-
Notifications
You must be signed in to change notification settings - Fork 657
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
tidb-configuration-file: add tls-version #7899
Conversation
[REVIEW NOTIFICATION] This pull request has been approved by:
To complete the pull request process, please ask the reviewers in the list to review by filling The full list of commands accepted by this bot can be found here. Reviewer can indicate their review by submitting an approval review. |
Note that there are multiple things that influence the TLS versions that can be used:
|
I suggest we also add a hint in this doc https://docs.pingcap.com/tidb/stable/enable-tls-between-clients-and-servers for this configuration and its default value. @dveeden |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
/merge |
This pull request has been accepted and is ready to merge. Commit hash: de29d00
|
Signed-off-by: ti-chi-bot <ti-community-prow-bot@tidb.io>
In response to a cherrypick label: new pull request created: #8138. |
In response to a cherrypick label: new pull request created: #8139. |
In response to a cherrypick label: new pull request created: #8140. |
* tidb-configuration-file: add tls-version * enable-tls-between-clients-and-servers: add references to tls-version * Add possible values for tls-version * fix jenkins Co-authored-by: Daniël van Eeden <git@myname.nl> Co-authored-by: shichun-0415 <89768198+shichun-0415@users.noreply.github.com>
* tidb-configuration-file: add tls-version * enable-tls-between-clients-and-servers: add references to tls-version * Add possible values for tls-version * fix jenkins Co-authored-by: Daniël van Eeden <git@myname.nl> Co-authored-by: shichun-0415 <89768198+shichun-0415@users.noreply.github.com>
|
||
The `tls-version` configuration option can be used to limit the TLS versions that can be used. | ||
|
||
The actual TLS versions that can be used depend on the OS crypto policy, MySQL client version and the SSL/TLS libary that is used by the client. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
libary -> library
What is changed, added or deleted? (Required)
Add docs for the
tls-version
configuration in the TiDB configuration.Which TiDB version(s) do your changes apply to? (Required)
What is the related PR or file link(s)?
Do your changes match any of the following descriptions?