MDEV-8775 enabling encryption is too error-prone

create a "preset" file to enable all encryption options at once

MDEV-8775 enabling encryption is too error-prone
create a "preset" file to enable all encryption options at once
416b811a · Sergei Golubchik · 7bd2f20e · 416b811a · 416b811a
Commit 416b811a authored Sep 08, 2015 by Sergei Golubchik
Hide whitespace changes
Inline Side-by-side

Showing with 18 additions and 0 deletions

support-files/CMakeLists.txt support-files/CMakeLists.txt +2 -0

support-files/rpm/enable_encryption.preset support-files/rpm/enable_encryption.preset +16 -0

No files found.
--- a/support-files/CMakeLists.txt
+++ b/support-files/CMakeLists.txt
@@ -93,6 +93,8 @@ IF(UNIX)
              COMPONENT Client)
      INSTALL(FILES rpm/server.cnf DESTINATION ${INSTALL_SYSCONF2DIR}
              COMPONENT IniFiles)
+      INSTALL(FILES rpm/enable_encryption.preset DESTINATION ${INSTALL_SYSCONF2DIR}
+              COMPONENT IniFiles)
    ENDIF()

    # This is for SuSE:

--- a/support-files/rpm/enable_encryption.preset
+++ b/support-files/rpm/enable_encryption.preset
+#
+# !include this file into your my.cnf (or any of *.cnf files in /etc/my.cnf.d)
+# and it will enable data at rest encryption. This is a simple way to
+# ensure that everything that can be encrypted will be and your
+# data will not leak unencrypted.
+#
+# If in the future more encryption related options will be implemented,
+# this file will enable them too.
+#
+[mariadb]
+aria-encrypt-tables
+encrypt-binlog
+encrypt-tmp-disk-tables
+encrypt-tmp-files
+loose-innodb-encrypt-log
+loose-innodb-encrypt-tables