Merge branch '8.4' into ps-9549

Author: patrickbirch

docs/apt-repo.md

@@ -15,8 +15,6 @@ The DEB builds for Ubuntu 20.04, Ubuntu 22.04, Ubuntu 24.04, DEBIAN 11, and DEBI
 
 ## Install Percona Server for MySQL using APT
 
---8<--- "percona-release.md"
-
 To install Percona Server for MySQL using APT, do the following steps:
 {.power-number}
 

docs/css/design.css

@@ -269,6 +269,7 @@
     vertical-align: baseline;
     padding: 0 0.2em 0.1em;
     border-radius: 0.15em;
+    white-space: pre-wrap;   /* Ensure long lines wrap */
 }
 .md-typeset .highlight code span,
 .md-typeset code,
@@ -730,4 +731,4 @@ i[warning] [class*="moji"] {
         padding: 1em;
     }
 }
-/**/
+/**/

docs/downgrade-from-pro.md

@@ -0,0 +1,68 @@
+# Downgrade from Percona Server for MySQL Pro
+
+If you want to downgrade from Percona Server for MySQL Pro to the same version of Percona Server for MySQL, do the following:
+
+=== "On Debian and Ubuntu"
+
+    1. Set up the Percona Server for MySQL 8.4 repository
+    
+        ```{.bash data-prompt="$"}
+        $ sudo percona-release setup ps84
+        ```
+
+    2. Stop the `mysql` server.
+       
+        ```{.bash data-prompt="$"}
+        $ sudo systemctl stop mysql
+        ```
+
+    3. Install the server package
+
+        ```{.bash data-prompt="$"}
+        $ sudo apt install percona-server-server
+        ```
+
+        Install other required packages. [Check files in the DEB package built for Percona Server for MySQL 8.4](apt-files.md).
+
+    4. Start the `mysql` server
+
+        ```{.bash data-prompt="$"}
+        $ sudo systemctl start mysql
+        ```
+
+    !!! note
+
+        On Debian 12, if you want to remove the Percona Server for MySQL after the downgrade, you must stop the 
+        server manually. This behavior will be fixed in future releases.
+       
+        ```{.bash data-prompt="$"}
+        $ sudo systemctl stop mysql
+        ```
+
+=== "On RHEL and derivatives"
+
+    1. Set up the Percona Server for MySQL 8.4 repository
+    
+        ```{.bash data-prompt="$"}
+        $ sudo percona-release setup ps84
+        ```
+ 
+    2. Stop the `mysql` server.
+       
+        ```{.bash data-prompt="$"}
+        $ sudo systemctl stop mysql
+        ```
+
+    3. Install the server package
+
+        ```{.bash data-prompt="$"}
+        $ sudo yum --allowerasing install percona-server-server
+        ```
+    
+        Install other required packages. [Check files in the RPM package built for Percona Server for MySQL 8.4](yum-files.md).
+
+    4. Start the `mysql` server
+
+        ```{.bash data-prompt="$"}
+        $ sudo systemctl start mysql
+        ```

docs/fips.md

@@ -0,0 +1,75 @@
+# FIPS compliance
+
+--8<--- "pro-build-announcement.md"
+
+The Federal Information Processing Standards (FIPS) are a set of U.S. government standards that ensure the security of computer systems for non-military government agencies and contractors. These standards specify how to perform cryptographic operations, such as encryption, hashing, and digital signatures. FIPS mode is a mode of operation that enforces these standards and rejects any non-compliant algorithms or parameters.
+
+Percona Server for MySQL implements the same level of FIPS support as MySQL. Percona Server for MySQL can run in FIPS mode if a FIPS-enabled OpenSSL library and FIPS Object Module are available at runtime or if compiled using a FIPS-validated version of OpenSSL. You can also receive this functionality by [building Percona Server for MySQL from source code](compile-percona-server.md).
+
+## Prerequisites
+
+To prepare Percona Server for MySQL for FIPS certification, do the following:
+
+* Check that your operating system includes FIPS pre-approved OpenSSL library in version 3.0.x or higher. The following distributions includes FIPS pre-approved OpenSSL library in version 3.0.x or higher:
+
+    * RedHat Enterprise Linux 9 and derivatives
+
+    * Oracle Linux 9
+
+    The following distributions also includes OpenSSL library in version 3.0.x but do not have FIPS-approved crypto provider installed by default (you can build the crypto provider from the source for testing):
+
+    * Debian 12
+
+    * Ubuntu 22.04 Pro (the OpenSSL FIPS 140-3 certification is under implementation)
+
+        !!! note
+            
+            If you enable FIPS on Ubuntu Pro with `$ sudo pro enable fips-updates` and then disable FIPS with `$ sudo pro disable fips-updates`, Percona Server for MySQL may stop operating properly. For example, if you disable FIPS on Ubuntu Pro with `$ sudo pro disable fips-updates` and enable the FIPS mode on Percona Server with `ssl-fips-mode=ON`, Percona Server may not load the SSL certificate.
+
+* Deploy [Percona Server for MySQL from the Pro build](psmysql-pro.md), which is built and tested on operating systems with FIPS pre-approved OpenSSL packages.
+
+## The FIPS mode variables
+
+Percona Server for MySQL uses the same variables and values as MySQL. Percona Server for MySQL enables control of FIPS mode on the server side and the client side:
+
+* The `ssl_fips_mode` system variable shows whether the server operates in FIPS mode. This variable is disabled by default.
+
+    The `ssl_fips_mode` system variable has these values:
+
+    * `0` - disables FIPS mode
+    * `1` - enables FIPS mode. The exact behavior of the enabled FIPS mode depends on the OpenSSL version. The server only specifies the FIPS value to OpenSSL.
+    * `2` - enables `strict` FIPS mode. This value provides more restrictions than the `1 ` value. The exact behavior of the `strict` FIPS mode depends on the OpenSSL version. The server only specifies the FIPS value to OpenSSL.
+
+* The `--ssl-fips-mode` client/server option controls whether a given client operates in FIPS mode. This setting does not change the server setting. This option is disabled by default.
+
+    The `--ssl-fips-mode` client/server option has these values:
+
+    * `OFF` - disables FIPS mode
+    * `ON` - enables FIPS mode. The exact behavior of the enabled FIPS mode depends on the OpenSSL version. The server only specifies the FIPS value to OpenSSL.
+    * `STRICT` - enables `strict` FIPS mode. This value provides more restrictions than the `ON` value. The exact behavior of the `strict` FIPS mode depends on the OpenSSL version. The server only specifies the FIPS value to OpenSSL.
+     
+    The server operation in FIPS mode does not depend on which crypto module (regular or FIPS-approved) is set as the default in the OpenSSL configuration file. The server always respects the value of `--ssl-fips-mode` server command line option (`OFF`, `ON`, or `STRICT`). The `ssl_fips_mode` global system variable is read-only and cannot be changed at runtime.
+  
+### Enable the FIPS mode
+
+To enable the FIPS mode, pass `--ssl-fips-mode=ON` or `--ssl-fips-mode=STRICT` to mysqld as a command line argument or add `ssl-fips-mode=ON` or `--ssl-fips-mode=STRICT` to the configuration file. Ignore the warning that the `--ssl-fips-mode` client/server option is deprecated.
+    
+## Check that FIPS mode is enabled
+
+To ensure that the FIPS mode is enabled, do the following:
+
+* Pass `--log-error-verbosity=3` to mysqld as a command line argument or add `log-error-verbosity=3` to the configuration file.
+    
+* Check that the error log contains the following message:
+
+    ```{.text .no-copy}
+    A FIPS-approved version of the OpenSSL cryptographic library has been detected in the operating system with a properly configured FIPS module available for loading. Percona Server for MySQL will load this module and run in FIPS mode.
+    ```
+
+## Next steps
+
+[Install Percona Server for MySQL Pro :material-arrow-right:](install-pro.md){.md-button}
+
+If you already use Percona Server for MySQL, you can
+
+[Upgrade to Percona Server for MySQL Pro :material-arrow-right:](upgrade-pro.md){.md-button}

docs/install-pro.md

@@ -0,0 +1,77 @@
+# Install Percona Server for MySQL Pro
+
+--8<--- "pro-build-announcement.md"
+
+This document provides guidelines how to install Pro packages of Percona Server for MySQL from Percona repositories. [Check files in packages built for Percona Server for MySQL Pro :material-arrow-right:](pro-files.md){.md-button}
+
+## Procedure
+
+1. Request the access to the pro repository from Percona Support. You will receive the client ID and the access token which you use when downloading the packages.
+
+2. Configure the repository and install Percona Server for MySQL packages
+
+    === "On Debian and Ubuntu"
+
+        1. Download the Percona `gpg` key:
+
+            ```{.bash .data-prompt="$"}
+            $ wget https://github.com/percona/percona-repositories/raw/main/deb/percona-keyring.gpg 
+            ```
+
+        2. Add the Percona `gpg` key to `trusted.gpg.d` directory:
+
+            ```{.bash .data-prompt="$"}
+            $ sudo cp percona-keyring.gpg /etc/apt/trusted.gpg.d/
+            ```
+
+        3. Create the `/etc/apt/sources.list.d/psmysql-pro.list` configuration file with the following contents with your [CLIENTID] and [TOKEN].
+
+            To get the `OPERATING_SYSTEM` value, run `lsb_release -sc`.
+            
+            ```ini title="/etc/apt/sources.list.d/psmysql-pro.list"
+            deb http://repo.percona.com/private/[CLIENTID]-[TOKEN]/ps-84-pro/apt/ OPERATING_SYSTEM main
+            ```
+
+        4. Update the local cache
+
+            ```{.bash .data-prompt="$"}
+            $ sudo apt update
+            ```
+        
+        5. Install Percona Server for MySQL packages
+        
+            ```{.bash .data-prompt="$"}
+            $ sudo apt install -y percona-server-server-pro
+            ```
+
+            Install other required packages. [Check files in the DEB package built for Percona Server for MySQL 8.4](apt-files.md).
+
+    === "On RHEL and derivatives"
+
+        1. Create the `/etc/yum.repos.d/psmysql-pro.repo` configuration file with the following contents with your [CLIENTID] and [TOKEN].
+
+            ```ini title="/etc/yum.repos.d/psmysql-pro.repo"
+            [ps-8.4-pro]
+            name=PS_8.4_PRO
+            baseurl=http://repo.percona.com/private/[CLIENTID]-[TOKEN]/ps-84-pro/yum/release/$releasever/RPMS/x86_64
+            enabled=1
+            gpgkey = https://repo.percona.com/yum/PERCONA-PACKAGING-KEY
+            ```
+
+        2. Install Percona Server for MySQL packages
+        
+            ```{.bash .data-prompt="$"}
+            $ sudo yum install -y percona-server-server-pro
+            ```
+
+            Install other required packages. [Check files in the DEB package built for Percona Server for MySQL 8.4](apt-files.md).
+
+3. Start the server
+
+    ```{.bash .data-prompt="$"}
+    $ sudo systemctl start mysql
+    ```
+
+## Next step
+
+[Enable the FIPS mode :material-arrow-right:](fips.md){.md-button}

docs/installation.md

@@ -6,8 +6,6 @@ We gather [Telemetry data] in the Percona packages and Docker images.
 
 ## Install Percona Server for MySQL from Repositories
 
---8<--- "percona-release.md"
-
 Percona provides repositories for yum (`RPM` packages for Red Hat, CentOS and Amazon Linux AMI) and apt (`.deb` packages for Ubuntu and Debian) for software such as Percona Server for MySQL, Percona XtraBackup, and Percona Toolkit. This makes it easy to install and update your software and its dependencies through your operating system’s package manager. This is the recommended way of installing where possible.
 
 The following guides describe the installation process for using the official Percona repositories for the `.deb` and `.rpm` packages.

docs/kill-idle-trx.md

@@ -1,9 +1,60 @@
-# Kill idle transactions
+# Kill idle transaction
 
-This feature limits the age of idle transactions, for all transactional storage
-engines. If a transaction is idle for more seconds than the threshold
-specified, it will be killed. This prevents users from blocking *InnoDB* purge
-by mistake.
+Database servers face a constant challenge: managing resources efficiently while maintaining system stability. The kill idle transactions timeout option is a strategic tool to address this challenge. When you set a time limit, any transaction that stays inactive beyond this limit is automatically stopped.  This action prevents forgotten or stuck transactions from slowing down your database by blocking critical cleanup processes.
+
+The option has the following benefits:
+
+* Automatically terminates long-running, inactive database connections
+
+* Prevents resource hogging by abandoned or forgotten transactions
+
+* Frees up database connection pools
+
+* Reduces unnecessary memory consumption
+
+* Protects against potential connection leaks
+
+* Prevents unnecessary server load from dormant sessions
+
+You must also be consider the following:
+
+* May interrupt legitimate long-running queries
+
+* Requires careful configuration to avoid disrupting critical processes
+
+* Can cause unexpected application behavior if timeout is too aggressive
+
+* Might create additional overhead in monitoring and logging
+
+* Requires precise tuning for different application requirements
+
+
+We recommend that you start with conservative timeout settings and review the logs frequently to track terminated transactions.
+
+This feature works with all types of database storage that support transactions.
+
+## Determine the idle transaction threshold
+
+When setting up a database, you must decide how long to let inactive transactions sit before ending them. This decision affects the database's performance.
+
+| Items to consider                  | Description                                                                                          |
+|---------------------------------|------------------------------------------------------------------------------------------------------|
+| How your database is used       | Look at how long transactions usually take and how often they happen. If most transactions finish quickly, you should end idle ones sooner. |
+| How many things happen at once  | Count how many transactions your system handles simultaneously. If it's a lot, you might need to end idle transactions faster to free up space for new ones. |
+| How it affects speed            | Watch how idle transactions change your database's speed. If they slow things down a lot, ending them sooner can help keep everything running smoothly. |
+| What your business needs        | Consider what's important for your work. Some important transactions might need more time, so you shouldn't end them too quickly. |
+
+## InnoDB purge
+
+The InnoDB purge process in MySQL removes outdated row versions (undo logs) from the system. When a transaction modifies data, InnoDB keeps old row versions for rollback and to support transactions running with multi-version concurrency control (MVCC). Once these versions are no longer needed, the purge process deletes them to free up space and improve performance.
+
+Blocking the InnoDB purge can lead to increased disk space usage and potential performance degradation. This feature helps prevent issues such by:
+
+* Limiting idle transactions: It kills any idle transaction after a specified threshold, ensuring transactions don’t remain idle for too long.
+
+* Preventing mistakes: Users can’t accidentally block the InnoDB purge by leaving transactions idle.
+
+* Improving performance: Keeping the purge process running smoothly helps maintain optimal database performance.
 
 ## System variables
 
@@ -16,6 +67,7 @@ by mistake.
 | Dynamic:       | Yes                |
 | Data type      | Integer            |
 | Default value  | 0 (disabled)       |
-| Units          | Seconds            |
+| Unit           | Seconds            |
+
+If set to a non-zero value, the server kills any idle transaction after it stays idle for this number of seconds.
 
-If non-zero, any idle transaction will be killed after being idle for this many seconds.

docs/myrocks-server-variables.md

@@ -888,10 +888,6 @@ Allowed range is from `-1` to `9223372036854775807`.
 | Data type    | Numeric                                        |
 | Default      | 150000                                              |
 
-!!! note
-
-    In version [Percona Server for MySQL 8.0.36-28](.//release-notes/8.0.36-28.md) and later, the default value is changed from `0` to `150000`.
-
 Specifies the size of the window for counting delete markers by `rocksdb_compaction_sequential_deletes`. Default value is `150000`.
 
 Allowed range is up to `2000000` (two million).
@@ -2886,7 +2882,7 @@ This variable is disabled (OFF) by default.
 | Data type    | Boolean              |
 | Default      | OFF                  |
 
-This variable is [tech preview](../glossary.md/#tech-preview) and may be removed in the future releases.
+This variable is [tech preview](./glossary.md#tech-preview) and may be removed in the future releases.
 
 Allows to turn on the write buffer manager (WriteBufferManager) from `cnf` files. This variable is related to [`rocksdb_charge_memory`](#rocksdbchargememory).
 

docs/pro-files.md

@@ -0,0 +1,30 @@
+# Files in packages built for Percona Server for MySQL Pro
+
+--8<--- "pro-build-announcement.md"
+
+## Files in the DEB package
+
+| Package                      | Contains                                                                                                                                                                        |
+|------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| percona-server-server-pro    | The database server itself, the mysqld binary and associated files.  |
+| percona-server-pro-common    | The files common to the server and client.                           |
+| percona-server-client-pro    | The command line client.                                             |
+| percona-server-test-pro      | The database test suite.                                             |
+| percona-server-pro-source    | The server source.                                                   |
+| percona-mysql-router-pro     | The mysql router.                                                    |
+| percona-server-rocksdb-pro   | The files for rocksdb installation.                                  |
+| percona-server-pro-dbg       | The debug symbols.                                                   |
+
+## Files in the RPM package
+
+| Package                      | Contains                                                                                                                                                                        |
+|------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| percona-server-server-pro    | The database server itself, the mysqld binary and associated files.  |
+| percona-server-client-pro    | The command line client.                                             |
+| percona-server-test-pro      | The database test suite.                                             |
+| percona-server-rocksdb-pro   | The files for rocksdb installation.                                  |
+| percona-mysql-router-pro     | The mysql router.                                                    |
+| percona-server-shared-pro    | Client shared library.                                               |
+| percona-server-pro-debuginfo | The debug symbols.                                                   |
+| percona-server-devel-pro     | Header files needed to compile software using the client library.    |
+