Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-19475

Add support for OpenSSL configuration files

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Fix Version/s: None
    • Component/s: SSL
    • Labels:
      None

      Description

      OpenSSL allows applications to load OpenSSL configuration files:

      https://www.openssl.org/docs/man1.1.1/man3/OPENSSL_config.html

      https://www.openssl.org/docs/man1.1.1/man3/CONF_modules_load_file.html

      https://www.openssl.org/docs/man1.1.1/man5/config.html

      https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/security_guide/sec-using_openssl#sec-Configuring_OpenSSL

      There could be some benefits to changing MariaDB server, so that it supports the ability to load an OpenSSL configuration file.

      For example, since MDEV-14101 is not implemented, the server can't currently be restricted to a specific TLS protocol version. An OpenSSL configuration file would allow users a way to work around that.

      It also allows users the ability to configure algorithms used by OpenSSL.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned
              Reporter:
              GeoffMontee Geoff Montee
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated: