PG-1457 Key management funcs renaming #126

artemgavrilov · 2025-03-12T09:15:39Z

PG-1457

Description

All key provider management functions have scope in the name (database or global)
Key management function have key provider in the name (using_database_key_provider or using_global_key_provider)
Other scope dependent functions have scope in the name

Links

it-percona-cla · 2025-03-12T09:15:43Z

All committers have signed the CLA.

mohitj1988 · 2025-03-15T18:33:05Z

Hi @artemgavrilov - Few more possible renaming after discussing with @dutow
pg_tde_list_all_key_providers → pg_tde_list_all_local_key_providers
pg_tde_add_key_provider_kmip -> pg_tde_add_local_key_provider_kmip
pg_tde_add_key_provider_vault_v2 -> pg_tde_add_local_key_provider_vault_v2
pg_tde_add_key_provider_file -> pg_tde_add_local_key_provider_file

artemgavrilov · 2025-03-17T09:16:35Z

Hold on with reviews, I'm adding more things

…rver_principal_key

nastena1606 · 2025-03-19T12:45:42Z

contrib/pg_tde/documentation/docs/functions.md


-Creates or rotates the global principal key using the specified key provider. Use this function to set a principal key for WAL encryption.
+Creates or rotates the server principal key using the specified global key provider. Use this function to set a principal key for WAL encryption.


What is the server key? Maybe rewrite to what this key is used for? For WAL encryption, right?

For now only for WAL encryption, but in future it may be used for something else. I guess for system tables encryption. In general its purpose to encrypt entities that has server scope availability.

Ok thanks, I believe it's time to explain existing scopes and their usage. In a separate PR most likely

Absolutely agree

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 12, 2025 09:15 — with Render View deployment

artemgavrilov force-pushed the PG-1457-key-management-funcs-renaming branch from 1afe9e2 to 1a2a757 Compare March 14, 2025 09:51

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 14, 2025 09:51 — with Render View deployment

artemgavrilov changed the base branch from TDE_REL_17_STABLE to release-17.4 March 14, 2025 09:51

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 14, 2025 09:53 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 15, 2025 13:14 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 15, 2025 13:14 — with Render View deployment

artemgavrilov marked this pull request as ready for review March 15, 2025 13:48

artemgavrilov requested review from nastena1606, dutow and dAdAbird as code owners March 15, 2025 13:48

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 13:53 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 13:53 — with Render View deployment

artemgavrilov added 7 commits March 18, 2025 19:14

PG-1457 Rename some key management funcions

410a727

PG-1457 Fix some tests

6d5a5c9

PG-1457 Hit CI

74abe00

PG-1457 Rename key in CI setup

39119bf

PG-1457 Rename pg_tde_verify_global_principal_key to pg_tde_verify_se…

481df25

…rver_principal_key

PG-1457 Rename keys in tests

eb70b72

PG-1457 Renaming

66db9c3

artemgavrilov force-pushed the PG-1457-key-management-funcs-renaming branch from 2de9a34 to 66db9c3 Compare March 18, 2025 14:16

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 14:16 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 14:17 — with Render View deployment

PG-1457 Renaming

e828ec9

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 14:32 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 14:32 — with Render View deployment

PG-1457 Fix tests

dea753a

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 14:53 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 14:53 — with Render View deployment

artemgavrilov added 3 commits March 18, 2025 20:08

PG-1457 Fix tests

e1e05c8

PG-1457 Fix tabs

de945ea

PG-1457 Fix tests

59dc51d

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 18:43 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 18:44 — with Render View deployment

artemgavrilov added 3 commits March 19, 2025 00:35

PG-1457 Fix tests

8420e2e

PG-1457 Fix

ec271ee

PG-1457 Fix test

dae1443

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 21:26 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 21:26 — with Render View deployment

PG-1457 Fix test

399af94

nastena1606 deployed to PG-1457-key-management-funcs-renaming - pg-tde-docs PR #126 March 18, 2025 21:56 — with Render View deployment

nastena1606 deployed to PG-1457-key-management-funcs-renaming - tde-RC PR #126 March 18, 2025 21:56 — with Render View deployment

PG-1457 Fix test

3b48f45

artemgavrilov requested a review from jeltz March 19, 2025 10:23

dutow approved these changes Mar 19, 2025

View reviewed changes

nastena1606 reviewed Mar 19, 2025

View reviewed changes

nastena1606 self-requested a review March 19, 2025 13:01

nastena1606 approved these changes Mar 19, 2025

View reviewed changes

artemgavrilov mentioned this pull request Mar 20, 2025

PG-1457 Rename principal key on user API level to just a key #154

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

PG-1457 Key management funcs renaming #126

PG-1457 Key management funcs renaming #126

artemgavrilov commented Mar 12, 2025 •

edited

Loading

it-percona-cla commented Mar 12, 2025 •

edited

Loading

mohitj1988 commented Mar 15, 2025 •

edited

Loading

artemgavrilov commented Mar 17, 2025

nastena1606 Mar 19, 2025

artemgavrilov Mar 19, 2025

nastena1606 Mar 19, 2025

artemgavrilov Mar 19, 2025


		Creates or rotates the global principal key using the specified key provider. Use this function to set a principal key for WAL encryption.
		Creates or rotates the server principal key using the specified global key provider. Use this function to set a principal key for WAL encryption.

PG-1457 Key management funcs renaming #126

Are you sure you want to change the base?

PG-1457 Key management funcs renaming #126

Conversation

artemgavrilov commented Mar 12, 2025 • edited Loading

Description

Links

it-percona-cla commented Mar 12, 2025 • edited Loading

mohitj1988 commented Mar 15, 2025 • edited Loading

artemgavrilov commented Mar 17, 2025

nastena1606 Mar 19, 2025

Choose a reason for hiding this comment

artemgavrilov Mar 19, 2025

Choose a reason for hiding this comment

nastena1606 Mar 19, 2025

Choose a reason for hiding this comment

artemgavrilov Mar 19, 2025

Choose a reason for hiding this comment

artemgavrilov commented Mar 12, 2025 •

edited

Loading

it-percona-cla commented Mar 12, 2025 •

edited

Loading

mohitj1988 commented Mar 15, 2025 •

edited

Loading