MySQL 8.0.40
Source Code Documentation
sslopt-longopts.h
Go to the documentation of this file.
1/* Copyright (c) 2000, 2024, Oracle and/or its affiliates.
2
3 This program is free software; you can redistribute it and/or modify
4 it under the terms of the GNU General Public License, version 2.0,
5 as published by the Free Software Foundation.
6
7 This program is designed to work with certain software (including
8 but not limited to OpenSSL) that is licensed under separate terms,
9 as designated in a particular file or component or in included license
10 documentation. The authors of MySQL hereby grant you an additional
11 permission to link the program and your derivative works with the
12 separately licensed software that they have either included with
13 the program or referenced in the documentation.
14
15 This program is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18 GNU General Public License, version 2.0, for more details.
19
20 You should have received a copy of the GNU General Public License
21 along with this program; if not, write to the Free Software
22 Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA */
23
24/**
25 @file include/sslopt-longopts.h
26*/
27
28#ifndef MYSQL_SERVER
29{"ssl-mode",
31 "SSL connection mode.",
32 nullptr,
33 nullptr,
34 nullptr,
35 GET_STR,
37 0,
38 0,
39 0,
40 nullptr,
41 0,
42 nullptr},
43#else
44{"ssl",
46 "If set to ON, this option enforces that SSL is established before client "
47 "attempts to authenticate to the server. To disable client SSL capabilities "
48 "use --ssl=OFF.",
51 0,
53 OPT_ARG,
54 1,
55 0,
56 0,
57 0,
58 0,
59 0},
60#endif
61 {"ssl-ca",
63 "CA file in PEM format.",
66 nullptr,
67 GET_STR,
69 0,
70 0,
71 0,
72 nullptr,
73 0,
74 nullptr},
75 {"ssl-capath",
77 "CA directory.",
80 nullptr,
81 GET_STR,
83 0,
84 0,
85 0,
86 nullptr,
87 0,
88 nullptr},
89 {"ssl-cert",
91 "X509 cert in PEM format.",
94 nullptr,
95 GET_STR,
97 0,
98 0,
99 0,
100 nullptr,
101 0,
102 nullptr},
103 {"ssl-cipher",
105 "SSL cipher to use.",
108 nullptr,
109 GET_STR,
111 0,
112 0,
113 0,
114 nullptr,
115 0,
116 nullptr},
117 {"ssl-key",
119 "X509 key in PEM format.",
122 nullptr,
123 GET_STR,
125 0,
126 0,
127 0,
128 nullptr,
129 0,
130 nullptr},
131 {"ssl-crl",
133 "Certificate revocation list.",
136 nullptr,
137 GET_STR,
139 0,
140 0,
141 0,
142 nullptr,
143 0,
144 nullptr},
145 {"ssl-crlpath",
147 "Certificate revocation list path.",
150 nullptr,
151 GET_STR,
153 0,
154 0,
155 0,
156 nullptr,
157 0,
158 nullptr},
159 {"tls-version",
161 "TLS version to use, "
162#ifdef HAVE_TLSv13
163 "permitted values are: TLSv1.2, TLSv1.3",
164#else
165 "permitted values are: TLSv1.2",
166#endif
169 nullptr,
170 GET_STR,
172 0,
173 0,
174 0,
175 nullptr,
176 0,
177 nullptr},
178 {"ssl-fips-mode",
180 "SSL FIPS mode (applies only for OpenSSL); "
181 "permitted values are: OFF, ON, STRICT",
182 nullptr,
183 nullptr,
184 nullptr,
185 GET_STR,
187 0,
188 0,
189 0,
190 nullptr,
191 0,
192 nullptr},
193 {"tls-ciphersuites",
195 "TLS v1.3 cipher to use.",
198 nullptr,
199 GET_STR,
201 0,
202 0,
203 0,
204 nullptr,
205 0,
206 nullptr},
207 {"ssl-session-data",
209 "Session data file to use to enable ssl session reuse",
212 nullptr,
213 GET_STR,
215 0,
216 0,
217 0,
218 nullptr,
219 0,
220 nullptr},
221 {"ssl-session-data-continue-on-failed-reuse",
223 "If set to ON, this option will allow connection to succeed even if "
224 "session data cannot be reused.",
227 nullptr,
228 GET_BOOL,
229 OPT_ARG,
230 0,
231 0,
232 0,
233 nullptr,
234 0,
235 nullptr},
@ OPT_SSL_CIPHER
Definition: client_priv.h:79
@ OPT_SSL_CRL
Definition: client_priv.h:160
@ OPT_SSL_CERT
Definition: client_priv.h:76
@ OPT_SSL_SSL
Definition: client_priv.h:74
@ OPT_TLS_CIPHERSUITES
Definition: client_priv.h:175
@ OPT_TLS_VERSION
Definition: client_priv.h:171
@ OPT_SSL_SESSION_DATA
Definition: client_priv.h:184
@ OPT_SSL_CRLPATH
Definition: client_priv.h:161
@ OPT_SSL_MODE
Definition: client_priv.h:172
@ OPT_SSL_CAPATH
Definition: client_priv.h:78
@ OPT_SSL_FIPS_MODE
Definition: client_priv.h:174
@ OPT_SSL_KEY
Definition: client_priv.h:75
@ OPT_SSL_CA
Definition: client_priv.h:77
@ OPT_SSL_SESSION_DATA_CONTINUE_ON_FAILED_REUSE
Definition: client_priv.h:185
@ OPT_ARG
Definition: my_getopt.h:81
@ REQUIRED_ARG
Definition: my_getopt.h:81
#define GET_STR
Definition: my_getopt.h:52
#define GET_BOOL
Definition: my_getopt.h:45
bool opt_use_ssl
Definition: mysqld.cc:1957
static char * opt_ssl_session_data
Definition: sslopt-vars.h:67
static bool opt_ssl_session_data_continue_on_failed_reuse
Definition: sslopt-vars.h:68
static char * opt_ssl_cipher
Definition: sslopt-vars.h:59
static char * opt_ssl_ca
Definition: sslopt-vars.h:56
static char * opt_tls_version
Definition: sslopt-vars.h:64
static char * opt_ssl_capath
Definition: sslopt-vars.h:57
static char * opt_ssl_crlpath
Definition: sslopt-vars.h:63
static char * opt_tls_ciphersuites
Definition: sslopt-vars.h:60
static char * opt_ssl_cert
Definition: sslopt-vars.h:58
static char * opt_ssl_crl
Definition: sslopt-vars.h:62
static char * opt_ssl_key
Definition: sslopt-vars.h:61