Androidicus Posted November 11, 2020 Report Share Posted November 11, 2020 Using MySQL 8.0.18 - all is working fine. But I need to add encryption at rest functionality using the keyring_file.dll plugin. This should be achievable using: [mysqld] early-plugin-load=keyring_file.dll keyring_file_data=/UniServerZ/core/mysql/keyring I have used the 'keyring_file.dll' and 'keyring_udf.dll' from MySQL 8.0.22 ZIP and placed in created directory: /UniServerZ/core/mysql/lib/plugin/ But nope - spent a day and a half fiddling with paths etc. etc. - mysql simply fails to start with above config. 2020-11-11T10:54:49.858479Z 0 [ERROR] [MY-010901] [Server] Can't open shared library 'J:\UniServerZ\core\mysql\lib\plugin\keyring_file.dll' (errno: 126 The specified module could not be found.). 2020-11-11T10:54:49.865906Z 0 [ERROR] [MY-010736] [Server] Couldn't load plugin named 'keyring_file.dll' with soname 'keyring_file.dll'. 2020-11-11T10:54:52.004982Z 0 [Warning] [MY-010068] [Server] CA certificate ca.pem is self signed. 2020-11-11T10:54:52.039590Z 0 [ERROR] [MY-000067] [Server] unknown variable 'keyring_file_data=J:/UniServerZ/core/mysql/keyring/keyring'. 2020-11-11T10:54:52.044123Z 0 [ERROR] [MY-010119] [Server] Aborting 2020-11-11T10:54:52.787494Z 0 [System] [MY-010910] [Server] J:\UniServerZ\core\mysql\bin\mysqld_z.exe: Shutdown complete (mysqld 8.0.18) MySQL Community Server - GPL. This is preventing me from using Uniform Server for a very specific purpose as a standalone, USB drive based solution for an urgent requirement... Very frustrating! Quote Link to comment Share on other sites More sharing options...
Antitesi Posted October 16 Report Share Posted October 16 Hi at all, my 5cents.... security is a relevant part of out job, and having used U.S. for years in prod env, would be great if was possible configure TDE in mysql stack. Of course we are speaking about a basic form of tde, the only accepted in mysql community version. Returning to the point, I tried the same configuration for "keyring_file", obtaining same results in mysql error file. I was very frustrated too..... imho he problem is that the errno:126 is not strictly related to the "keyring_file.dll" but to some others dlls impossibles to discover (by me) and/or not installed/registered (I didn't found any documentation, so maybe I'm wrong...). At the end my solution have been: install mysql 8.0.30 with the mysql installer, that register all dlls and paths and whatever in windows registry (the opposite that U.S. do) and configuring tde (I choosed the newest way, using "component_keyring_fiel.dll"). By now I'm using Unicontroller to start/stop Apache/PHP and I start/stop mysql by hand, outside Unicontroller. In such way, my application works fine. I saw that mysql present in U.S. is a tailored version, but would be great if will be possible have a U.S. version with mysql enabled to configure tde. Best regards P.S. Seems that mariadb works better regarding tde........mybe I will try migrating to mariadb......in such case Unicontroller would manage the database also....... Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.