octoleo/gh-ost
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2c0aa36251
gh-ost/go/mysql
History
Rafe Kettler b4da7cfbfb Improve SSL support 
Related issue: https://github.com/github/gh-ost/issues/521

 - Add --ssl-cert and --ssl-key options to specify SSL public/private
   key files
 - Allow combining --ssl-allow-insecure with other --ssl* flags.
   `mysql.RegisterTLSConfig` allows combining the corresponding
   parameters in the `tls.Config` it receives, so gh-ost should
   allow this. I found being able to pass --ssl-allow-insecure along
   with --ssl-ca, --ssl-cert, and --ssl-key useful in testing.
 - Use the same TLS config everywhere. Since the CLI only supports
   a single set of --ssl* configuration parameters, this should be
   fine -- `mysql.RegisterTLSConfig` documentation indicates the
   TLS config given will not be modified, so it can safely be used
   in many goroutines provided we also do not modify it. The previous
   implementation did not work when the TLS config was duplicated,
   which happens when gh-ost walks up the replication chain trying
   to find the master. This is because, when the config is duplicated,
   we must call `RegisterTLSConfig` again with the new config. This
   config is exactly the same, so it's easiest to side-step the issue
   by registering the TLS config once and using it everywhere.
2019-02-22 10:33:19 -08:00
..
binlog_test.go Throttling & critical load 2016-06-18 21:12:07 +02:00
binlog.go spelling: rotates 2017-11-08 00:56:14 +00:00
connection_test.go Improve SSL support 2019-02-22 10:33:19 -08:00
connection.go Improve SSL support 2019-02-22 10:33:19 -08:00
instance_key_map.go renaming to gh-ost 2016-05-16 11:09:17 +02:00
instance_key.go spelling: identified 2017-11-08 00:48:53 +00:00
utils.go Merge branch 'master' into minor_changes 2018-09-17 08:58:04 +03:00