MXS-867: Binlog server encryption key has same format as MariaDB key file

Default algorithm is now AES_CBC. The MariaDB 10.1 key file cannot be read as it might contain more than 1 rows.
2016-12-12 14:01:38 +01:00
parent 5ccdfe54bd
commit 162ae04d20
5 changed files with 44 additions and 6 deletions
--- a/server/modules/routing/binlogrouter/blr.h
+++ b/server/modules/routing/binlogrouter/blr.h
@ -83,7 +83,13 @@ MXS_BEGIN_DECLS
 #define BLR_REPORT_CHECKSUM_FORMAT "CRC32 0x"
 #define BLR_REPORT_REP_HEADER 0x02

-/* Supported Encryption algorithms */
+/**
+ * Supported Encryption algorithms
+ *
+ * Note: AES_ECB is only internally used
+ * Available algorithms for binlog files
+ * Encryption/Decryption are AES_CBC and AES_CTR
+ */
 enum blr_aes_mode
 {
    BLR_AES_CBC,
@ -91,8 +97,8 @@ enum blr_aes_mode
    BLR_AES_ECB
 };

-/* Default encryption alogorithm is AES_CTR */
-#define BINLOG_DEFAULT_ENC_ALGO    BLR_AES_CTR
+/* Default encryption alogorithm is AES_CBC */
+#define BINLOG_DEFAULT_ENC_ALGO    BLR_AES_CBC

 /**
 * Binlog event types