mirror/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-01-15 19:42:28 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
MariaDB server is a community developed fork of MySQL server. Started by core members of the original MySQL team, MariaDB actively works with outside developers to deliver the most featureful, stable, and sanely licensed open SQL server in the industry.
200051 commits 2773 branches 343 tags 1.6 GiB
MariaDB\ 71.8%
C++ 16.2%
C 10.6%
Shell 0.5%
Perl 0.4%
Other 0.3%
Find a file
Sergei Golubchik 1ef1bab99e MDEV-31855 validate ssl certificates using client password 
if the client enabled --ssl-verify-server-cert, then
the server certificate is verified as follows:

* if --ssl-ca or --ssl-capath were specified, the cert must have
  a proper signature by the specified CA (or CA in the path)
  and the cert's hostname must match the server's hostname.
  If the cert isn't signed or a hostname is wrong - the
  connection is aborted.

* if MARIADB_OPT_TLS_PEER_FP was used and the fingerprint matches,
  the connection is allowed, if it doesn't match - aborted.

* If the connection uses unix socket or named pipes - it's allowed.
  (consistent with server's --require-secure-transport behavior)

otherwise the cert is still in doubt, we don't know if we can trust
it or there's an active MitM in progress.

* If the user has provided no password or the server requested an
  authentication plugin that sends the password in cleartext -
  the connection is aborted.

* Perform the authentication. If the server accepts the password,
  it'll send SHA2(scramble || password hash || cert fingerprint)
  with the OK packet.

* Verify the SHA2 digest, if it matches - the connection is allowed,
  otherwise it's aborted.
2024-02-04 22:18:55 +01:00
.github Explicitly recommend target branches in CODING_STANDARDS 2023-12-14 16:32:42 +00:00
BUILD Merge branch '10.5' into 10.6 2023-12-17 11:20:43 +01:00
client cleanup: unify client's setting of ssl options 2024-02-03 11:25:13 +01:00
cmake MDEV-33096 mysys/my_timezone.cc does not compile on AIX 2023-12-22 13:17:55 +01:00
dbug Merge 10.6 into 10.8 2023-02-10 13:43:53 +02:00
debian MDEV-31855 validate ssl certificates using client password 2024-02-04 22:18:55 +01:00
Docs Fixed some typos in optimizer_costs.txt 2023-03-28 18:41:09 +11:00
extra Merge 11.2 into 11.3 2024-01-05 14:20:35 +02:00
include MDEV-31855 validate ssl certificates using client password 2024-02-04 22:18:55 +01:00
libmariadb@fcef411ecb MDEV-31855 validate ssl certificates using client password 2024-02-04 22:18:55 +01:00
libmysqld MDEV-4991: GTID binlog indexing 2024-01-27 12:09:54 +01:00
libservices Merge branch '10.4' into 10.5 2023-12-02 01:02:50 +01:00
man Merge branch '11.0' into 11.1 2023-11-08 18:03:08 +01:00
mysql-test MDEV-31855 validate ssl certificates using client password 2024-02-04 22:18:55 +01:00
mysys MDEV-33096 mysys/my_timezone.cc does not compile on AIX 2023-12-22 13:17:55 +01:00
mysys_ssl Merge branch '10.4' into 10.5 2023-08-01 11:52:13 +02:00
plugin test.cnf files should !include default_my.cnf 2024-02-03 11:22:20 +01:00
randgen/conf
scripts Update 11.4 HELP 2024-01-23 20:51:35 +11:00
sql MDEV-31855 validate ssl certificates using client password 2024-02-04 22:18:55 +01:00
sql-bench Updated sql-bench to run with PostgreSQL 14.9 2023-09-09 15:14:45 +03:00
sql-common Merge branch '10.5' into 10.6 2023-12-17 11:20:43 +01:00
storage cleanup: octet2hex takes an uchar* argument 2024-02-03 11:22:21 +01:00
strings MDEV-30879 Add support for up to BASE 62 to CONV() 2024-01-17 15:24:26 +00:00
support-files Merge remote-tracking branch '11.3' into 11.4 2023-12-21 15:40:55 +01:00
tests Merge branch '11.1' into 11.2 2023-12-20 23:43:05 +01:00
tpool Merge 10.6 into 10.11 2023-11-22 18:14:11 +02:00
unittest Merge remote-tracking branch '11.3' into 11.4 2023-12-21 15:40:55 +01:00
vio Fix trivial spelling errors 2023-03-24 12:54:05 +11:00
win Merge 11.2 into 11.3 2024-01-05 14:20:35 +02:00
wsrep-lib@a5d95f0175 galera: wsrep-lib submodule update 2023-11-21 08:02:23 +01:00
zlib Merge branch 'zlib v1.3' into 10.4 2023-10-18 20:39:48 +02:00
.clang-format
.gitattributes Merge branch '10.5' into 10.6 2022-02-03 17:01:31 +01:00
.gitignore gitignore scripts/mariadb_sys_schema.sql 2024-02-03 11:22:20 +01:00
.gitlab-ci.yml Merge branch '11.1' into 11.2 2023-08-18 00:59:16 +02:00
.gitmodules Merge remote-tracking branch '10.4' into 10.5 2023-03-31 21:32:41 +02:00
appveyor.yml Merge 10.5 into 10.6 2022-07-27 17:52:37 +03:00
BUILD-CMAKE
CMakeLists.txt Merge 10.11 into 11.0 2023-10-19 08:12:16 +03:00
CODING_STANDARDS.md Explicitly recommend target branches in CODING_STANDARDS 2023-12-14 16:32:42 +00:00
config.h.cmake MDEV-33096 mysys/my_timezone.cc does not compile on AIX 2023-12-22 13:17:55 +01:00
configure.cmake MDEV-33096 mysys/my_timezone.cc does not compile on AIX 2023-12-22 13:17:55 +01:00
CONTRIBUTING.md Add CODING_STANDARDS.md file 2023-02-03 15:47:17 +11:00
COPYING
CREDITS CREDITS: re-instate Tencent Cloud 2023-01-25 16:44:26 +11:00
INSTALL-SOURCE
INSTALL-WIN-SOURCE
KNOWN_BUGS.txt
README.md Update README.md 2023-06-05 08:28:06 +10:00
SECURITY.md Create SECURITY.md 2023-06-05 08:28:06 +10:00
THIRDPARTY MDEV-27009: Add UCA-14.0.0 collations - License 2023-04-17 17:06:18 +10:00
VERSION bump the VERSION 2023-11-23 14:35:34 +01:00

README.md

Code status:

  • Appveyor CI status ci.appveyor.com

MariaDB: The open source relational database

MariaDB was designed as a drop-in replacement of MySQL(R) with more features, new storage engines, fewer bugs, and better performance.

MariaDB is brought to you by the MariaDB Foundation and the MariaDB Corporation. Please read the CREDITS file for details about the MariaDB Foundation, and who is developing MariaDB.

MariaDB is developed by many of the original developers of MySQL who now work for the MariaDB Corporation, the MariaDB Foundation and by many people in the community.

MySQL, which is the base of MariaDB, is a product and trademark of Oracle Corporation, Inc. For a list of developers and other contributors, see the Credits appendix. You can also run 'SHOW authors' to get a list of active contributors.

A description of the MariaDB project and a manual can be found at:

https://mariadb.org

https://mariadb.com/kb/en/

https://mariadb.com/kb/en/mariadb-vs-mysql-features/

https://mariadb.com/kb/en/mariadb-versus-mysql-compatibility/

https://mariadb.com/kb/en/new-and-old-releases/

Help

More help is available from the Maria Discuss mailing list https://launchpad.net/~maria-discuss, MariaDB's Zulip instance, https://mariadb.zulipchat.com/

Live QA for beginner contributors

MariaDB has a dedicated time each week when we answer new contributor questions live on Zulip. From 8:00 to 10:00 UTC on Mondays, and 10:00 to 12:00 UTC on Thursdays, anyone can ask any questions theyd like, and a live developer will be available to assist.

New contributors can ask questions any time, but we will provide immediate feedback during that interval.

Licensing

NOTE:

MariaDB is specifically available only under version 2 of the GNU General Public License (GPLv2). (I.e. Without the "any later version" clause.) This is inherited from MySQL. Please see the README file in the MySQL distribution for more information.

License information can be found in the COPYING file. Third party license information can be found in the THIRDPARTY file.

Bug Reports

Bug and/or error reports regarding MariaDB should be submitted at: https://jira.mariadb.org

For reporting security vulnerabilities, see our security-policy.

The code for MariaDB, including all revision history, can be found at: https://github.com/MariaDB/server