mirror of
https://github.com/MariaDB/server.git
synced 2025-11-28 17:36:30 +03:00
d13080133f
Server and command line tools now support option --tls_version to specify the TLS version between client and server. Valid values are TLSv1.0, TLSv1.1, TLSv1.2, TLSv1.3 or a combination of them. E.g. --tls_version=TLSv1.3 --tls_version=TLSv1.2,TLSv1.3 In case there is a gap between versions, the lowest version will be used: --tls_version=TLSv1.1,TLSv1.3 -> Only TLSv1.1 will be available. If the used TLS library doesn't support the specified TLS version, it will use the default configuration. Limitations: SSLv3 is not supported. The default configuration doesn't support TLSv1.0 anymore. TLSv1.3 protocol currently is only supported by OpenSSL 1.1.0 (client and server) and GnuTLS 3.6.5 (client only). Overview of TLS implementations and protocols Server: +-----------+-----------------------------------------+ | Library | Supported TLS versions | +-----------+-----------------------------------------+ | WolfSSL | TLSv1.1, TLSv1,2 | +-----------+-----------------------------------------+ | OpenSSL | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3 | +-----------+-----------------------------------------+ | LibreSSL | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3 | +-----------+-----------------------------------------+ Client (MariaDB Connector/C) +-----------+-----------------------------------------+ | Library | Supported TLS versions | +-----------+-----------------------------------------+ | GnuTLS | (TLSv1.0), TLSv1.1, TLSv1.2, TLSv1.3 | +-----------+-----------------------------------------+ | Schannel | (TLSv1.0), TLSv1.1, TLSv1.2 | +-----------+-----------------------------------------+ | OpenSSL | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3 | +-----------+-----------------------------------------+ | LibreSSL | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3 | +-----------+-----------------------------------------+
77 lines
2.6 KiB
PHP
77 lines
2.6 KiB
PHP
--source include/have_perfschema.inc
|
|
--source include/word_size.inc
|
|
--vertical_results
|
|
|
|
# need stable timestamp, because its current value is printed below
|
|
set time_zone='+00:00';
|
|
set timestamp=unix_timestamp('2014-09-01 13:40:23');
|
|
# ditto
|
|
set pseudo_thread_id=10;
|
|
# to show session != global, and doesn't affect global_value_origin
|
|
set sql_mode=ansi_quotes;
|
|
# global_value_origin=SQL
|
|
set global div_precision_increment=5;
|
|
|
|
--replace_regex /^\/\S+/PATH/
|
|
--replace_result $MASTER_MYPORT MASTER_MYPORT 392192 299008
|
|
select * from information_schema.system_variables
|
|
where variable_name not like 'aria%' and
|
|
variable_name not like 'debug%' and
|
|
variable_name not like 'wsrep%' and
|
|
variable_name not in (
|
|
'in_predicate_conversion_threshold',
|
|
'have_openssl',
|
|
'have_symlink',
|
|
'hostname',
|
|
'large_files_support', 'log_tc_size',
|
|
'lower_case_file_system',
|
|
'lower_case_table_names',
|
|
'open_files_limit',
|
|
'plugin_maturity',
|
|
'rand_seed1',
|
|
'rand_seed2',
|
|
'system_time_zone',
|
|
'tls_version',
|
|
'version_comment',
|
|
'version_source_revision',
|
|
'version_compile_machine', 'version_compile_os',
|
|
'version_malloc_library', 'version_ssl_library', 'version'
|
|
)
|
|
order by variable_name;
|
|
|
|
# now various metadata but no values, for variables where
|
|
# values change often
|
|
select VARIABLE_NAME, VARIABLE_SCOPE, VARIABLE_TYPE, VARIABLE_COMMENT,
|
|
NUMERIC_MIN_VALUE, NUMERIC_MAX_VALUE, NUMERIC_BLOCK_SIZE,
|
|
ENUM_VALUE_LIST, READ_ONLY, COMMAND_LINE_ARGUMENT
|
|
from information_schema.system_variables
|
|
where variable_name in (
|
|
'have_openssl',
|
|
'have_symlink',
|
|
'hostname',
|
|
'large_files_support',
|
|
'lower_case_file_system',
|
|
'lower_case_table_names',
|
|
'open_files_limit',
|
|
'rand_seed1',
|
|
'rand_seed2',
|
|
'system_time_zone',
|
|
'tls_version',
|
|
'version_comment',
|
|
'version_source_revision',
|
|
'version_compile_machine', 'version_compile_os',
|
|
'version_malloc_library', 'version_ssl_library', 'version'
|
|
)
|
|
order by variable_name;
|
|
|
|
# yet less data: no values, no blocks size, no min/max value.
|
|
select VARIABLE_NAME, GLOBAL_VALUE_ORIGIN, VARIABLE_SCOPE, VARIABLE_TYPE,
|
|
VARIABLE_COMMENT, ENUM_VALUE_LIST, READ_ONLY, COMMAND_LINE_ARGUMENT
|
|
from information_schema.system_variables
|
|
where variable_name in (
|
|
'log_tc_size'
|
|
)
|
|
order by variable_name;
|
|
|
|
set global div_precision_increment=default;
|