After commit 5e6905bb7f1c80e5cc368bb917f6e15afc73a269 Author: Jan Lindström <jan.lindstrom@mariadb.com> Date: Tue Mar 17 10:59:25 2015 +0200 Replace static usage of AES_CTR with current encryption algorithm. Tests seem to work on openSSL with ctr, cbc and ecb modes and on yassl with cbc and ecb modes. Removed static ctr method usage from example_key_management_plugin. I do not follow point 2. What should be done for that ?
                  Hide
                  Permalink
                  serg Sergei Golubchik added a comment -

                  Never mind, I'll do it later, it's only a cleanup.
                  This bug is only about "file_example_key_management_plugin and example_key_management_plugin don't work with yassl", so as long as they do it can be closed.

                  Show
                  serg Sergei Golubchik added a comment - Never mind, I'll do it later, it's only a cleanup. This bug is only about "file_example_key_management_plugin and example_key_management_plugin don't work with yassl", so as long as they do it can be closed.

                    People

                    • Assignee:
                      jplindst Jan Lindström
                      Reporter:
                      serg Sergei Golubchik
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      3 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: