Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
M
mariadb
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Kirill Smelkov
mariadb
Commits
b5faccbb
Commit
b5faccbb
authored
Jul 23, 2003
by
dlenev@dlenev.mshome
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Fix security bug. mysqld server without ssl support was completly
ignorant about ssl_type attribute
parent
99aa453f
Changes
2
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
11 additions
and
4 deletions
+11
-4
BitKeeper/etc/logging_ok
BitKeeper/etc/logging_ok
+1
-0
sql/sql_acl.cc
sql/sql_acl.cc
+10
-4
No files found.
BitKeeper/etc/logging_ok
View file @
b5faccbb
...
...
@@ -20,6 +20,7 @@ bk@admin.bk
bk@mysql.r18.ru
carsten@tsort.bitbybit.dk
davida@isil.mysql.com
dlenev@mysql.com
gluh@gluh.(none)
gluh@gluh.mysql.r18.ru
greg@mysql.com
...
...
sql/sql_acl.cc
View file @
b5faccbb
...
...
@@ -590,7 +590,6 @@ ulong acl_getroot(THD *thd, const char *host, const char *ip, const char *user,
/* OK. User found and password checked continue validation */
#ifdef HAVE_OPENSSL
{
Vio
*
vio
=
thd
->
net
.
vio
;
/*
...
...
@@ -604,6 +603,7 @@ ulong acl_getroot(THD *thd, const char *host, const char *ip, const char *user,
case
SSL_TYPE_NONE
:
/* SSL is not required to connect */
user_access
=
acl_user
->
access
;
break
;
#ifdef HAVE_OPENSSL
case
SSL_TYPE_ANY
:
/* Any kind of SSL is good enough */
if
(
vio_type
(
vio
)
==
VIO_TYPE_SSL
)
user_access
=
acl_user
->
access
;
...
...
@@ -686,11 +686,17 @@ ulong acl_getroot(THD *thd, const char *host, const char *ip, const char *user,
free
(
ptr
);
}
break
;
}
}
#else
/* HAVE_OPENSSL */
user_access
=
acl_user
->
access
;
default:
/*
If we don't have SSL but SSL is required for this user the
authentication should fail.
*/
break
;
#endif
/* HAVE_OPENSSL */
}
}
*
mqh
=
acl_user
->
user_resource
;
if
(
!
acl_user
->
user
)
*
priv_user
=
(
char
*
)
""
;
// Change to anonymous user /* purecov: inspected */
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment