PG-1870 Run postgresql TAP suite with pg_tde enabled

[AndersAstrand]

This enables wal encryption and table encryption by default when running postgres TAP suite with TDE_MODE=1.

A few tests had to be skipped for various reasons, and some of these should most likely be looked into as they might be actual bugs or test setup issues we can fix.

Use TDE_MODE=1 to enable pg_tde with both wal and relation encryption. Use TDE_MODE_WAL=0 to disable wal encryption and TDE_MODE_SMGR=0 to disable relation encryption.

For example to run the postgres suite with WAL encryption turned on, but not SMGR:
TDE_MODE=1 TDE_MODE_SMGR=0 meson test --no-suite pg_tde

There is also TDE_MODE_NOSKIP=1 which will force all tests to run. This is useful when investigating the test failures that made it necessary to skip some tests.

[jeltz]

Looks good, especially with Zsolt's proposed changes if they can be implemented reaosnably which generates the files and copies them.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 82.22%. Comparing base (415cb8d) to head (d976449).

❌ Your project status has failed because the head coverage (82.22%) is below the target coverage (90.00%). You can increase the head coverage or adjust the target coverage.

Additional details and impacted files

@@                Coverage Diff                 @@
##           TDE_REL_17_STABLE     #535   +/-   ##
==================================================
  Coverage              82.22%   82.22%           
==================================================
  Files                     25       25           
  Lines                   3246     3246           
  Branches                 512      512           
==================================================
  Hits                    2669     2669           
  Misses                   465      465           
  Partials                 112      112           

Components	Coverage Δ
access	84.70% <ø> (ø)
catalog	87.65% <ø> (ø)
common	77.77% <ø> (ø)
encryption	72.97% <ø> (ø)
keyring	73.21% <ø> (ø)
src	94.18% <ø> (ø)
smgr	96.53% <ø> (ø)
transam	∅ <ø> (∅)

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[jeltz]

Nice changes! Nice also to see some use of single user mode.

[jeltz]

Is there a reason we have not implemented it for make? Just lack of time? The reason should either be in the commit message or a comment.

[AndersAstrand]

I just didn't care enough about make to do it. Which is probably not a great reason. I am honestly on the fence if we should do it for meson either. Might not be worth the extra complexity.

[jeltz]

I can't say I care either way but it should be explained in the commit message.

[jeltz]

Have you emasured the speedup?

[AndersAstrand]

I have a hard time doing any type of even preliminary performance testing on my laptop right now because the stupid s1-agent eats so much CPU and it's quite random.

[AndersAstrand]

I'm not sure what more to say about i in a commit message. I already mention that it does it for meson but not for make. Should I just remove it from meson if it's confusing?

Or do you mean that I should mention that there is no technical reason for not doing it in make, just that this commit doesn't do that?

[jeltz]

Or do you mean that I should mention that there is no technical reason for not doing it in make, just that this commit doesn't do that?

Yes, that is what I meant.

[AndersAstrand]

Or do you mean that I should mention that there is no technical reason for not doing it in make, just that this commit doesn't do that?

Yes, that is what I meant.

Pushed new version of the branch that does the meson setup in a separate commit with a more verbose commit message.