Fixed TDE bugs:

bug#22514564 TDE:INNODB:ASSERTION FAILURE IN THREAD 139878949578496 IN FILE UT0UT.CC LINE 920
bug#22522122 TWO TYPOS IN ERROR ER_INVALID_ENCRYPTION_OPTION

Reviewed-by: Jimmy Yang<[email protected]>
RB: 11462
(cherry picked from commit bd2e8ce2075ed29fe24c28d14e764e43426be02b)

Author: Allen Lai

mysql-test/suite/innodb/r/table_encrypt_1.result

@@ -31,7 +31,7 @@ ERROR HY000: This tablespace can't be encrypted.
 CREATE TEMPORARY TABLE t1(c int) ENCRYPTION="N";
 DROP TABLE t1;
 CREATE TABLE t1(c int) ENCRYPTION="R" ENGINE = InnoDB;
-ERROR HY000: Invaild encyption option.
+ERROR HY000: Invalid encryption option.
 CREATE TABLE t1(c1 INT, c2 char(20)) ENCRYPTION="Y" ENGINE = InnoDB;
 SHOW CREATE TABLE t1;
 Table	Create Table
@@ -108,7 +108,7 @@ c1	c2
 8	iiiii
 9	jjjjj
 ALTER TABLE t1 ENCRYPTION="N", algorithm=inplace;
-ERROR 0A000: ALGORITHM=INPLACE is not supported. Reason: Invaild encyption option.. Try ALGORITHM=COPY.
+ERROR 0A000: ALGORITHM=INPLACE is not supported. Reason: Invalid encryption option.. Try ALGORITHM=COPY.
 ALTER TABLE t1 TABLESPACE=`innodb_system`;
 ERROR HY000: This tablespace can't be encrypted.
 ALTER TABLE t1 ENCRYPTION="N", algorithm=copy;

mysql-test/suite/innodb/r/table_encrypt_3.result

@@ -98,7 +98,7 @@ SELECT @@innodb_file_per_table;
 1
 CREATE TABLE tde_db.t_encrypt(c1 INT, c2 char(20), c3 BLOB) ENCRYPTION="Y" ENGINE = InnoDB;
 CREATE TABLE tde_db.t_encrypt_1(c1 INT, c2 char(20)) ENCRYPTION="Yes" ENGINE = InnoDB;
-ERROR HY000: Invaild encyption option.
+ERROR HY000: Invalid encryption option.
 CREATE TABLE tde_db.t_encrypt_1(c1 INT, c2 char(20)) ENCRYPTION="y" ENGINE = InnoDB;
 DROP TABLE tde_db.t_encrypt_1;
 CREATE TABLE tde_db.t_encrypt_1(c1 INT, c2 char(20),c3 BLOB) ENGINE = InnoDB;

sql/share/errmsg-utf8.txt

@@ -7634,7 +7634,7 @@ ER_TABLESPACE_CANNOT_ENCRYPT
   eng "This tablespace can't be encrypted."
 
 ER_INVALID_ENCRYPTION_OPTION
-  eng "Invaild encyption option."
+  eng "Invalid encryption option."
 
 ER_CANNOT_FIND_KEY_IN_KEYRING
   eng "Can't find master key from keyring, please check keyring plugin is loaded."

storage/innobase/dict/dict0crea.cc

@@ -435,10 +435,13 @@ dict_build_tablespace(
 	mtr_set_log_mode(&mtr, MTR_LOG_NO_REDO); */
 	ut_a(!FSP_FLAGS_GET_TEMPORARY(tablespace->flags()));
 
-	fsp_header_init(space, FIL_IBD_FILE_INITIAL_SIZE, &mtr);
-
+	bool ret = fsp_header_init(space, FIL_IBD_FILE_INITIAL_SIZE, &mtr);
 	mtr_commit(&mtr);
 
+	if (!ret) {
+		return(DB_ERROR);
+	}
+
 	return(err);
 }
 
@@ -539,9 +542,14 @@ dict_build_tablespace_for_table(
 		mtr.set_named_space(table->space);
 		dict_disable_redo_if_temporary(table, &mtr);
 
-		fsp_header_init(table->space, FIL_IBD_FILE_INITIAL_SIZE, &mtr);
+		bool ret = fsp_header_init(table->space,
+					   FIL_IBD_FILE_INITIAL_SIZE,
+					   &mtr);
 
 		mtr_commit(&mtr);
+		if (!ret) {
+			return(DB_ERROR);
+		}
 	} else {
 		/* We do not need to build a tablespace for this table. It
 		is already built.  Just find the correct tablespace ID. */

storage/innobase/fsp/fsp0file.cc

@@ -386,7 +386,7 @@ Datafile::free_first_page()
 space ID and flags.  The file should exist and be successfully opened
 in order for this function to validate it.
 @param[in]	space_id	The expected tablespace ID.
-@param[in]	flags	The expected tablespace flags.
+@param[in]	flags		The expected tablespace flags.
 @retval DB_SUCCESS if tablespace is valid, DB_ERROR if not.
 m_is_valid is also set true on success, else false. */
 dberr_t
@@ -540,7 +540,7 @@ m_is_valid is set true on success, else false.
 @retval DB_CORRUPTION if the datafile is not readable
 @retval DB_TABLESPACE_EXISTS if there is a duplicate space_id */
 dberr_t
-Datafile::validate_first_page(lsn_t* flush_lsn)
+Datafile::validate_first_page(lsn_t*	flush_lsn)
 {
 	char*		prev_name;
 	char*		prev_filepath;
@@ -634,9 +634,9 @@ Datafile::validate_first_page(lsn_t* flush_lsn)
 	can't be open. */
 	if (FSP_FLAGS_GET_ENCRYPTION(m_flags)) {
 		m_encryption_key = static_cast<byte*>(
-			ut_malloc_nokey(ENCRYPTION_KEY_LEN));
+			ut_zalloc_nokey(ENCRYPTION_KEY_LEN));
 		m_encryption_iv = static_cast<byte*>(
-			ut_malloc_nokey(ENCRYPTION_KEY_LEN));
+			ut_zalloc_nokey(ENCRYPTION_KEY_LEN));
 #ifdef	UNIV_ENCRYPT_DEBUG
                 fprintf(stderr, "Got from file %lu:", m_space_id);
 #endif
@@ -660,6 +660,16 @@ Datafile::validate_first_page(lsn_t* flush_lsn)
 			m_encryption_iv = NULL;
 			return(DB_CORRUPTION);
 		}
+
+		if (recv_recovery_is_on()
+		    && memcmp(m_encryption_key,
+			      m_encryption_iv,
+			      ENCRYPTION_KEY_LEN) == 0) {
+			ut_free(m_encryption_key);
+			ut_free(m_encryption_iv);
+			m_encryption_key = NULL;
+			m_encryption_iv = NULL;
+		}
 	}
 
 	if (fil_space_read_name_and_filepath(

storage/innobase/fsp/fsp0fsp.cc

@@ -893,6 +893,8 @@ fsp_header_fill_encryption_info(
 	lint		elen;
 	ulint		master_key_id;
 	byte*		master_key;
+	byte		key_info[ENCRYPTION_KEY_LEN * 2];
+	ulint		crc;
 #ifdef	UNIV_ENCRYPT_DEBUG
 	const byte*	data;
 	ulint		i;
@@ -905,6 +907,8 @@ fsp_header_fill_encryption_info(
 	}
 
 	memset(encrypt_info, 0, ENCRYPTION_INFO_SIZE);
+	memset(key_info, 0, ENCRYPTION_KEY_LEN * 2);
+
 	/* Use the new master key to encrypt the tablespace
 	key. */
 	ut_ad(encrypt_info != NULL);
@@ -916,52 +920,38 @@ fsp_header_fill_encryption_info(
 
 	/* Write master key id. */
 	mach_write_to_4(ptr, master_key_id);
+	ptr += sizeof(ulint);
+
+	/* Write tablespace key to temp space. */
+	memcpy(key_info,
+	       space->encryption_key,
+	       ENCRYPTION_KEY_LEN);
+
+	/* Write tablespace iv to temp space. */
+	memcpy(key_info + ENCRYPTION_KEY_LEN,
+	       space->encryption_iv,
+	       ENCRYPTION_KEY_LEN);
 
 #ifdef	UNIV_ENCRYPT_DEBUG
 	fprintf(stderr, "Set %lu:%lu ",space->id,
 		Encryption::master_key_id);
 	for (data = (const byte*) master_key, i = 0;
 	     i < ENCRYPTION_KEY_LEN; i++)
 		fprintf(stderr, "%02lx", (ulong)*data++);
-#endif
-	mach_write_to_4(ptr, master_key_id);
-
-	ptr += sizeof(ulint);
-
-	/* Encrypt tablespace key. */
-#ifdef	UNIV_ENCRYPT_DEBUG
 	fprintf(stderr, " ");
 	for (data = (const byte*) space->encryption_key,
 	     i = 0; i < ENCRYPTION_KEY_LEN; i++)
 		fprintf(stderr, "%02lx", (ulong)*data++);
-#endif
-	elen = my_aes_encrypt(
-		space->encryption_key,
-		ENCRYPTION_KEY_LEN,
-		ptr,
-		master_key,
-		ENCRYPTION_KEY_LEN,
-		my_aes_256_ecb,
-		NULL, false);
-
-	if (elen == MY_AES_BAD_DATA) {
-		my_free(master_key);
-		return(false);
-	}
-
-	ptr += ENCRYPTION_KEY_LEN;
-
-	/* Encrypt tablespace data iv. */
-#ifdef	UNIV_ENCRYPT_DEBUG
 	fprintf(stderr, " ");
 	for (data = (const byte*) space->encryption_iv,
 	     i = 0; i < ENCRYPTION_KEY_LEN; i++)
 		fprintf(stderr, "%02lx", (ulong)*data++);
 	fprintf(stderr, "\n");
 #endif
+	/* Encrypt tablespace key and iv. */
 	elen = my_aes_encrypt(
-		space->encryption_iv,
-		ENCRYPTION_KEY_LEN,
+		key_info,
+		ENCRYPTION_KEY_LEN * 2,
 		ptr,
 		master_key,
 		ENCRYPTION_KEY_LEN,
@@ -973,6 +963,12 @@ fsp_header_fill_encryption_info(
 		return(false);
 	}
 
+	ptr += ENCRYPTION_KEY_LEN * 2;
+
+	/* Write checksum bytes. */
+	crc = ut_crc32(key_info, ENCRYPTION_KEY_LEN * 2);
+	mach_write_to_4(ptr, crc);
+
 	my_free(master_key);
 	return(true);
 }
@@ -1098,7 +1094,7 @@ fsp_header_init(
 
 	/* For encryption tablespace, we need to save the encryption
 	info to the page 0. */
-	if (space->encryption_type != Encryption::NONE) {
+	if (FSP_FLAGS_GET_ENCRYPTION(space->flags)) {
 		ulint	offset = fsp_header_get_encryption_offset(page_size);
 		byte	encryption_info[ENCRYPTION_INFO_SIZE];
 
@@ -1107,6 +1103,9 @@ fsp_header_init(
 
 		if (!fsp_header_fill_encryption_info(space,
 						     encryption_info)) {
+			space->encryption_type = Encryption::NONE;
+			memset(space->encryption_key, 0, ENCRYPTION_KEY_LEN);
+			memset(space->encryption_iv, 0, ENCRYPTION_KEY_LEN);
 			return(false);
 		}
 
@@ -1181,6 +1180,9 @@ fsp_header_decode_encryption_info(
 	ulint		master_key_id;
 	byte*		master_key = NULL;
 	lint		elen;
+	byte		key_info[ENCRYPTION_KEY_LEN * 2];
+	ulint		crc1;
+	ulint		crc2;
 #ifdef	UNIV_ENCRYPT_DEBUG
 	const byte*	data;
 	ulint		i;
@@ -1207,6 +1209,7 @@ fsp_header_decode_encryption_info(
 	ptr += sizeof(ulint);
 
 	/* Get master key by key id. */
+	memset(key_info, 0, ENCRYPTION_KEY_LEN * 2);
 	Encryption::get_master_key(master_key_id, &master_key);
         if (master_key == NULL) {
                 return(false);
@@ -1222,8 +1225,8 @@ fsp_header_decode_encryption_info(
 	/* Decrypt tablespace key and iv. */
 	elen = my_aes_decrypt(
 		ptr,
-		ENCRYPTION_KEY_LEN,
-		key,
+		ENCRYPTION_KEY_LEN * 2,
+		key_info,
 		master_key,
 		ENCRYPTION_KEY_LEN,
 		my_aes_256_ecb, NULL, false);
@@ -1232,29 +1235,31 @@ fsp_header_decode_encryption_info(
 		my_free(master_key);
 		return(NULL);
 	}
-#ifdef	UNIV_ENCRYPT_DEBUG
-	fprintf(stderr, " ");
-	for (data = (const byte*) key,
-	     i = 0; i < ENCRYPTION_KEY_LEN; i++)
-		fprintf(stderr, "%02lx", (ulong)*data++);
-#endif
 
-	ptr += ENCRYPTION_KEY_LEN;
-
-	elen = my_aes_decrypt(
-		ptr,
-		ENCRYPTION_KEY_LEN,
-		iv,
-		master_key,
-		ENCRYPTION_KEY_LEN,
-		my_aes_256_ecb, NULL, false);
+	/* Check checksum bytes. */
+	ptr += ENCRYPTION_KEY_LEN * 2;
 
-	if (elen == MY_AES_BAD_DATA) {
-		my_free(master_key);
+	crc1 = mach_read_from_4(ptr);
+	crc2 = ut_crc32(key_info, ENCRYPTION_KEY_LEN * 2);
+	if (crc1 != crc2) {
+		ib::error() << "Failed to decrpt encryption information,"
+			<< " please check key file is not changed!";
 		return(false);
 	}
+
+	/* Get tablespace key */
+	memcpy(key, key_info, ENCRYPTION_KEY_LEN);
+
+	/* Get tablespace iv */
+	memcpy(iv, key_info + ENCRYPTION_KEY_LEN,
+	       ENCRYPTION_KEY_LEN);
+
 #ifdef	UNIV_ENCRYPT_DEBUG
 	fprintf(stderr, " ");
+	for (data = (const byte*) key,
+	     i = 0; i < ENCRYPTION_KEY_LEN; i++)
+		fprintf(stderr, "%02lx", (ulong)*data++);
+	fprintf(stderr, " ");
 	for (data = (const byte*) iv,
 	     i = 0; i < ENCRYPTION_KEY_LEN; i++)
 		fprintf(stderr, "%02lx", (ulong)*data++);

storage/innobase/handler/ha_innodb.cc

@@ -3413,6 +3413,11 @@ innobase_encryption_key_rotation()
 
 	my_free(master_key);
 
+	/* If rotation failure, return error */
+	if (ret) {
+		my_error(ER_CANNOT_FIND_KEY_IN_KEYRING, MYF(0));
+	}
+
 	/* Release the mutex. */
 	mutex_exit(&master_key_id_mutex);
 

storage/innobase/include/fsp0file.h

@@ -266,7 +266,7 @@ class Datafile {
 	@retval DB_SUCCESS on if the datafile is valid
 	@retval DB_CORRUPTION if the datafile is not readable
 	@retval DB_TABLESPACE_EXISTS if there is a duplicate space_id */
-	dberr_t validate_first_page(lsn_t* flush_lsn = 0)
+	dberr_t validate_first_page(lsn_t*	flush_lsn = 0)
 		__attribute__((warn_unused_result));
 
 	/** Get Datafile::m_name.

storage/innobase/include/os0file.h

@@ -310,9 +310,10 @@ static const char ENCRYPTION_KEY_MAGIC[ENCRYPTION_MAGIC_SIZE] = {
 /** Encryption master key prifix size */
 #define ENCRYPTION_MASTER_KEY_NAME_MAX_LEN	100
 
-/** Encryption information total size */
+/** Encryption information total size: magic number + master_key_id +
+key + iv + checksum */
 #define	ENCRYPTION_INFO_SIZE	(ENCRYPTION_MAGIC_SIZE \
-				+ (ENCRYPTION_KEY_LEN * 2) + sizeof(ulint))
+				+ (ENCRYPTION_KEY_LEN * 2) + 2 * sizeof(ulint))
 
 class IORequest;
 

storage/innobase/log/log0recv.cc

@@ -1059,11 +1059,23 @@ recv_sys_debug_free(void)
 	}
 
 	if (recv_sys->encryption_list != NULL) {
-		while (recv_sys->encryption_list
-		       && !recv_sys->encryption_list->empty()) {
-			recv_sys->encryption_list->pop_back();
+		encryption_list_t::iterator	it;
+
+		for (it = recv_sys->encryption_list->begin();
+		     it != recv_sys->encryption_list->end();
+		     it++) {
+			if (it->key != NULL) {
+				ut_free(it->key);
+				it->key = NULL;
+			}
+			if (it->iv != NULL) {
+				ut_free(it->iv);
+				it->iv = NULL;
+			}
 		}
 
+		recv_sys->encryption_list->swap(*recv_sys->encryption_list);
+
 		UT_DELETE(recv_sys->encryption_list);
 		recv_sys->encryption_list = NULL;
 	}