--- /dev/null
+[func] razvan
+ Added SSL/TLS support for PostgreSQL database connection in
+ the Kea configuration. Available parameters are:
+ "trust-anchor", "cert-file", "key-file" and "ssl-mode".
+ (Gitlab #3927)
the environment of the unit test process is updated so usually this
variable is manually set only in order to enforce a particular status.
+- KEA_PGSQL_HAVE_SSL - Specifies the SSL/TLS support status of PostgreSQL.
+ When not set the corresponding PostgreSQL global variable is read and
+ the environment of the unit test process is updated so usually this
+ variable is manually set only in order to enforce a particular status.
+
- KEA_PIDFILE_DIR - Specifies the directory which should be used for PID files
as used by dhcp::Daemon or its derivatives. If not specified, the
default is <i>prefix</i>/var/run/kea, where <i>prefix</i> defaults to
The value of this MySQL global variable is reflected by the
KEA_MYSQL_HAVE_SSL environment variable.
+Recent versions of Community MySQL does not support this global variable.
+SSL/TLS support detection was extended to use status using:
+
+@verbatim
+mysql> SHOW STATUS LIKE 'ssl_cipher';
+@endverbatim
+
The keatest_secure user requires X509 so a client certificate. Of course
in production a stricter requirement should be used, in particular when
a client certificate should be bound to a particular user.
projects / thirdparty / kea.git / commitdiff
