Skip to content
Percona Software for MySQL Documentation

Rate this page
Thanks for your feedback
Thank you! The feedback has been submitted.

For help, click the link below to get free database assistance or contact our experts for personalized support.

Get help from Percona

Audit Log Filter file naming conventions

Name qualities

An audit log path has:

  • Optional directory prefix

  • Base file name

  • Optional suffix from compression or encryption

Compression or encryption append suffixes:

  • Compression adds .gz

  • Encryption adds .pwd_id.enc

pwd_id identifies the keyring entry for that password; the component stores keys in the keyring.

With both features, both suffixes appear (for example on audit_filter.log).

Example names:

Default name Enabled feature
audit.log No compression or encryption
audit.log.gz Compression
audit.log.pwd_id.enc Encryption
audit.log.gz.pwd_id.enc Compression and encryption

Encryption ID format

Each pwd_id contains:

  • UTC creation time as YYYYMMDDThhmmss

  • A sequence starting at 1, incremented when several passwords share one timestamp

Examples:

20230417T082215-1
20230301T061400-1
20230301T061400-2

Example encrypted file names:

audit_filter.log.20230417T082215-1.enc
audit_filter.log.20230301T061400-1.enc
audit_filter.log.20230301T061400-2.enc

The password with the highest sequence for a given timestamp is current.

Rotation sequence suffix

Starting in Percona Server for MySQL 8.4.9-9, multiple rotations in the same second append -N so the server never overwrites a prior file:

audit_filter.20250401T120000.log      -- first rotation at 12:00:00
audit_filter.20250401T120000-1.log    -- second rotation at 12:00:00

Update parsers to accept the optional -N suffix.

Renaming operations

At startup, if the target path already has a file, the component renames it and opens a new empty file.

At shutdown, the component renames the active log file.

Additional reading