Re: Moving forward with TDE [PATCH v3]

From: David Christensen <david(dot)christensen(at)crunchydata(dot)com>
To: Bruce Momjian <bruce(at)momjian(dot)us>
Cc: vignesh C <vignesh21(at)gmail(dot)com>, Aleksander Alekseev <aleksander(at)timescale(dot)com>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>, Stephen Frost <sfrost(at)snowman(dot)net>
Subject: Re: Moving forward with TDE [PATCH v3]
Date: 2023-10-31 21:32:38
Message-ID: CAOxo6X+jj7abL8hDe6L68NMtv2sgxmAni+you7A+EkKBhjg_pg@mail.gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

On Tue, Oct 31, 2023 at 4:30 PM Bruce Momjian <bruce(at)momjian(dot)us> wrote:

> On Tue, Oct 31, 2023 at 04:23:17PM -0500, David Christensen wrote:
> > Greetings,
> >
> > I am including an updated version of this patch series; it has been
> rebased
> > onto 6ec62b7799 and reworked somewhat.
> >
> > The patches are as follows:
> >
> > 0001 - doc updates
> > 0002 - Basic key management and cipher support
> > 0003 - Backend-related changes to support heap encryption
> > 0004 - modifications to bin tools and programs to manage key rotation
> and add
> > other knowledge
> > 0005 - Encrypted/authenticated WAL
> >
> > These are very broad strokes at this point and should be split up a bit
> more to
> > make things more granular and easier to review, but I wanted to get this
> update
> > out.
>
> This lacks temp table file encryption, right?

Temporary /files/ are handled in a different patch set and are not included
here (not sure of the status of integrating at this point). I believe that
this patch should handle temporary heap files just fine since they go
through the Page API.

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Bruce Momjian 2023-10-31 21:37:47 Re: Moving forward with TDE [PATCH v3]
Previous Message Bruce Momjian 2023-10-31 21:30:18 Re: Moving forward with TDE [PATCH v3]