Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add MySQL TLS support #3593

Merged
merged 3 commits into from
Aug 16, 2024
Merged

Add MySQL TLS support #3593

merged 3 commits into from
Aug 16, 2024

Conversation

fghanmi
Copy link
Contributor

@fghanmi fghanmi commented Aug 13, 2024
edited
Loading

This PR adds TLS support for MySQL connections in the Trillian server/signer. The key changes include:

  • Added new flags:

    • mysql_tls_ca: Path to the CA certificate file for the MySQL TLS connection.
    • mysql_server_name: Name of the MySQL server to be used as the Server Name in the TLS configuration.

  • TLS Configuration Registration:

    • Added a new function registerTLSConfig() to handle the registration of the custom TLS configuration.

If no TLS configuration is provided, the connection defaults to non-TLS, ensuring backward compatibility.

Issue: #3592

Checklist

@fghanmi
Add MySQL TLS support
899d481 
Signed-off-by: Firas Ghanmi <fghanmi@redhat.com>
@fghanmi fghanmi requested a review from a team as a code owner August 13, 2024 08:21
@fghanmi fghanmi requested a review from patflynn August 13, 2024 08:21
@fghanmi
update CHANGELOG
aa9bc02 
Signed-off-by: Firas Ghanmi <fghanmi@redhat.com>
@fghanmi fghanmi changed the title Add MySQL TLS support [work in progress] Add MySQL TLS support Aug 13, 2024
@fghanmi fghanmi changed the title [work in progress] Add MySQL TLS support Add MySQL TLS support Aug 13, 2024
@patflynn patflynn requested review from AlCutter and removed request for patflynn August 15, 2024 15:24
AlCutter
AlCutter reviewed Aug 15, 2024
View reviewed changes
storage/mysql/provider.go Outdated Show resolved Hide resolved
storage/mysql/provider.go Outdated Show resolved Hide resolved
storage/mysql/provider.go Outdated Show resolved Hide resolved
storage/mysql/provider.go Outdated Show resolved Hide resolved
@AlCutter
Copy link
Member

Hi @fghanmi - thanks for the PR, I've dropped a few comments on for you.
Cheers,
Al.

@fghanmi
updates-1
c270de2 
Signed-off-by: Firas Ghanmi <fghanmi@redhat.com>
@fghanmi
Copy link
Contributor Author

fghanmi commented Aug 15, 2024

Hi @fghanmi - thanks for the PR, I've dropped a few comments on for you. Cheers, Al.

Hello @AlCutter,
Thanks for the comments! all done ;)
Thank you!

@AlCutter
Copy link
Member

/gcbrun

@AlCutter AlCutter merged commit 0bd653f into google:master Aug 16, 2024
10 checks passed
@AlCutter
Copy link
Member

Thanks again @fghanmi!

fghanmi added a commit to securesign/trillian that referenced this pull request Aug 17, 2024
@fghanmi
Add MySQL TLS support (google#3593)
cb2b0c4 
Adds TLS support for MySQL connections in the Trillian server/signer.

Key changes include:
- Added new flags:
  + mysql_tls_ca: Path to the CA certificate file for the MySQL TLS connection.
  + mysql_server_name: Name of the MySQL server to be used as the Server Name in the TLS configuration.
- Added a new function registerTLSConfig() to handle the registration of the custom TLS configuration.

If no TLS configuration is provided, the connection defaults to non-TLS, ensuring backward compatibility.

Issue: google#3592
fghanmi added a commit to securesign/trillian that referenced this pull request Aug 17, 2024
@fghanmi
Add MySQL TLS support (google#3593) (#261)
abffea1 
Adds TLS support for MySQL connections in the Trillian server/signer.

Key changes include:
- Added new flags:
  + mysql_tls_ca: Path to the CA certificate file for the MySQL TLS connection.
  + mysql_server_name: Name of the MySQL server to be used as the Server Name in the TLS configuration.
- Added a new function registerTLSConfig() to handle the registration of the custom TLS configuration.

If no TLS configuration is provided, the connection defaults to non-TLS, ensuring backward compatibility.

Issue: google#3592
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AlCutter AlCutter AlCutter approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fghanmi @AlCutter