mirror of
https://github.com/MariaDB/server.git
synced 2025-01-23 07:14:17 +01:00
765a43605a
Problem was that bpage was referenced after it was already freed
from LRU. Fixed by adding a new variable encrypted that is
passed down to buf_page_check_corrupt() and used in
buf_page_get_gen() to stop processing page read.
This patch should also address following test failures and
bugs:
MDEV-12419: IMPORT should not look up tablespace in
PageConverter::validate(). This is now removed.
MDEV-10099: encryption.innodb_onlinealter_encryption fails
sporadically in buildbot
MDEV-11420: encryption.innodb_encryption-page-compression
failed in buildbot
MDEV-11222: encryption.encrypt_and_grep failed in buildbot on P8
Removed dict_table_t::is_encrypted and dict_table_t::ibd_file_missing
and replaced these with dict_table_t::file_unreadable. Table
ibd file is missing if fil_get_space(space_id) returns NULL
and encrypted if not. Removed dict_table_t::is_corrupted field.
Ported FilSpace class from 10.2 and using that on buf_page_check_corrupt(),
buf_page_decrypt_after_read(), buf_page_encrypt_before_write(),
buf_dblwr_process(), buf_read_page(), dict_stats_save_defrag_stats().
Added test cases when enrypted page could be read while doing
redo log crash recovery. Also added test case for row compressed
blobs.
btr_cur_open_at_index_side_func(),
btr_cur_open_at_rnd_pos_func(): Avoid referencing block that is
NULL.
buf_page_get_zip(): Issue error if page read fails.
buf_page_get_gen(): Use dberr_t for error detection and
do not reference bpage after we hare freed it.
buf_mark_space_corrupt(): remove bpage from LRU also when
it is encrypted.
buf_page_check_corrupt(): @return DB_SUCCESS if page has
been read and is not corrupted,
DB_PAGE_CORRUPTED if page based on checksum check is corrupted,
DB_DECRYPTION_FAILED if page post encryption checksum matches but
after decryption normal page checksum does not match. In read
case only DB_SUCCESS is possible.
buf_page_io_complete(): use dberr_t for error handling.
buf_flush_write_block_low(),
buf_read_ahead_random(),
buf_read_page_async(),
buf_read_ahead_linear(),
buf_read_ibuf_merge_pages(),
buf_read_recv_pages(),
fil_aio_wait():
Issue error if page read fails.
btr_pcur_move_to_next_page(): Do not reference page if it is
NULL.
Introduced dict_table_t::is_readable() and dict_index_t::is_readable()
that will return true if tablespace exists and pages read from
tablespace are not corrupted or page decryption failed.
Removed buf_page_t::key_version. After page decryption the
key version is not removed from page frame. For unencrypted
pages, old key_version is removed at buf_page_encrypt_before_write()
dict_stats_update_transient_for_index(),
dict_stats_update_transient()
Do not continue if table decryption failed or table
is corrupted.
dict0stats.cc: Introduced a dict_stats_report_error function
to avoid code duplication.
fil_parse_write_crypt_data():
Check that key read from redo log entry is found from
encryption plugin and if it is not, refuse to start.
PageConverter::validate(): Removed access to fil_space_t as
tablespace is not available during import.
Fixed error code on innodb.innodb test.
Merged test cased innodb-bad-key-change5 and innodb-bad-key-shutdown
to innodb-bad-key-change2. Removed innodb-bad-key-change5 test.
Decreased unnecessary complexity on some long lasting tests.
Removed fil_inc_pending_ops(), fil_decr_pending_ops(),
fil_get_first_space(), fil_get_next_space(),
fil_get_first_space_safe(), fil_get_next_space_safe()
functions.
fil_space_verify_crypt_checksum(): Fixed bug found using ASAN
where FIL_PAGE_END_LSN_OLD_CHECKSUM field was incorrectly
accessed from row compressed tables. Fixed out of page frame
bug for row compressed tables in
fil_space_verify_crypt_checksum() found using ASAN. Incorrect
function was called for compressed table.
Added new tests for discard, rename table and drop (we should allow them
even when page decryption fails). Alter table rename is not allowed.
Added test for restart with innodb-force-recovery=1 when page read on
redo-recovery cant be decrypted. Added test for corrupted table where
both page data and FIL_PAGE_FILE_FLUSH_LSN_OR_KEY_VERSION is corrupted.
Adjusted the test case innodb_bug14147491 so that it does not anymore
expect crash. Instead table is just mostly not usable.
fil0fil.h: fil_space_acquire_low is not visible function
and fil_space_acquire and fil_space_acquire_silent are
inline functions. FilSpace class uses fil_space_acquire_low
directly.
recv_apply_hashed_log_recs() does not return anything.
169 lines
6.1 KiB
C
169 lines
6.1 KiB
C
/*****************************************************************************
|
|
|
|
Copyright (c) 1996, 2014, Oracle and/or its affiliates. All Rights Reserved.
|
|
Copyright (c) 2015, MariaDB Corporation.
|
|
|
|
This program is free software; you can redistribute it and/or modify it under
|
|
the terms of the GNU General Public License as published by the Free Software
|
|
Foundation; version 2 of the License.
|
|
|
|
This program is distributed in the hope that it will be useful, but WITHOUT
|
|
ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
|
|
FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License along with
|
|
this program; if not, write to the Free Software Foundation, Inc.,
|
|
51 Franklin Street, Suite 500, Boston, MA 02110-1335 USA
|
|
|
|
*****************************************************************************/
|
|
|
|
/**************************************************//**
|
|
@file include/db0err.h
|
|
Global error codes for the database
|
|
|
|
Created 5/24/1996 Heikki Tuuri
|
|
*******************************************************/
|
|
|
|
#ifndef db0err_h
|
|
#define db0err_h
|
|
|
|
|
|
enum dberr_t {
|
|
DB_SUCCESS_LOCKED_REC = 9, /*!< like DB_SUCCESS, but a new
|
|
explicit record lock was created */
|
|
DB_SUCCESS = 10,
|
|
|
|
/* The following are error codes */
|
|
DB_ERROR,
|
|
DB_INTERRUPTED,
|
|
DB_OUT_OF_MEMORY,
|
|
DB_OUT_OF_FILE_SPACE,
|
|
DB_LOCK_WAIT,
|
|
DB_DEADLOCK,
|
|
DB_ROLLBACK,
|
|
DB_DUPLICATE_KEY,
|
|
DB_QUE_THR_SUSPENDED,
|
|
DB_MISSING_HISTORY, /*!< required history data has been
|
|
deleted due to lack of space in
|
|
rollback segment */
|
|
DB_CLUSTER_NOT_FOUND = 30,
|
|
DB_TABLE_NOT_FOUND,
|
|
DB_MUST_GET_MORE_FILE_SPACE, /*!< the database has to be stopped
|
|
and restarted with more file space */
|
|
DB_TABLE_IS_BEING_USED,
|
|
DB_TOO_BIG_RECORD, /*!< a record in an index would not fit
|
|
on a compressed page, or it would
|
|
become bigger than 1/2 free space in
|
|
an uncompressed page frame */
|
|
DB_LOCK_WAIT_TIMEOUT, /*!< lock wait lasted too long */
|
|
DB_NO_REFERENCED_ROW, /*!< referenced key value not found
|
|
for a foreign key in an insert or
|
|
update of a row */
|
|
DB_ROW_IS_REFERENCED, /*!< cannot delete or update a row
|
|
because it contains a key value
|
|
which is referenced */
|
|
DB_CANNOT_ADD_CONSTRAINT, /*!< adding a foreign key constraint
|
|
to a table failed */
|
|
DB_CORRUPTION, /*!< data structure corruption noticed */
|
|
DB_CANNOT_DROP_CONSTRAINT, /*!< dropping a foreign key constraint
|
|
from a table failed */
|
|
DB_NO_SAVEPOINT, /*!< no savepoint exists with the given
|
|
name */
|
|
DB_TABLESPACE_EXISTS, /*!< we cannot create a new single-table
|
|
tablespace because a file of the same
|
|
name already exists */
|
|
DB_TABLESPACE_DELETED, /*!< tablespace was deleted or is
|
|
being dropped right now */
|
|
DB_TABLESPACE_NOT_FOUND, /*<! Attempt to delete a tablespace
|
|
instance that was not found in the
|
|
tablespace hash table */
|
|
DB_LOCK_TABLE_FULL, /*!< lock structs have exhausted the
|
|
buffer pool (for big transactions,
|
|
InnoDB stores the lock structs in the
|
|
buffer pool) */
|
|
DB_FOREIGN_DUPLICATE_KEY, /*!< foreign key constraints
|
|
activated by the operation would
|
|
lead to a duplicate key in some
|
|
table */
|
|
DB_TOO_MANY_CONCURRENT_TRXS, /*!< when InnoDB runs out of the
|
|
preconfigured undo slots, this can
|
|
only happen when there are too many
|
|
concurrent transactions */
|
|
DB_UNSUPPORTED, /*!< when InnoDB sees any artefact or
|
|
a feature that it can't recoginize or
|
|
work with e.g., FT indexes created by
|
|
a later version of the engine. */
|
|
|
|
DB_INVALID_NULL, /*!< a NOT NULL column was found to
|
|
be NULL during table rebuild */
|
|
|
|
DB_STATS_DO_NOT_EXIST, /*!< an operation that requires the
|
|
persistent storage, used for recording
|
|
table and index statistics, was
|
|
requested but this storage does not
|
|
exist itself or the stats for a given
|
|
table do not exist */
|
|
DB_FOREIGN_EXCEED_MAX_CASCADE, /*!< Foreign key constraint related
|
|
cascading delete/update exceeds
|
|
maximum allowed depth */
|
|
DB_CHILD_NO_INDEX, /*!< the child (foreign) table does
|
|
not have an index that contains the
|
|
foreign keys as its prefix columns */
|
|
DB_PARENT_NO_INDEX, /*!< the parent table does not
|
|
have an index that contains the
|
|
foreign keys as its prefix columns */
|
|
DB_TOO_BIG_INDEX_COL, /*!< index column size exceeds
|
|
maximum limit */
|
|
DB_INDEX_CORRUPT, /*!< we have corrupted index */
|
|
DB_UNDO_RECORD_TOO_BIG, /*!< the undo log record is too big */
|
|
DB_READ_ONLY, /*!< Update operation attempted in
|
|
a read-only transaction */
|
|
DB_FTS_INVALID_DOCID, /* FTS Doc ID cannot be zero */
|
|
DB_TABLE_IN_FK_CHECK, /* table is being used in foreign
|
|
key check */
|
|
DB_ONLINE_LOG_TOO_BIG, /*!< Modification log grew too big
|
|
during online index creation */
|
|
|
|
DB_IO_ERROR, /*!< Generic IO error */
|
|
DB_IDENTIFIER_TOO_LONG, /*!< Identifier name too long */
|
|
DB_FTS_EXCEED_RESULT_CACHE_LIMIT, /*!< FTS query memory
|
|
exceeds result cache limit */
|
|
DB_TEMP_FILE_WRITE_FAILURE, /*!< Temp file write failure */
|
|
DB_FTS_TOO_MANY_WORDS_IN_PHRASE,
|
|
/*< Too many words in a phrase */
|
|
DB_TOO_BIG_FOR_REDO, /* Record length greater than 10%
|
|
of redo log */
|
|
DB_DECRYPTION_FAILED, /* Tablespace encrypted and
|
|
decrypt operation failed because
|
|
of missing key management plugin,
|
|
or missing or incorrect key or
|
|
incorret AES method or algorithm. */
|
|
DB_PAGE_CORRUPTED, /* Page read from tablespace is
|
|
corrupted. */
|
|
/* The following are partial failure codes */
|
|
DB_FAIL = 1000,
|
|
DB_OVERFLOW,
|
|
DB_UNDERFLOW,
|
|
DB_STRONG_FAIL,
|
|
DB_ZIP_OVERFLOW,
|
|
DB_RECORD_NOT_FOUND = 1500,
|
|
DB_END_OF_INDEX,
|
|
DB_DICT_CHANGED, /*!< Some part of table dictionary has
|
|
changed. Such as index dropped or
|
|
foreign key dropped */
|
|
|
|
|
|
/* The following are API only error codes. */
|
|
DB_DATA_MISMATCH = 2000, /*!< Column update or read failed
|
|
because the types mismatch */
|
|
|
|
DB_SCHEMA_NOT_LOCKED, /*!< If an API function expects the
|
|
schema to be locked in exclusive mode
|
|
and if it's not then that API function
|
|
will return this error code */
|
|
|
|
DB_NOT_FOUND /*!< Generic error code for "Not found"
|
|
type of errors */
|
|
};
|
|
|
|
#endif
|