encryption plugin controls the encryption

* no --encryption-algorithm option anymore * encrypt/decrypt methods in the encryption plugin * ecnrypt/decrypt methods in the encryption_km service * file_km plugin has --file-key-management-encryption-algorithm * debug_km always uses aes_cbc * example_km changes between aes_cbc and aes_ecb for different key versions
author: Sergei Golubchik <serg@mariadb.org> 2015-03-31 19:32:35 +0200
committer: Sergei Golubchik <serg@mariadb.org> 2015-04-09 18:42:43 +0200
commit: bb1b61b312088ba9f5f2cb606594b6f33c284402 (patch)
tree: c5b433d19434e194fb82d2407adbbfee759dfd31 /include/mysql/plugin_audit.h.pp
parent: 9ccafffc29526ea30151eb3e62901bfdb77aaf84 (diff)
download: mariadb-git-bb1b61b312088ba9f5f2cb606594b6f33c284402.tar.gz
1 files changed, 17 insertions, 0 deletions
diff --git a/include/mysql/plugin_audit.h.pp b/include/mysql/plugin_audit.h.pp
index c4661e2b383..30647a7c331 100644
--- a/include/mysql/plugin_audit.h.pp
+++ b/include/mysql/plugin_audit.h.pp
@@ -198,14 +198,31 @@ void thd_key_delete(MYSQL_THD_KEY_T *key);
 void* thd_getspecific(void* thd, MYSQL_THD_KEY_T key);
 int thd_setspecific(void* thd, MYSQL_THD_KEY_T key, void *value);
 #include <mysql/service_encryption_keys.h>
+typedef int (*encrypt_decrypt_func)(const unsigned char* src, unsigned int slen,
+                                    unsigned char* dst, unsigned int* dlen,
+                                    const unsigned char* key, unsigned int klen,
+                                    const unsigned char* iv, unsigned int ivlen,
+                                    int no_padding, unsigned int key_version);
 extern struct encryption_keys_service_st {
   unsigned int (*get_latest_encryption_key_version_func)();
   unsigned int (*has_encryption_key_func)(unsigned int);
   unsigned int (*get_encryption_key_func)(unsigned int, unsigned char*, unsigned int*);
+  encrypt_decrypt_func encrypt_data_func;
+  encrypt_decrypt_func decrypt_data_func;
 } *encryption_keys_service;
 unsigned int get_latest_encryption_key_version();
 unsigned int has_encryption_key(unsigned int version);
 unsigned int get_encryption_key(unsigned int version, unsigned char* key, unsigned int *keybufsize);
+int encrypt_data(const unsigned char* src, unsigned int slen,
+                 unsigned char* dst, unsigned int* dlen,
+                 const unsigned char* key, unsigned int klen,
+                 const unsigned char* iv, unsigned int ivlen,
+                 int no_padding, unsigned int key_version);
+int decrypt_data(const unsigned char* src, unsigned int slen,
+                 unsigned char* dst, unsigned int* dlen,
+                 const unsigned char* key, unsigned int klen,
+                 const unsigned char* iv, unsigned int ivlen,
+                 int no_padding, unsigned int key_version);
 struct st_mysql_xid {
   long formatID;
   long gtrid_length;
author	Sergei Golubchik <serg@mariadb.org>	2015-03-31 19:32:35 +0200
committer	Sergei Golubchik <serg@mariadb.org>	2015-04-09 18:42:43 +0200
commit	bb1b61b312088ba9f5f2cb606594b6f33c284402 (patch)
tree	c5b433d19434e194fb82d2407adbbfee759dfd31 /include/mysql/plugin_audit.h.pp
parent	9ccafffc29526ea30151eb3e62901bfdb77aaf84 (diff)
download	mariadb-git-bb1b61b312088ba9f5f2cb606594b6f33c284402.tar.gz