PG-1870 Load pg_tde and setup key in TAP tests

This makes sure pg_tde is loaded and keys are setup when running
postgresql TAP suite. No TDE features are enabled at this point.

When running with meson the setup is sped up by creating a template for
the key files before the first test is run.

In make this setup will currently be done once per test file instead of
once for the whole suite.

Author: AndersAstrand

meson.build

@@ -3445,6 +3445,48 @@ sys.exit(sp.returncode)
      env: test_env,
      suite: ['setup'])
 
+test_tde_template_dir = test_install_destdir / 'pg_tde_template'
+test_env.set('TDE_TEMPLATE_DIR', test_tde_template_dir)
+
+test('init_tde_files',
+     find_program('sh', required: true, native: true),
+     args: [
+       '-c', '''
+set -e
+
+if [ -z "$TDE_MODE" ]; then
+	exit;
+fi
+
+set -e
+
+PATH="$1":$PATH
+TMP_DATA_DIR=$(mktemp -d)
+
+rm -rf "$2"
+mkdir "$2"
+
+pg_ctl -D "$TMP_DATA_DIR" init -o '--set shared_preload_libraries=pg_tde'
+
+postgres --single -F -j -D "$TMP_DATA_DIR" postgres << SQL
+	CREATE EXTENSION pg_tde;
+	SELECT pg_tde_add_global_key_provider_file('global_test_provider', '$2/pg_tde_test_keys');
+	SELECT pg_tde_create_key_using_global_key_provider('test_default_key', 'global_test_provider');
+	SELECT pg_tde_set_default_key_using_global_key_provider('test_default_key', 'global_test_provider');
+SQL
+
+cp -RPp "$TMP_DATA_DIR/pg_tde" "$2/pg_tde"
+rm -rf "$TMP_DATA_DIR"
+''',
+       'init_tde_files',
+       temp_install_bindir,
+       test_tde_template_dir
+     ],
+     priority: setup_tests_priority - 2,
+     timeout: 300,
+     is_parallel: false,
+     env: test_env,
+     suite: ['setup'])
 
 
 ###############################################################

src/bin/pg_rewind/t/002_databases.pl

@@ -11,6 +11,12 @@
 
 use RewindTest;
 
+if ($ENV{TDE_MODE} and not $ENV{TDE_MODE_NOSKIP})
+{
+	plan skip_all =>
+	  "pg_combinebackup doesn't set filemodes of pg_tde/ correctly?";
+}
+
 sub run_test
 {
 	my $test_mode = shift;

src/bin/pg_upgrade/t/002_pg_upgrade.pl

@@ -15,11 +15,6 @@
 use PostgreSQL::Test::AdjustUpgrade;
 use Test::More;
 
-if (defined($ENV{TDE_MODE}))
-{
-    plan skip_all => "Running with TDE doesn't support special server starts yet";
-}
-
 # Can be changed to test the other modes.
 my $mode = $ENV{PG_TEST_PG_UPGRADE_MODE} || '--copy';
 

src/test/perl/PostgreSQL/Test/Cluster.pm

@@ -107,6 +107,7 @@ use File::Temp ();
 use IPC::Run;
 use PostgreSQL::Version;
 use PostgreSQL::Test::RecursiveCopy;
+use PostgreSQL::Test::TdeCluster;
 use Socket;
 use Test::More;
 use PostgreSQL::Test::Utils          ();
@@ -1527,6 +1528,11 @@ sub new
 		}
 	}
 
+	if ($ENV{TDE_MODE})
+	{
+		bless $node, 'PostgreSQL::Test::TdeCluster';
+	}
+
 	# Add node to list of nodes
 	push(@all_nodes, $node);
 

src/test/perl/PostgreSQL/Test/TdeCluster.pm

@@ -0,0 +1,126 @@
+package PostgreSQL::Test::TdeCluster;
+
+use parent 'PostgreSQL::Test::Cluster';
+
+use strict;
+use warnings FATAL => 'all';
+
+use List::Util                      ();
+use PostgreSQL::Test::RecursiveCopy ();
+use PostgreSQL::Test::Utils         ();
+
+our ($tde_template_dir);
+
+BEGIN
+{
+	$ENV{TDE_MODE_NOSKIP} = 0 unless defined($ENV{TDE_MODE_NOSKIP});
+}
+
+sub init
+{
+	my ($self, %params) = @_;
+
+	$self->SUPER::init(%params);
+
+	$self->SUPER::append_conf('postgresql.conf',
+		'shared_preload_libraries = pg_tde');
+
+	$self->_tde_init_principal_key;
+
+	return;
+}
+
+sub append_conf
+{
+	my ($self, $filename, $str) = @_;
+
+	if ($filename eq 'postgresql.conf' or $filename eq 'postgresql.auto.conf')
+	{
+		# TODO: Will not work with shared_preload_libraries= without any
+		#       libraries, but no TAP test currently do that.
+		$str =~
+		  s/shared_preload_libraries *= *'?([^'\n]+)'?/shared_preload_libraries = 'pg_tde,$1'/;
+	}
+
+	$self->SUPER::append_conf($filename, $str);
+}
+
+sub pg_tde_dir
+{
+	my ($self) = @_;
+	return $self->data_dir . '/pg_tde';
+}
+
+sub _tde_init_principal_key
+{
+	my ($self) = @_;
+
+	my $tde_template_dir = $ENV{TDE_TEMPLATE_DIR}
+	  if defined($ENV{TDE_TEMPLATE_DIR});
+
+	unless (defined($tde_template_dir))
+	{
+		$tde_template_dir =
+		  $PostgreSQL::Test::Utils::tmp_check . '/pg_tde_template';
+
+		unless (-e $tde_template_dir)
+		{
+			my $temp_dir = PostgreSQL::Test::Utils::tempdir();
+			mkdir $tde_template_dir;
+
+			PostgreSQL::Test::Utils::system_log(
+				'initdb',
+				'-D' => $temp_dir,
+				'--set' => 'shared_preload_libraries=pg_tde');
+
+			_tde_init_sql_command(
+				$temp_dir, 'postgres', qq(
+				CREATE EXTENSION pg_tde;
+				SELECT pg_tde_add_global_key_provider_file('global_test_provider', '$tde_template_dir/pg_tde_test_keys');
+				SELECT pg_tde_create_key_using_global_key_provider('default_test_key', 'global_test_provider');
+				SELECT pg_tde_set_default_key_using_global_key_provider('default_test_key', 'global_test_provider');
+			));
+
+			PostgreSQL::Test::Utils::system_log('cp', '-R', '-P', '-p',
+				$temp_dir . '/pg_tde',
+				$tde_template_dir);
+		}
+	}
+
+	PostgreSQL::Test::Utils::system_log('cp', '-R', '-P', '-p',
+		$tde_template_dir . '/pg_tde',
+		$self->pg_tde_dir);
+
+	# We don't want clusters sharing the KMS file as any concurrent writes will
+	# mess it up.
+	PostgreSQL::Test::Utils::system_log(
+		'cp', '-R', '-P', '-p',
+		$tde_template_dir . '/pg_tde_test_keys',
+		$self->basedir . '/pg_tde_test_keys');
+
+	PostgreSQL::Test::Utils::system_log(
+		'pg_tde_change_key_provider',
+		'-D' => $self->data_dir,
+		'1664',
+		'global_test_provider',
+		'file',
+		$self->basedir . '/pg_tde_test_keys');
+}
+
+sub _tde_init_sql_command
+{
+	my ($datadir, $database, $sql) = @_;
+	PostgreSQL::Test::Utils::run_log(
+		[
+			'postgres',
+			'--single', '-j', '-F',
+			'-D' => $datadir,
+			'-c' => 'exit_on_error=true',
+			'-c' => 'log_checkpoints=false',
+			$database,
+		],
+		'<',
+		\$sql);
+}
+
+1;

src/test/recovery/t/027_stream_regress.pl

@@ -9,11 +9,6 @@
 use Test::More;
 use File::Basename;
 
-if (defined($ENV{TDE_MODE}))
-{
-    plan skip_all => "Running with TDE doesn't support special server starts yet";
-}
-
 # Initialize primary node
 my $node_primary = PostgreSQL::Test::Cluster->new('primary');
 $node_primary->init(allows_streaming => 1);