mariadb

database/mariadb

Fork 0

mirror of https://github.com/MariaDB/server.git synced 2025-07-24 19:42:23 +03:00

Commit Graph

Author	SHA1	Message	Date
Oleksandr Byelkin	c770bce898	Merge branch '11.2' into 11.4	2024-10-30 15:11:17 +01:00
Sergei Golubchik	66f14ef6a1	update C/C 3.4 note that: * unit.conc_tls is broken in mtr * schannel now doesn't fail on invalid ca path unless --ssl-verify-server-cert is used. openssl still does.	2024-08-04 17:28:08 +02:00
Sergei Golubchik	bac0f8999d	client support for --ssl-fp and --ssl--fplist implement --ssl-fp and --ssl-fplist for all clients. --ssl-fp takes one certificate fingerprint, for example, 00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF:00:11:22:33 --ssl-fplist takes a path to a file with one fingerprint per line. if the server's certificate fingerprint matches ssl-fp or is found in the file - the certificate is considered verified. If the fingerprint is specified but doesn't match - the connection is aborted independently from the --ssl-verify-server-cert	2024-02-04 22:19:00 +01:00

Author

SHA1

Message

Date

Oleksandr Byelkin

c770bce898

Merge branch '11.2' into 11.4

2024-10-30 15:11:17 +01:00

Sergei Golubchik

66f14ef6a1

update C/C 3.4

note that:
* unit.conc_tls is broken in mtr
* schannel now doesn't fail on invalid ca path unless
  --ssl-verify-server-cert is used. openssl still does.

2024-08-04 17:28:08 +02:00

Sergei Golubchik

bac0f8999d

client support for --ssl-fp and --ssl--fplist

implement --ssl-fp and --ssl-fplist for all clients.
--ssl-fp takes one certificate fingerprint, for example,
00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF:00:11:22:33

--ssl-fplist takes a path to a file with one fingerprint per line.

if the server's certificate fingerprint matches ssl-fp or is found
in the file - the certificate is considered verified.
If the fingerprint is specified but doesn't match - the connection
is aborted independently from the --ssl-verify-server-cert

2024-02-04 22:19:00 +01:00

3 Commits