Mirrors
/
mariadb
mirror of https://github.com/MariaDB/server
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
89744 Commits
3263 Branches
1096 Tags
1.2 GiB
Tree: dbbe365132
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'dbbe365132'
${ noResults }
mariadb/mysql-test/t/openssl_6975.test

38 lines
1.5 KiB
Raw Normal View History

MDEV-6975 Implement TLS protocol change SSL methods to be SSLv23 (according to openssl manpage: "A TLS/SSL connection established with these methods may understand the SSLv2, SSLv3, TLSv1, TLSv1.1 and TLSv1.2 protocols") from TLSv1 methods, that go back to the initial SSL implementation in MySQL in 2001. OpenSSL default ciphers are different if TLSv1.2 is enabled, so tests need to take this into account.
11 years ago
  1. #
  2. # MDEV-6975 Implement TLS protocol
  3. #
  4. # test SSLv3 and TLSv1.2 ciphers when OpenSSL is restricted to SSLv3 or TLSv1.2
  5. #
  6. source include/have_ssl_communication.inc;
  8. # this is OpenSSL test.
  10. grant select on test.* to ssl_sslv3@localhost require cipher "RC4-SHA";
  11. grant select on test.* to ssl_tls12@localhost require cipher "AES128-SHA256";
  13. let $mysql=$MYSQL --ssl-key=$MYSQL_TEST_DIR/std_data/client-key.pem --ssl-cert=$MYSQL_TEST_DIR/std_data/client-cert.pem -e "SHOW STATUS LIKE 'ssl_Cipher'" 2>&1;
  15. disable_abort_on_error;
  16. echo TLS1.2 ciphers: user is ok with any cipher;
  17. exec $mysql --ssl-cipher=AES128-SHA256;
  18. exec $mysql --ssl-cipher=TLSv1.2;
  19. echo TLS1.2 ciphers: user requires SSLv3 cipher RC4-SHA;
  20. exec $mysql --user ssl_sslv3 --ssl-cipher=AES128-SHA256;
  21. exec $mysql --user ssl_sslv3 --ssl-cipher=TLSv1.2;
  22. echo TLS1.2 ciphers: user requires TLSv1.2 cipher AES128-SHA256;
  23. exec $mysql --user ssl_tls12 --ssl-cipher=AES128-SHA256;
  24. exec $mysql --user ssl_tls12 --ssl-cipher=TLSv1.2;
  26. echo SSLv3 ciphers: user is ok with any cipher;
  27. exec $mysql --ssl-cipher=RC4-SHA;
  28. exec $mysql --ssl-cipher=SSLv3;
  29. echo SSLv3 ciphers: user requires SSLv3 cipher RC4-SHA;
  30. exec $mysql --user ssl_sslv3 --ssl-cipher=RC4-SHA;
  31. exec $mysql --user ssl_sslv3 --ssl-cipher=SSLv3;
  32. echo SSLv3 ciphers: user requires TLSv1.2 cipher AES128-SHA256;
  33. exec $mysql --user ssl_tls12 --ssl-cipher=RC4-SHA;
  34. exec $mysql --user ssl_tls12 --ssl-cipher=SSLv3;
  36. drop user ssl_sslv3@localhost;
  37. drop user ssl_tls12@localhost;