Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-31856

use ephemeral ssl certificates

Details

    Description

      Enable SSL in the server by default.

      Implement ephemeral ssl certificates — if SSL is enabled but no certificates are provided by the user, let the server generate certificates in memory and use them.

      FLUSH SSL should either regenerate them or simply fail or do nothing.

      Attachments

        Issue Links

          blocks

          New Feature - A new feature of the product, which has yet to be developed. MDEV-31857 enable --ssl-verify-server-cert by default

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          causes

          Bug - A problem which impairs or prevents the functions of the product. MDEV-32210 Ephemeral certificate missing DN

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-32229 Memory leaks while using ephemeral certificates

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-33430 Command line client error ERROR 2026 (HY000): TLS/SSL error: Server certificate validation failed. A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. Error 0x800B0109(CERT_E_UNTRUSTEDROOT)

          • Blocker - Blocks development and/or testing work, production could not run.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-33592 Self-signed certificates are x509 Version 1, which are rejected by some TLS libraries

          • Blocker - Blocks development and/or testing work, production could not run.
          • Closed
          is blocked by

          New Feature - A new feature of the product, which has yet to be developed. MDEV-31855 validate ssl certificates using client password

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. MDEV-33482 WolfSSL's math is unnecessarily slow

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-34372 Starting MariaDB failed with illegal instruction in WolfSSL

          • Major - Major loss of function.
          • Closed

          Activity

            Transition Time In Source Status Execution Times
            Sergei Golubchik made transition -
            Open In Progress
            		18d 1h 10m 1
            Sergei Golubchik made transition -
            In Progress Stalled
            		2s 1
            Sergei Golubchik made transition -
            Stalled In Review
            		15d 20h 28m 1
            Oleksandr Byelkin made transition -
            In Review Stalled
            		3d 21h 11m 1
            Sergei Golubchik made transition -
            Stalled In Testing
            		7d 1h 49m 1
            Lena Startseva made transition -
            In Testing Stalled
            		126d 2h 5m 1
            Sergei Golubchik made transition -
            Stalled Closed
            		12d 18h 43m 1

            People

              serg Sergei Golubchik
              serg Sergei Golubchik
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.