diff options
| author | Julius Goryavsky <julius.goryavsky@mariadb.com> | 2020-03-02 23:46:07 +0100 |
|---|---|---|
| committer | Julius Goryavsky <julius.goryavsky@mariadb.com> | 2020-03-11 11:10:30 +0100 |
| commit | 3a5545bce607bab2449d3125a437d4519a49864e (patch) | |
| tree | 8268f31ef1d6223009c31749d1bff13e03d652ab /sql/mysqld.h | |
| parent | c12609dd9ed65b245cee2e8b379b1e1f15aadf6a (diff) | |
| download | mariadb-git-10.5-MDEV-13362.tar.gz | |
MDEV-13362: implement --require_secure_transport option10.5-MDEV-13362
Currently, if a user wants to require TLS for every connection made
over the network, then every user account on the system needs to be
created with "REQUIRE SSL" or one of the other TLS options.
Implementing a require_secure_transport system varuable (which,
in particular, can be set using the --require_secure_transport=ON
command line option) in the MariaDB Server would make it a lot
easier to require TLS (or other secure transport) system-wide.
This patch implements this new system variable, adds the ability
to set it with SQL statements, from the command line and from the
configuration file, and also contains improvements for mtr that allow
the user to establish non-secure TCP/IP connections (for example,
to verify the operation of the new option).
Diffstat (limited to 'sql/mysqld.h')
| -rw-r--r-- | sql/mysqld.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sql/mysqld.h b/sql/mysqld.h index 4f4e608e811..0e5ee8c856f 100644 --- a/sql/mysqld.h +++ b/sql/mysqld.h @@ -134,6 +134,7 @@ extern my_bool read_only, opt_readonly; extern MYSQL_PLUGIN_IMPORT my_bool lower_case_file_system; extern my_bool opt_enable_named_pipe, opt_sync_frm, opt_allow_suspicious_udfs; extern my_bool opt_secure_auth; +extern my_bool opt_require_secure_transport; extern const char *current_dbug_option; extern char* opt_secure_file_priv; extern char* opt_secure_backup_file_priv; |