Allow mysql resource to accept socket path #1933

rshade · 2017-06-16T14:39:30Z

We can not use this by default against mysql installations via the mysql cookbook.

Signed-off-by: Richard Shade <rshade@rightscale.com>

adamleff · 2017-06-16T19:04:23Z

@rshade thanks for your PR!

Unfortunately, we cannot accept this change as written. The -S/--socket parameter overrides the -h/--host parameter, and we do have users that connect to MySQL instances that are not on the local machine that's being scanned (i.e. testing DB connectivity from a web server, for example).

I verified this by creating a Vagrant machine, installing MySQL, configuring it to listen on 13306 (and forwarded that port), and then tried to connect to it using both -h and -S:

mysql -uvagrant -p -S /tmp/nonexistent.sock -h localhost --port 13306
Enter password:
ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/tmp/nonexistent.sock' (2)

One potential solution would be to set the default socket parameter to nil, and then have this kind of logic:

command = "mysql .... -u username .... "
if !socket.nil?
  command += "-S #{socket}"
else
  command += "-h #{host} ...."

That would still allow you to define a socket in your tests without breaking existing users.

adamleff

Unable to accept as-written, would break existing known use.

Signed-off-by: Richard Shade <rshade@rightscale.com>

adamleff

This looks pretty great to me, @rshade, thanks!

If you have time to level-up this change, I would break out the code the builds the CLI command string into a separate method (called mysql_command or something similar), and then that will allow us to test that logic easily and independently. If you don't have time for that, lemme know and I can follow-up with another PR to add that as well.

rshade · 2017-06-17T16:45:50Z

I will try and level up a little beginning of next week. Would it be cool if I open issues on a few of the items and we can work from there?

adamleff · 2017-06-17T16:57:32Z

That works for me!

Signed-off-by: Richard Shade <rshade@rightscale.com>

chris-rock

Thank you @rshade for this improvement

chris-rock · 2017-06-23T15:27:54Z

lib/resources/mysql_session.rb

@@ -16,10 +16,12 @@ class MysqlSession < Inspec.resource(1)
      end
    "

-    def initialize(user = nil, pass = nil, host = 'localhost')
+    def initialize(user = nil, pass = nil, host = 'localhost', port = nil, socket = nil)


In the future we probably want to use opts here to avoid passing nil values

n-rodriguez · 2017-07-18T08:55:15Z

lib/resources/mysql_session.rb

+        command += " -h #{@host}"
+      end
+      command += " --port #{@port}" unless @port.nil?
+      command += " #{db} -s -S #{@socket} -e \"#{escaped_query}\""


The -S #{@socket} argument is redundant with -h localhost and leads to MySQL error

Yep, the current version breaks for all queries without socket connections because of this

Ah, this is fixed in newer versions.

rshade added 5 commits April 21, 2017 08:45

showing how to shellout in docs

e0471ed

Signed-off-by: Richard Shade <rshade@rightscale.com>

adding basic example

1b298cf

Signed-off-by: Richard Shade <rshade@rightscale.com>

cleanup

f58350c

Signed-off-by: Richard Shade <rshade@rightscale.com>

Merge remote-tracking branch 'upstream/master'

b3952d8

adding in mysql socket, as this doesn't work with non-default installs

5f05ed5

Signed-off-by: Richard Shade <rshade@rightscale.com>

rshade force-pushed the mysql-socket branch from d4432c8 to 5f05ed5 Compare June 16, 2017 14:41

adamleff suggested changes Jun 16, 2017

View reviewed changes

updating per peer review to make socket not a req, and adding port

c2d61ce

Signed-off-by: Richard Shade <rshade@rightscale.com>

adamleff approved these changes Jun 16, 2017

View reviewed changes

adamleff added the Type: Enhancement Improves an existing feature label Jun 16, 2017

adamleff requested review from chris-rock and arlimus June 16, 2017 22:15

adamleff mentioned this pull request Jun 19, 2017

update mysql_session resource to have mysql_command method for stringbuilding of connection. #1942

Closed

updating docs

935756f

Signed-off-by: Richard Shade <rshade@rightscale.com>

rshade force-pushed the mysql-socket branch from d358068 to 935756f Compare June 19, 2017 15:17

chris-rock approved these changes Jun 23, 2017

View reviewed changes

chris-rock merged commit 1fbd4b5 into inspec:master Jun 23, 2017

adamleff changed the title ~~Mysql socket~~ Allow mysql resource to accept socket path Jun 29, 2017

n-rodriguez reviewed Jul 18, 2017

View reviewed changes

burtlo mentioned this pull request Dec 12, 2017

Updates the docs for mysql_session #2392

Merged

rshade deleted the mysql-socket branch February 20, 2019 22:16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Allow mysql resource to accept socket path #1933

Allow mysql resource to accept socket path #1933

rshade commented Jun 16, 2017 •

edited

Loading

adamleff commented Jun 16, 2017

adamleff left a comment

adamleff left a comment

rshade commented Jun 17, 2017

adamleff commented Jun 17, 2017

chris-rock left a comment

chris-rock Jun 23, 2017

n-rodriguez Jul 18, 2017

stefanandres Jul 27, 2017

stefanandres Jul 27, 2017

Allow mysql resource to accept socket path #1933

Allow mysql resource to accept socket path #1933

Conversation

rshade commented Jun 16, 2017 • edited Loading

adamleff commented Jun 16, 2017

adamleff left a comment

Choose a reason for hiding this comment

adamleff left a comment

Choose a reason for hiding this comment

rshade commented Jun 17, 2017

adamleff commented Jun 17, 2017

chris-rock left a comment

Choose a reason for hiding this comment

chris-rock Jun 23, 2017

Choose a reason for hiding this comment

n-rodriguez Jul 18, 2017

Choose a reason for hiding this comment

stefanandres Jul 27, 2017

Choose a reason for hiding this comment

stefanandres Jul 27, 2017

Choose a reason for hiding this comment

rshade commented Jun 16, 2017 •

edited

Loading