PG-1968 Add support for AES 256 encryption #465
Conversation
Codecov Report❌ Patch coverage is ❌ Your project status has failed because the head coverage (59.07%) is below the target coverage (90.00%). You can increase the head coverage or adjust the target coverage. Additional details and impacted files@@ Coverage Diff @@
## main #465 +/- ##
==========================================
- Coverage 59.69% 59.07% -0.63%
==========================================
Files 67 68 +1
Lines 10471 10653 +182
Branches 1813 1836 +23
==========================================
+ Hits 6251 6293 +42
- Misses 3524 3659 +135
- Partials 696 701 +5
🚀 New features to boost your workflow:
|
There was a problem hiding this comment.
The commit messages needs work since they current reveal very little of what the commits actually do.
I also think we need to discuss the technical debt we take on here by pushing generalization of the file format versions to the future. Adding "old" and "new" versions of all the functions works for now ofc, but means that it's something we need to clean up later.
Maybe it's worth taking on that debt now, I'm not sure.
There was a problem hiding this comment.
We should probably log a WARNING or NOTICE if the key loaded from the KMS doesn't match the current setting for TdeKeyLength, since they obviously want some other cipher than what they're getting.
Maybe also add a error_hint() about how to rotate the principal key?
There was a problem hiding this comment.
It might also make sense to check that the Principal Key's length matches that of the Internal Key (and issue a WARNING if it doesn't) whenever we decrypt the latter. What do you think? Or is it an overkill?
There was a problem hiding this comment.
Hmm... yes. that makes sense. I wonder if we want WARNING on them or just LOG or INFO? I think we could spam the warning log a lot otherwise.
src/access/pg_tde_tdemap.c
Outdated
| errmsg("TDE map file \"%s\" is corrupted: %m", tde_filename)); | ||
| } | ||
|
|
||
| return fheader->file_version; |
There was a problem hiding this comment.
I'm not sure what we gain by returning this value instead of just using the field from the header structure after the call?
There was a problem hiding this comment.
It seemed like a cleaner interface to me. But looking at it now, you're right, it doesn't worth changes
src/access/pg_tde_xlog_keys.c
Outdated
| typedef struct WalKeyFileEntry | ||
| { | ||
| uint32 key_len; | ||
| CipherType cipher; /* Cipher type. We support only AES for now. */ |
There was a problem hiding this comment.
Should we use uint32 here as we do with the other enum that's written directly to file?
This probably doesn't matter in practice for this enum as it's unlikely to hold more than a handful of values, but I would prefer to get an error if we add so many entries the size of the enum grows rather than the file format randomly changing because of it.
| } | ||
| pg_tde_save_server_key(principalKey, false); | ||
| TDEXLogSmgrInitWrite(true); | ||
| TDEXLogSmgrInitWrite(true, 16); |
There was a problem hiding this comment.
I don't like seeing a random 16 in the source, but will need to think what the right solution is.
There was a problem hiding this comment.
I think it's fine as an intermediate step before the longer keys are supported in the later commits.
There was a problem hiding this comment.
I'll fix it in the upcoming PR(s) when taking care of fetools
@AndersAstrand what other option do you see? |
The other option would be to not be just "old/new" but instead more explicit about versions. But I think it's ok to leave this in for now and fix it when we need to. I think I'm also just a little allergic to using the words "old/new" in code as it tends to not say much about what it actually is. |
Tbh, I hacked that for the POC and focused on other things after that. But I agree with your disdain for old/new. I have some Idea and will try to do an additional commit (or a refactoring PR if we merge this one by then) later this week. |
| *ctxPtr = EVP_CIPHER_CTX_new(); | ||
|
|
||
| if (EVP_CipherInit_ex(*ctxPtr, cipher_ctr_ecb, NULL, key, NULL, 1) == 0) | ||
| if (EVP_CipherInit_ex(*ctxPtr, cipher, NULL, key, NULL, 1) == 0) |
There was a problem hiding this comment.
Not completely related to the PR, but I realized that now we only cache the context for WAL and nothing else.
For everything else, ctx is always created internally every time.
This is just something we should investigate, as the mixed implementation most likely isn't practical.
Maybe we should also have an assert about the cipher size in this function, when we are reusing an older context?
AndersAstrand
changed the title
Adds a respective GUC and enables TDE AES lib to handle 128 and 256-bit keys. Also adds the support for 256 bit encryption of primary keys
It adds `pg_tde/keys_version`, which contains the latest magic number (version) of the wal and smgr keys. If those versions don't match the current ones at the server start, it will rewrite _keys to the new format if needed and update keys_version. If the start crashed along the way updating _keys, it will retry again on the next start since keys_version wasn't updated.
Instead of _old/_new we can extract the version from FILE_MAGIC. And define a function that extracts an entry from this particular file version and transforms it to the current entry format. That way, there is no need to define new "FILE_MAGIC" constants; instead, simply bump the version of the current ones, keeping the naming format. That way, we are restricted to 255 file versions, but let's solve it when we get there. Also, all named size constants were replaced with the numeric values in the previous format instances to avoid breaking old formats if we change any of those sizes for the current one. If it's ok, I'll squash it into the prev commit
WAL and replication tested with the modified pg_rewind test
5 participants
A new GUC option is applied to all newly created keys - both principal and internal.
We had to change the _keys file format to accommodate 32-byte internal keys. So the keys file migration routine was added at server start.