mirror of
				https://github.com/MariaDB/server.git
				synced 2025-10-25 18:38:00 +03:00 
			
		
		
		
	- Small difference in output from 'X509_NAME_Oneline' between OpenSSL and yaSSL. OpenSSL uses an extension that allow's the email adress of the cert holder. - Imported patch for yaSSL "add email to DN output" extra/yassl/taocrypt/src/asn.cpp: Import patch yassl.diff mysql-test/r/openssl_1.result: Update result file mysql-test/t/openssl_1.test: Update test to include "emailAddress=" tag in the required SUBJECT for grant.
		
			
				
	
	
		
			54 lines
		
	
	
		
			2.2 KiB
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
			
		
		
	
	
			54 lines
		
	
	
		
			2.2 KiB
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
| drop table if exists t1;
 | |
| create table t1(f1 int);
 | |
| insert into t1 values (5);
 | |
| grant select on test.* to ssl_user1@localhost require SSL;
 | |
| grant select on test.* to ssl_user2@localhost require cipher "DHE-RSA-AES256-SHA";
 | |
| grant select on test.* to ssl_user3@localhost require cipher "DHE-RSA-AES256-SHA" AND SUBJECT "/C=SE/ST=Uppsala/L=Uppsala/O=MySQL AB/emailAddress=abstract.mysql.developer@mysql.com";
 | |
| grant select on test.* to ssl_user4@localhost require cipher "DHE-RSA-AES256-SHA" AND SUBJECT "/C=SE/ST=Uppsala/L=Uppsala/O=MySQL AB/emailAddress=abstract.mysql.developer@mysql.com" ISSUER "/C=SE/ST=Uppsala/L=Uppsala/O=MySQL AB";
 | |
| grant select on test.* to ssl_user5@localhost require cipher "DHE-RSA-AES256-SHA" AND SUBJECT "xxx";
 | |
| flush privileges;
 | |
| connect(localhost,ssl_user5,,test,MASTER_PORT,MASTER_SOCKET);
 | |
| ERROR 28000: Access denied for user 'ssl_user5'@'localhost' (using password: NO)
 | |
| SHOW STATUS LIKE 'Ssl_cipher';
 | |
| Variable_name	Value
 | |
| Ssl_cipher	DHE-RSA-AES256-SHA
 | |
| select * from t1;
 | |
| f1
 | |
| 5
 | |
| delete from t1;
 | |
| ERROR 42000: DELETE command denied to user 'ssl_user1'@'localhost' for table 't1'
 | |
| SHOW STATUS LIKE 'Ssl_cipher';
 | |
| Variable_name	Value
 | |
| Ssl_cipher	DHE-RSA-AES256-SHA
 | |
| select * from t1;
 | |
| f1
 | |
| 5
 | |
| delete from t1;
 | |
| ERROR 42000: DELETE command denied to user 'ssl_user2'@'localhost' for table 't1'
 | |
| SHOW STATUS LIKE 'Ssl_cipher';
 | |
| Variable_name	Value
 | |
| Ssl_cipher	DHE-RSA-AES256-SHA
 | |
| select * from t1;
 | |
| f1
 | |
| 5
 | |
| delete from t1;
 | |
| ERROR 42000: DELETE command denied to user 'ssl_user3'@'localhost' for table 't1'
 | |
| SHOW STATUS LIKE 'Ssl_cipher';
 | |
| Variable_name	Value
 | |
| Ssl_cipher	DHE-RSA-AES256-SHA
 | |
| select * from t1;
 | |
| f1
 | |
| 5
 | |
| delete from t1;
 | |
| ERROR 42000: DELETE command denied to user 'ssl_user4'@'localhost' for table 't1'
 | |
| drop user ssl_user1@localhost, ssl_user2@localhost,
 | |
| ssl_user3@localhost, ssl_user4@localhost, ssl_user5@localhost;
 | |
| drop table t1;
 | |
| mysqltest: Could not open connection 'default': 2026 SSL connection error
 | |
| mysqltest: Could not open connection 'default': 2026 SSL connection error
 | |
| mysqltest: Could not open connection 'default': 2026 SSL connection error
 | |
| SSL error: Unable to get private key from ''
 | |
| mysqltest: Could not open connection 'default': 2026 SSL connection error
 | |
| SSL error: Unable to get certificate from ''
 | |
| mysqltest: Could not open connection 'default': 2026 SSL connection error
 |