< Changes
(initial copy) |
(initial version of most sections) |
||
| Line 1: | Line 1: | ||
= NSS Default File Format SQL = | |||
= | |||
== Summary == | == Summary == | ||
Change the NSS library default to use the sqlite based data storage, when applications don't specify their preferred storage file format. | |||
== Owner == | == Owner == | ||
* Name: [[User:kengert| Kai Engert]] | |||
* Email: kengert@redhat.com | |||
* Name: [[User: | |||
* Email: | |||
* Release notes owner: <!--- To be assigned by docs team [[User:FASAccountName| Release notes owner name]] <email address> --> | * Release notes owner: <!--- To be assigned by docs team [[User:FASAccountName| Release notes owner name]] <email address> --> | ||
<!--- UNCOMMENT only for Changes with assigned Shepherd (by FESCo) | <!--- UNCOMMENT only for Changes with assigned Shepherd (by FESCo) | ||
| Line 46: | Line 17: | ||
== Current status == | == Current status == | ||
* Targeted release: [[Releases/ | * Targeted release: [[Releases/27 | Fedora 27 ]] | ||
* Last updated: <!-- this is an automatic macro — you don't need to change this line --> {{REVISIONYEAR}}-{{REVISIONMONTH}}-{{REVISIONDAY2}} | * Last updated: <!-- this is an automatic macro — you don't need to change this line --> {{REVISIONYEAR}}-{{REVISIONMONTH}}-{{REVISIONDAY2}} | ||
<!-- After the change proposal is accepted by FESCo, tracking bug is created in Bugzilla and linked to this page | <!-- After the change proposal is accepted by FESCo, tracking bug is created in Bugzilla and linked to this page | ||
| Line 59: | Line 30: | ||
== Detailed Description == | == Detailed Description == | ||
Applications that use the NSS library often use a database for storage of keys, certificates and trust. NSS supports two different file formats, one called DBM (based on berkeley DB files) and another one called SQL (based on sqlite DB files). | |||
Today's default file format used by NSS, used when applications omit the type parameter, is the older DBM file format, which forbids parallel access to the storage. | |||
The suggestion is to change the default file format to SQL, which allows parallel access to the storage. | |||
Applications, or users using the NSS command line utilities, often provide the database storage location using a simple directory path parameter. Some might not be aware, or forget, that the parameter can be prefixed with a type modifier, either "dbm:" or "sql:". | |||
As a result, when not providing this parameter, the file format used will be the fragile DBM file format. | |||
This is particuarly problematic, if a user attempts to modify the NSS storage using command line tools, while another process, such as a daemon, is running concurrently, which also accesses the same database in the DBM file format. This often results in corrupted database storage, which cannot be recovered. | |||
By changing the default, all applications that currently use the DBM file format, will automatically be migrated to the SQL file format. NSS has the ability to discover if a storage location (a directory) contains the DBM file format. If configured to use the modern SQL format, NSS will automatically perform a one-time conversion from the DBM to the SQL format. | |||
The same applies to the NSS command line utilities. If the NSS library default is changed to SQL, the NSS tools will also trigger the one-time conversion, or access the already converted files. | |||
== Benefit to Fedora == | == Benefit to Fedora == | ||
The benefit will be less data corruption, because the SQL file format explicitly allows parallel access to the storage files by multiple applications. | |||
NSS has been supporting this new file format for many years, and several applications have already opted in to explicitly use the new file format, so it can be considered stable. | |||
== Scope == | == Scope == | ||
* Proposal owners: | * Proposal owners: | ||
A small downstream patch needs to be applied to the NSS library package, which changes the library default. | |||
* Other developers: | * Other developers: | ||
It's up to developers of NSS applications, if they accept the new default and an automatic conversion, or if they prefer to continue to use the classic DBM storage format. Although not recommended, developers can easily do so, by adding a "dbm:" prefix to the storage parameter they provide to NSS at NSS library initialization time. | |||
* Release engineering: [https://pagure.io/releng/issues #Releng issue number] (a check of an impact with Release Engineering is needed) <!-- REQUIRED FOR SYSTEM WIDE AS WELL AS FOR SELF CONTAINED CHANGES --> | * Release engineering: [https://pagure.io/releng/issues #Releng issue number] (a check of an impact with Release Engineering is needed) <!-- REQUIRED FOR SYSTEM WIDE AS WELL AS FOR SELF CONTAINED CHANGES --> | ||
No help should be necessary. No mass rebuild necessary. | |||
* | ** [[Fedora_Program_Management/ReleaseBlocking/Fedora{{FedoraVersionNumber|next}}|List of deliverables]]: No deliverables. | ||
* | * Policies and guidelines: N/A | ||
* Trademark approval: N/A | |||
== Upgrade/compatibility impact == | == Upgrade/compatibility impact == | ||
Data will be migrated automatically. | |||
== How To Test == | == How To Test == | ||
Each application or server softare that uses NSS should be tested for successful data migration. Ideally, an application/server configuration should be used, which already contains data from a previous Fedora version. It should be tested that after migration to the new Fedora version, the software continues to operate as expected. In particular, this means that the software still has access to the locally configure private keys, certificates, trust settings which the application/server has configured. (This only applies to applications that perform this kind of operation.) | |||
== User Experience == | |||
The result changes will be restricted to the file system level, and to applications that use the NSS library default. | |||
Previously, the following filenames were used for NSS storage: | |||
* cert8.db | |||
* key3.db | |||
* secmod.db | |||
After the change, the following filenames will be used: | |||
* cert9.db | |||
* key4.db | |||
* pkcs11.txt | |||
Applications that migrate data from an older version will contain both sets of files in their storage. However, after the conversion, the old files will no longer be used, they can be considered a one-time backup. | |||
Applications that are executed for the first time with the new library default already effective, will only get the new storage files. | |||
== Dependencies == | == Dependencies == | ||
No dependencies. | |||
== Contingency Plan == | == Contingency Plan == | ||
* Contingency mechanism: (What to do? Who will do it?) Revert the shipped configuration, NSS maintainer. | |||
* Contingency deadline: beta freeze | |||
* Contingency mechanism: (What to do? Who will do it?) | * Blocks release? No | ||
* Blocks product? No | |||
* Contingency deadline: | |||
* Blocks release? | |||
* Blocks product? | |||
== Documentation == | == Documentation == | ||
Revision as of 18:32, 3 July 2017
NSS Default File Format SQL
Summary
Change the NSS library default to use the sqlite based data storage, when applications don't specify their preferred storage file format.
Owner
- Name: Kai Engert
- Email: kengert@redhat.com
- Release notes owner:
Current status
- Targeted release: Fedora 27
- Last updated: 2017-07-03
- Tracker bug: <will be assigned by the Wrangler>
Detailed Description
Applications that use the NSS library often use a database for storage of keys, certificates and trust. NSS supports two different file formats, one called DBM (based on berkeley DB files) and another one called SQL (based on sqlite DB files).
Today's default file format used by NSS, used when applications omit the type parameter, is the older DBM file format, which forbids parallel access to the storage. The suggestion is to change the default file format to SQL, which allows parallel access to the storage.
Applications, or users using the NSS command line utilities, often provide the database storage location using a simple directory path parameter. Some might not be aware, or forget, that the parameter can be prefixed with a type modifier, either "dbm:" or "sql:".
As a result, when not providing this parameter, the file format used will be the fragile DBM file format. This is particuarly problematic, if a user attempts to modify the NSS storage using command line tools, while another process, such as a daemon, is running concurrently, which also accesses the same database in the DBM file format. This often results in corrupted database storage, which cannot be recovered.
By changing the default, all applications that currently use the DBM file format, will automatically be migrated to the SQL file format. NSS has the ability to discover if a storage location (a directory) contains the DBM file format. If configured to use the modern SQL format, NSS will automatically perform a one-time conversion from the DBM to the SQL format.
The same applies to the NSS command line utilities. If the NSS library default is changed to SQL, the NSS tools will also trigger the one-time conversion, or access the already converted files.
Benefit to Fedora
The benefit will be less data corruption, because the SQL file format explicitly allows parallel access to the storage files by multiple applications.
NSS has been supporting this new file format for many years, and several applications have already opted in to explicitly use the new file format, so it can be considered stable.
Scope
- Proposal owners:
A small downstream patch needs to be applied to the NSS library package, which changes the library default.
- Other developers:
It's up to developers of NSS applications, if they accept the new default and an automatic conversion, or if they prefer to continue to use the classic DBM storage format. Although not recommended, developers can easily do so, by adding a "dbm:" prefix to the storage parameter they provide to NSS at NSS library initialization time.
- Release engineering: #Releng issue number (a check of an impact with Release Engineering is needed)
No help should be necessary. No mass rebuild necessary.
- List of deliverables: No deliverables.
- Policies and guidelines: N/A
- Trademark approval: N/A
Upgrade/compatibility impact
Data will be migrated automatically.
How To Test
Each application or server softare that uses NSS should be tested for successful data migration. Ideally, an application/server configuration should be used, which already contains data from a previous Fedora version. It should be tested that after migration to the new Fedora version, the software continues to operate as expected. In particular, this means that the software still has access to the locally configure private keys, certificates, trust settings which the application/server has configured. (This only applies to applications that perform this kind of operation.)
User Experience
The result changes will be restricted to the file system level, and to applications that use the NSS library default.
Previously, the following filenames were used for NSS storage:
* cert8.db * key3.db * secmod.db
After the change, the following filenames will be used:
* cert9.db * key4.db * pkcs11.txt
Applications that migrate data from an older version will contain both sets of files in their storage. However, after the conversion, the old files will no longer be used, they can be considered a one-time backup.
Applications that are executed for the first time with the new library default already effective, will only get the new storage files.
Dependencies
No dependencies.
Contingency Plan
- Contingency mechanism: (What to do? Who will do it?) Revert the shipped configuration, NSS maintainer.
- Contingency deadline: beta freeze
- Blocks release? No
- Blocks product? No
Documentation
N/A (not a System Wide Change)