database/mariadb-connector-c
1
0
Fork 0
mirror of https://github.com/mariadb-corporation/mariadb-connector-c.git synced 2025-08-08 14:02:17 +03:00
Code Activity

CONC-698: certificate info is read on every connect

Browse Source 
Read and store peer certificate information only if
mariadb_get_options was called.
This commit is contained in:
Georg Richter
2024-06-21 16:14:36 +02:00
parent 71fa44cff0
commit 7498d30a07
4 changed files with 52 additions and 42 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
unittest/libmariadb/connection.c
View File

@@ -2335,8 +2335,7 @@ static int test_x509(MYSQL *my __attribute__((unused)))
return FAIL;
}
mariadb_get_infov(mysql1, MARIADB_TLS_PEER_CERT_INFO, &info);
memset(fp, 0, 65);
diag("fingerprint: %s", info->fingerprint);
memset(fp, 0, sizeof(fp));
mysql_options(mysql2, MARIADB_OPT_TLS_PEER_FP, info->fingerprint);
if (!(my_test_connect(mysql2, hostname, username,
password, schema, port,
@@ -2346,7 +2345,12 @@ static int test_x509(MYSQL *my __attribute__((unused)))
return FAIL;
}
mariadb_get_infov(mysql2, MARIADB_TLS_PEER_CERT_INFO, &info);
FAIL_IF(info->verify_mode != MARIADB_VERIFY_FINGERPRINT, "Fingerprint verification expected");
if (strcmp(info->fingerprint, fingerprint))
{
diag("different fingerprints!");
return FAIL;
}
mysql_close(mysql1);
mysql_close(mysql2);