1. 17 Jun, 2019 10 commits
    • Sergei Golubchik's avatar
      compilation failure on ppc with -DCMAKE_BUILD_TYPE=Debug · 13e8f728
      Sergei Golubchik authored
      if ${CRC32_LIBRARY} target has no COMPILE_FLAGS yet,
      GET_TARGET_PROPERTY returns COMPILE_FLAGS-NOTFOUND, which
      doesn't work very well when it's later fed back into COMPILE_FLAGS.
      
      GET_PROPERTY() returns an empty string in this case.
      13e8f728
    • Sergei Golubchik's avatar
      C/C · 09332120
      Sergei Golubchik authored
      09332120
    • Sergei Golubchik's avatar
      MDEV-15526 SysV init service deployed file '/etc/init.d/mysql' prevents... · a4cc6fb9
      Sergei Golubchik authored
      MDEV-15526 SysV init service deployed file '/etc/init.d/mysql' prevents systemctl disable command to work correctly (mariadb|mysql naming support) (debian/ubuntu)
      
      mariadb service is controlled by systemd
      
      Do not install SysV init script on Debian/Ubuntu in /etc/init.d/
      put it in /usr/share/mysql in case the user would need it for something.
      
      Use systemctl in pre/post scripts directly
      without funky conditionals and wrapper scripts
      a4cc6fb9
    • Sergei Golubchik's avatar
      MDEV-14735 better matching order for grants · 0a43df4f
      Sergei Golubchik authored
      fixes
      MDEV-14732 mysql.db privileges evaluated on order of grants rather than hierarchically
      MDEV-8269 Correct fix for Bug #20181776 :- ACCESS CONTROL DOESN'T MATCH MOST SPECIFIC HOST WHEN IT CONTAINS WILDCARD
      
      reimplement the old ad hoc get_sort() function to use a wildcard
      pattern ordering logic that works correctly in may be all practical cases.
      
      get_sort() is renamed to catch merge errors at compilation time.
      moved to a separate included file, because of a long comment.
      0a43df4f
    • Sergei Golubchik's avatar
      bugfix: PROXY privilege matched usernames incorrectly · fd00c449
      Sergei Golubchik authored
      username can be empty, meaning anybody, or must match literally.
      only db and host names are matched with wildcards.
      fd00c449
    • Georg Richter's avatar
      MDEV-14101 Provide an option to select TLS protocol version · d1308013
      Georg Richter authored
      Server and command line tools now support option --tls_version to specify the
      TLS version between client and server. Valid values are TLSv1.0, TLSv1.1, TLSv1.2, TLSv1.3
      or a combination of them. E.g.
      
      --tls_version=TLSv1.3
      --tls_version=TLSv1.2,TLSv1.3
      
      In case there is a gap between versions, the lowest version will be used:
      --tls_version=TLSv1.1,TLSv1.3 -> Only TLSv1.1 will be available.
      
      If the used TLS library doesn't support the specified TLS version, it will use
      the default configuration.
      
      Limitations:
      
      SSLv3 is not supported. The default configuration doesn't support TLSv1.0 anymore.
      TLSv1.3 protocol currently is only supported by OpenSSL 1.1.0 (client and server) and
      GnuTLS 3.6.5 (client only).
      
      Overview of TLS implementations and protocols
      
      Server:
      
      +-----------+-----------------------------------------+
      | Library   | Supported TLS versions                  |
      +-----------+-----------------------------------------+
      | WolfSSL   | TLSv1.1, TLSv1,2                        |
      +-----------+-----------------------------------------+
      | OpenSSL   | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3    |
      +-----------+-----------------------------------------+
      | LibreSSL  | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3    |
      +-----------+-----------------------------------------+
      
      Client (MariaDB Connector/C)
      +-----------+-----------------------------------------+
      | Library   | Supported TLS versions                  |
      +-----------+-----------------------------------------+
      | GnuTLS    | (TLSv1.0), TLSv1.1, TLSv1.2, TLSv1.3    |
      +-----------+-----------------------------------------+
      | Schannel  | (TLSv1.0), TLSv1.1, TLSv1.2             |
      +-----------+-----------------------------------------+
      | OpenSSL   | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3    |
      +-----------+-----------------------------------------+
      | LibreSSL  | (TLSv1.0), TLSv1.1, TLSv1,2, TLSv1.3    |
      +-----------+-----------------------------------------+
      d1308013
    • Sergei Golubchik's avatar
      MDEV-19765 Bug in CMakeLists.txt introduced by MDEV-11670 · 379ffc6e
      Sergei Golubchik authored
      fix a typo
      
      followup for 6e5c2466
      379ffc6e
    • Sergei Golubchik's avatar
      fix versioning.simple for embedded · b3f3b3ea
      Sergei Golubchik authored
      b3f3b3ea
    • Sergei Golubchik's avatar
      fix tests, failing after daf333ab · 7ad1e4a5
      Sergei Golubchik authored
      7ad1e4a5
    • Michael Widenius's avatar
      Rename of stat table tried to rename open table. · daf333ab
      Michael Widenius authored
      When compiling with -DEXTRA_DEBUG and run main.stat_tables_missing
      on go the warning:
      Warning:  Table: ./mysql/column_stats is open on rename old_table
      
      This happened because rename_table_in_stat_tables() re-open the
      table that was to be renamed.
      Fixed by moving update of stat tables after all renames has been made.
      daf333ab
  2. 15 Jun, 2019 1 commit
  3. 14 Jun, 2019 18 commits
  4. 13 Jun, 2019 3 commits
  5. 12 Jun, 2019 8 commits
    • Oleksandr Byelkin's avatar
      Merge branch '5.5' into 10.1 · 5b65d61d
      Oleksandr Byelkin authored
      5b65d61d
    • Marko Mäkelä's avatar
      Clean up the test innodb.innodb-64k-crash · 06be8cd3
      Marko Mäkelä authored
      Before killing the server, ensure that the incomplete state of
      the transaction will be made durable and will be applied and
      rolled back on recovery, so that each time, roughly the same
      amount of work will be done.
      
      Remove DML statements after the recovery, and execute
      CHECK TABLE instead.
      06be8cd3
    • Marko Mäkelä's avatar
      Merge 10.1 into 10.2 · 1d31bed2
      Marko Mäkelä authored
      1d31bed2
    • Marko Mäkelä's avatar
      MDEV-16111 encryption.innodb_lotoftables failed in buildbot with wrong result · 56c60b2f
      Marko Mäkelä authored
      Remove the test, because it easily fails with a result difference.
      Analysis by Thirunarayanan Balathandayuthapani:
      
      By default, innodb_encrypt_tables=0.
      1) Test case creates 100 tables in innodb_encrypt_1.
      2) creates another 100 unencrypted tables (encryption=off) in innodb_encrypt_2
      3) creates another 100 encrypted tables (encryption=on) in innodb_encrypt_3
      4) enabling innodb_encrypt_tables=1 and checking that only
      100 encrypted tables exist. (already we have 100 in dictionary)
      5) opening all tables again (no idea why)
      6) After that, set innodb_encrypt_tables=0 and wait for 100 tables
      to be decrypted (already we have 100 unencrypted tables)
      7) dropping all databases
      
      Sporadic failure happens because after step 4, it could encrypt the
      normal table too, because innodb_encryption_threads=4.
      
      This test was added in MDEV-9931, which was about InnoDB startup being
      slow due to all .ibd files being opened. There have been a number of
      later fixes to this problem. Currently the latest one is
      commit cad56fba, in which some tests
      (in particular the test innodb.alter_kill) could fail if all InnoDB
      .ibd files are read during startup. That could make this test redundant.
      
      Let us remove the test, because it is big, slow, unreliable, and
      does not seem to reliably catch the problem that all files are being
      read on InnoDB startup.
      56c60b2f
    • Marko Mäkelä's avatar
      Merge 10.1 into 10.2 · 90fec960
      Marko Mäkelä authored
      90fec960
    • Marko Mäkelä's avatar
      MDEV-19740: Remove some broken InnoDB systemd code · 94e66559
      Marko Mäkelä authored
      GCC 9.1.1 noticed that sd_notifyf() was always being invoked with
      str=NULL argument for "%s". This code was added in
      commit 2e814d47
      but not mentioned in the commit comment.
      
      The STATUS messages for systemd matter during startup and shutdown,
      and should not be emitted during normal operation.
      
      ib_senderrf(): Remove the potentially harmful sd_notifyf() calls.
      94e66559
    • Kentoku SHIBA's avatar
      8e3a4be4
    • sjaakola's avatar
      MDEV-19563 Removed references to deprecated option innodb_locks_unsafe_for_binlog · efc3cb93
      sjaakola authored
      innodb_locks_unsafe_for_binlog variabe removed from wsrep_info test configuration and
      recommendation to use this variable in README-wsrep was removed as well
      
      Also relates to issue: MDEV-19544
      efc3cb93