10000 Merge back release 17.5.2 by dutow · Pull Request #463 · percona/postgres · GitHub
[go: up one dir, main page]
Skip to content

Merge back release 17.5.2 #463

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 21 commits into from
Jul 3, 2025
Merged

Merge back release 17.5.2 #463

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
f631496
PG-1663 Make sure indexes on paritioned tables are encrypted
jeltz Jun 16, 2025
93dcf72
Update postgres and pg_tde version numbers
dutow Jun 18, 2025
d48fdea
PG-1662 Handle changing access method of partitioned table correctly
jeltz Jun 18, 2025
8b1f1cf
Try to use poll_start instead of kill9_until_dead in TAP tests
jeltz Jun 18, 2025
98c3109
Remove extra word in error message for existing key
AndersAstrand Jun 23, 2025
ef03f7b
Create enforcement.md - Encryption Enforcement topic (#403)
Andriciuc Jun 25, 2025
2a1f301
Created replication.md quick walkthrough for pg_tde (#319)
Andriciuc Jun 25, 2025
77db80a
PG-1700 Fix error hint when missing principal key
AndersAstrand Jun 25, 2025
d4639f8
Create restore-backups.md topic (#397)
Andriciuc Jun 26, 2025
5191b68
Updated Setup/Test/Var/Yum files based on AA feedback (#445)
Andriciuc Jun 26, 2025
26eecc7
text fixes for how-to and index folders based on AA feedback (#444)
Andriciuc Jun 26, 2025
c94be04
faq.md and wal_dump.md/encryption.md content improved (#437)
Andriciuc Jun 26, 2025
5a2c081
PG-1257 Add key deletion funcs to documentation
artemgavrilov Jun 26, 2025
aa23578
Docs 17.5.1 revert commit 56106 (#458)
Andriciuc Jun 26, 2025
8d88d3f
Updated principal-key/features/functions.md based on AA feedback (#441)
Andriciuc Jun 27, 2025
58153f9
Add OpenBao Topic ver 2 (#459)
Andriciuc Jun 27, 2025
f10eae3
Clarify key deletion funcs description in docs
artemgavrilov Jun 27, 2025
33af938
Re-apply set key changes: revert of revert commit (#461)
Andriciuc Jun 30, 2025
dfcef9f
Prepare general docs for GA release (#434)
Andriciuc Jun 30, 2025
b6c1305
Update architecture/index.md (#439)
Andriciuc Jun 30, 2025
85037c4
Create Release Notes for 1.0 (#432)
Andriciuc Jun 30, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
PG-1257 Add key deletion funcs to documentation 
Add principal key deletion functions to documentation. Fix couple
uncertainties on architecture docs page.
  • Loading branch information
@artemgavrilov
artemgavrilov committed Jun 26, 2025
commit 5a2c081a959a5a763ceb02b2e2acc395078266e3
4 changes: 2 additions & 2 deletions contrib/pg_tde/documentation/docs/architecture/index.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -305,12 +305,12 @@ You can manage a default key with the following functions:
* `pg_tde_delete_default_key()`

!!! note
`pg_tde_delete_default_key()` is only possible if there's no table currently using the default principal key.
`pg_tde_delete_default_key()` is only possible if there's no database currently using the default principal key.
Changing the default principal key will rotate the encryption of internal keys for all databases using the current default principal key.

#### Delete a key

The `pg_tde_delete_key()` function removes the principal key for the current database. If the current database has any encrypted tables, and there isn’t a default principal key configured, it reports an error instead. If there are encrypted tables, but there’s also a global default principal key, internal keys will be encrypted with the default key.
The `pg_tde_delete_key()` function removes the principal key for the current database. If the current database has any encrypted tables, and there isn’t a default principal key configured, it reports an error instead. If there are encrypted tables, but there’s also a default principal key, internal keys will be encrypted with the default key.

!!! note
WAL keys **cannot** be deleted, as server keys are managed separately.
Expand Down
16 changes: 16 additions & 0 deletions contrib/pg_tde/documentation/docs/functions.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -302,6 +302,22 @@ SELECT pg_tde_set_default_key_using_global_key_provider(
);
```

### pg_tde_delete_key

Deletes the principal key for the current database. If the current database has any encrypted tables, and there isn’t a default principal key configured, it reports an error instead. If there are encrypted tables, but there’s also a default principal key, internal keys will be encrypted with the default key.

```sql
SELECT pg_tde_delete_key();
```

### pg_tde_delete_default_key

Deletes default principal key. It's possible only if no database uses default principal key.

```sql
SELECT pg_tde_delete_default_key();
```

## Encryption status check

### pg_tde_is_encrypted
Expand Down
0