mirror/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-04-15 19:55:35 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
mariadb/mysql-test/suite/encryption/t/filekeys_encfile.test
Yuchen Pei 051e5c3739 MDEV-34712 Add support to sha2 and pbkdf2 key derivation in file_key_management 
Add two new variables:

file_key_management_digest={sha1|sha224|sha256|sha384|sha512}

This specify the digest function to use in key derivation of the key
used for decryption of the keyfile.

file_key_management_use_pbkdf2=N

This specify whether pbkdf2 is used in the key derivation, and if
so (N != 0), how many iterations.
2025-03-18 18:28:20 +01:00

34 lines
1.9 KiB
Text
Raw Permalink Blame History

# # The encrypted key files were generated using the following:
# let $plain_keyfile=$MYSQL_TMP_DIR/keys.txt;
# let $enc_keyfile_prefix=$MTR_SUITE_DIR/t/filekeys-data;
# write_file $plain_keyfile;
# #
# # this is a comment
# #
# 1;770A8A65DA156D24EE2A093277530142
# 2;4D92199549E0F2EF009B4160F3582E5528A11A45017F3EF8
# # another comment
# 33;B374A26A71490437AA024E4FADD5B497FDFF1A8EA6FF12F6FB65AF2720B59CCF
# 4;18420B5CBA31CCDFFE9716E91EB61374D05914F3ADE23E03 --> ignored
# 5;966050D7777350B6FD5CCB3E5F648DA45C63BEFB6DEDDFA13443F156B7D35C84
# 6;B5EA210C8C09EF20DB95EC584714A89F # and yet another
# EOF
# exec openssl enc -aes-256-cbc -md sha1 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha1.enc;
# exec openssl enc -aes-256-cbc -md sha224 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha224.enc;
# exec openssl enc -aes-256-cbc -md sha256 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha256.enc;
# exec openssl enc -aes-256-cbc -md sha384 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha384.enc;
# exec openssl enc -aes-256-cbc -md sha512 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha512.enc;
# exec openssl enc -aes-256-cbc -md sha1 -pbkdf2 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha1-pbkdf2.enc;
# exec openssl enc -aes-256-cbc -md sha224 -iter 1000 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha224-pbkdf2.enc;
# exec openssl enc -aes-256-cbc -md sha256 -iter 100000 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha256-pbkdf2.enc;
# exec openssl enc -aes-256-cbc -md sha384 -iter 12345 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha384-pbkdf2.enc;
# exec openssl enc -aes-256-cbc -md sha512 -iter 10000 -pass pass:secret -in $plain_keyfile -out $enc_keyfile_prefix-sha512-pbkdf2.enc;
# echo Done;
source filekeys_goodtest.inc;
Reference in a new issue View git blame Copy permalink