MySQL  8.0.20
Source Code Documentation
sslopt-longopts.h
Go to the documentation of this file.
1 /* Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
2 
3  This program is free software; you can redistribute it and/or modify
4  it under the terms of the GNU General Public License, version 2.0,
5  as published by the Free Software Foundation.
6 
7  This program is also distributed with certain software (including
8  but not limited to OpenSSL) that is licensed under separate terms,
9  as designated in a particular file or component or in included license
10  documentation. The authors of MySQL hereby grant you an additional
11  permission to link the program and your derivative works with the
12  separately licensed software that they have included with MySQL.
13 
14  This program is distributed in the hope that it will be useful,
15  but WITHOUT ANY WARRANTY; without even the implied warranty of
16  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17  GNU General Public License, version 2.0, for more details.
18 
19  You should have received a copy of the GNU General Public License
20  along with this program; if not, write to the Free Software
21  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA */
22 
23 /**
24  @file include/sslopt-longopts.h
25 */
26 
27 #ifndef MYSQL_SERVER
28 {"ssl-mode",
30  "SSL connection mode.",
31  nullptr,
32  nullptr,
33  nullptr,
34  GET_STR,
36  0,
37  0,
38  0,
39  nullptr,
40  0,
41  nullptr},
42 #else
43 {"ssl",
45  "If set to ON, this option enforces that SSL is established before client "
46  "attempts to authenticate to the server. To disable client SSL capabilities "
47  "use --ssl=OFF.",
48  &opt_use_ssl,
49  &opt_use_ssl,
50  0,
51  GET_BOOL,
52  OPT_ARG,
53  1,
54  0,
55  0,
56  0,
57  0,
58  0},
59 #endif
60  {"ssl-ca",
61  OPT_SSL_CA,
62  "CA file in PEM format.",
63  &opt_ssl_ca,
64  &opt_ssl_ca,
65  nullptr,
66  GET_STR,
68  0,
69  0,
70  0,
71  nullptr,
72  0,
73  nullptr},
74  {"ssl-capath",
76  "CA directory.",
79  nullptr,
80  GET_STR,
82  0,
83  0,
84  0,
85  nullptr,
86  0,
87  nullptr},
88  {"ssl-cert",
90  "X509 cert in PEM format.",
91  &opt_ssl_cert,
92  &opt_ssl_cert,
93  nullptr,
94  GET_STR,
96  0,
97  0,
98  0,
99  nullptr,
100  0,
101  nullptr},
102  {"ssl-cipher",
104  "SSL cipher to use.",
107  nullptr,
108  GET_STR,
109  REQUIRED_ARG,
110  0,
111  0,
112  0,
113  nullptr,
114  0,
115  nullptr},
116  {"ssl-key",
117  OPT_SSL_KEY,
118  "X509 key in PEM format.",
119  &opt_ssl_key,
120  &opt_ssl_key,
121  nullptr,
122  GET_STR,
123  REQUIRED_ARG,
124  0,
125  0,
126  0,
127  nullptr,
128  0,
129  nullptr},
130  {"ssl-crl",
131  OPT_SSL_CRL,
132  "Certificate revocation list.",
133  &opt_ssl_crl,
134  &opt_ssl_crl,
135  nullptr,
136  GET_STR,
137  REQUIRED_ARG,
138  0,
139  0,
140  0,
141  nullptr,
142  0,
143  nullptr},
144  {"ssl-crlpath",
146  "Certificate revocation list path.",
149  nullptr,
150  GET_STR,
151  REQUIRED_ARG,
152  0,
153  0,
154  0,
155  nullptr,
156  0,
157  nullptr},
158  {"tls-version",
160  "TLS version to use, "
161  "permitted values are: TLSv1, TLSv1.1, TLSv1.2, TLSv1.3",
164  nullptr,
165  GET_STR,
166  REQUIRED_ARG,
167  0,
168  0,
169  0,
170  nullptr,
171  0,
172  nullptr},
173  {"ssl-fips-mode",
175  "SSL FIPS mode (applies only for OpenSSL); "
176  "permitted values are: OFF, ON, STRICT",
177  nullptr,
178  nullptr,
179  nullptr,
180  GET_STR,
181  REQUIRED_ARG,
182  0,
183  0,
184  0,
185  nullptr,
186  0,
187  nullptr},
188  {"tls-ciphersuites",
190  "TLS v1.3 cipher to use.",
193  nullptr,
194  GET_STR,
195  REQUIRED_ARG,
196  0,
197  0,
198  0,
199  nullptr,
200  0,
201  nullptr},
static char * opt_ssl_crl
Definition: sslopt-vars.h:68
Definition: client_priv.h:159
Definition: client_priv.h:173
#define GET_STR
Definition: my_getopt.h:49
static char * opt_ssl_crlpath
Definition: sslopt-vars.h:69
Definition: client_priv.h:74
Definition: client_priv.h:73
static char * opt_ssl_cipher
Definition: sslopt-vars.h:65
Definition: client_priv.h:78
bool opt_use_ssl
Definition: mysqld.cc:1691
Definition: client_priv.h:77
Definition: client_priv.h:160
Definition: client_priv.h:174
Definition: client_priv.h:75
static char * opt_ssl_ca
Definition: sslopt-vars.h:62
static char * opt_ssl_key
Definition: sslopt-vars.h:67
Definition: my_getopt.h:78
Definition: client_priv.h:76
Definition: client_priv.h:170
static char * opt_ssl_capath
Definition: sslopt-vars.h:63
Definition: my_getopt.h:78
Definition: client_priv.h:171
#define GET_BOOL
Definition: my_getopt.h:42
static char * opt_ssl_cert
Definition: sslopt-vars.h:64
static char * opt_tls_version
Definition: sslopt-vars.h:70
static char * opt_tls_ciphersuites
Definition: sslopt-vars.h:66