mysql-net
diff --git a/‎.ci/config.ssl.json
Lines changed: 7 additions & 0 deletions b/‎.ci/config.ssl.json
Lines changed: 7 additions & 0 deletions
diff --git a/‎.ci/server.cnf
Lines changed: 3 additions & 0 deletions b/‎.ci/server.cnf
Lines changed: 3 additions & 0 deletions
diff --git a/‎.ci/server.debug
Lines changed: 11 additions & 0 deletions b/‎.ci/server.debug
Lines changed: 11 additions & 0 deletions
diff --git a/‎.ci/ssl-client.pfx
3.36 KB b/‎.ci/ssl-client.pfx
3.36 KB
diff --git a/‎.travis.yml
Lines changed: 2 additions & 2 deletions b/‎.travis.yml
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/MySqlConnector/MySqlClient/ConnectionPool.cs
Lines changed: 11 additions & 5 deletions b/‎src/MySqlConnector/MySqlClient/ConnectionPool.cs
Lines changed: 11 additions & 5 deletions
diff --git a/‎src/MySqlConnector/MySqlClient/MySqlConnection.cs
Lines changed: 2 additions & 2 deletions b/‎src/MySqlConnector/MySqlClient/MySqlConnection.cs
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/MySqlConnector/MySqlClient/MySqlConnectionStringBuilder.cs
Lines changed: 51 additions & 0 deletions b/‎src/MySqlConnector/MySqlClient/MySqlConnectionStringBuilder.cs
Lines changed: 51 additions & 0 deletions
diff --git a/‎src/MySqlConnector/Protocol/Serialization/IPacketHandler.cs
Lines changed: 1 addition & 0 deletions b/‎src/MySqlConnector/Protocol/Serialization/IPacketHandler.cs
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/MySqlConnector/Protocol/Serialization/IPayloadHandler.cs
Lines changed: 1 addition & 0 deletions b/‎src/MySqlConnector/Protocol/Serialization/IPayloadHandler.cs
Lines changed: 1 addition & 0 deletions
@@ -0,0 +1,7 @@
+{
+    "Data": {
+      "ConnectionString": "server=127.0.0.1;user id=ssltest;password=test;port=3306;database=mysqltest;ssl mode=required;certificate file=.ci/ssl-client.pfx;Use Affected Rows=true",
+      "PasswordlessUser": "no_password",
+      "SupportsJson": true
+    }
+}
@@ -1,3 +1,6 @@
+# uses a seperate key for the server and clinet
+# this is how things should be run in production
+
 [mysqld]
 ssl-ca=/etc/mysql/conf.d/ssl-ca.pem
 ssl-cert=/etc/mysql/conf.d/ssl-server-cert.pem
 
@@ -0,0 +1,11 @@
+# uses the same key for the server and client
+# uses a non-ephemeral cipher suite
+# allows for WireShark to decrypt packets given "ssl-client-key.pem"
+# go to "Edit -> Preferences", "Protocols", "SSL", and add RSA key
+# this is for testing, don't do this in production
+
+[mysqld]
+ssl-ca=/etc/mysql/conf.d/ssl-ca.pem
+ssl-cert=/etc/mysql/conf.d/ssl-client-cert.pem
+ssl-key=/etc/mysql/conf.d/ssl-client-key.pem
+ssl-cipher=AES128-SHA
@@ -8,9 +8,9 @@ before_install:
   - sudo apt-key adv --keyserver apt-mo.trafficmanager.net --recv-keys 417A0893
   - sudo apt-get update
   - sudo apt-get install -y dotnet-dev-1.0.0-preview2-003121
-  - cp tests/SideBySide.New/config.json.example tests/SideBySide.New/config.json
 
 script:
   - dotnet restore
   - dotnet test tests/MySqlConnector.Tests --configuration Release
-  - dotnet test tests/SideBySide.New --configuration Release
+  - echo 'Executing tests with ssl mode=none' && cp tests/SideBySide.New/config.json.example tests/SideBySide.New/config.json && dotnet test tests/SideBySide.New --configuration Release
+  - echo 'Executing tests with ssl mode=required' && cp .ci/config.ssl.json tests/SideBySide.New/config.json && dotnet test tests/SideBySide.New --configuration Release
@@ -43,7 +43,7 @@ public async Task<MySqlSession> GetSessionAsync(IOBehavior ioBehavior, Cancellat
 				}
 
 				session = new MySqlSession(this, m_generation);
-				await session.ConnectAsync(m_servers, m_port, m_userId, m_password, m_database, ioBehavior, cancellationToken).ConfigureAwait(false);
+				await session.ConnectAsync(m_servers, m_port, m_userId, m_password, m_database, m_sslMode, m_certificateFile, m_certificatePassword, ioBehavior, cancellationToken).ConfigureAwait(false);
 				return session;
 			}
 			catch
@@ -124,8 +124,8 @@ public static ConnectionPool GetPool(MySqlConnectionStringBuilder csb)
 			ConnectionPool pool;
 			if (!s_pools.TryGetValue(key, out pool))
 			{
-				pool = s_pools.GetOrAdd(key, newKey => new ConnectionPool(csb.Server.Split(','), (int) csb.Port, csb.UserID,
-						csb.Password, csb.Database, csb.ConnectionReset, (int)csb.MinimumPoolSize, (int) csb.MaximumPoolSize));
+				pool = s_pools.GetOrAdd(key, newKey => new ConnectionPool(csb.Server.Split(','), (int) csb.Port, csb.UserID, csb.Password, csb.Database,
+					csb.SslMode, csb.CertificateFile, csb.CertificatePassword, csb.ConnectionReset, (int)csb.MinimumPoolSize, (int) csb.MaximumPoolSize));
 			}
 			return pool;
 		}
@@ -138,15 +138,18 @@ public static async Task ClearPoolsAsync(IOBehavior ioBehavior, CancellationToke
 				await pool.ClearAsync(ioBehavior, cancellationToken).ConfigureAwait(false);
 		}
 
-		private ConnectionPool(IEnumerable<string> servers, int port, string userId, string password, string database,
-			bool resetConnections, int minimumSize, int maximumSize)
+		private ConnectionPool(IEnumerable<string> servers, int port, string userId, string password, string database, SslMode sslMode,
+			string certificateFile, string certificatePassword, bool resetConnections, int minimumSize, int maximumSize)
 		{
 			m_servers = servers;
 			m_port = port;
 			m_userId = userId;
 			m_password = password;
 			m_database = database;
 			m_resetConnections = resetConnections;
+			m_sslMode = sslMode;
+			m_certificateFile = certificateFile;
+			m_certificatePassword = certificatePassword;
 			m_minimumSize = minimumSize;
 			m_maximumSize = maximumSize;
 
@@ -166,6 +169,9 @@ private ConnectionPool(IEnumerable<string> servers, int port, string userId, str
 		readonly string m_userId;
 		readonly string m_password;
 		readonly string m_database;
+		readonly SslMode m_sslMode;
+		readonly string m_certificateFile;
+		readonly string m_certificatePassword;
 		readonly bool m_resetConnections;
 		readonly int m_minimumSize;
 		readonly int m_maximumSize;
 
@@ -226,8 +226,8 @@ private async Task<MySqlSession> CreateSessionAsync(IOBehavior ioBehavior, Cance
 					else
 					{
 						var session = new MySqlSession();
-						await session.ConnectAsync(m_connectionStringBuilder.Server.Split(','), (int) m_connectionStringBuilder.Port, m_connectionStringBuilder.UserID,
-							m_connectionStringBuilder.Password, m_connectionStringBuilder.Database, ioBehavior, linkedSource.Token).ConfigureAwait(false);
+						await session.ConnectAsync(m_connectionStringBuilder.Server.Split(','), (int) m_connectionStringBuilder.Port, m_connectionStringBuilder.UserID, m_connectionStringBuilder.Password, m_connectionStringBuilder.Database,
+							m_connectionStringBuilder.SslMode, m_connectionStringBuilder.CertificateFile, m_connectionStringBuilder.CertificatePassword, ioBehavior, linkedSource.Token).ConfigureAwait(false);
 						return session;
 					}
 				}
 
@@ -5,6 +5,14 @@
 
 namespace MySql.Data.MySqlClient
 {
+	public enum SslMode
+	{
+		None,
+		Required,
+		VerifyCa,
+		VerifyFull,
+	}
+
 	public sealed class MySqlConnectionStringBuilder : DbConnectionStringBuilder
 	{
 		public MySqlConnectionStringBuilder()
@@ -82,6 +90,24 @@ public bool UseCompression
 			set { MySqlConnectionStringOption.UseCompression.SetValue(this, value); }
 		}
 
+		public SslMode SslMode
+		{
+			get { return MySqlConnectionStringOption.SslMode.GetValue(this); }
+			set { MySqlConnectionStringOption.SslMode.SetValue(this, value); }
+		}
+
+		public string CertificateFile
+		{
+			get { return MySqlConnectionStringOption.CertificateFile.GetValue(this); }
+			set { MySqlConnectionStringOption.CertificateFile.SetValue(this, value); }
+		}
+
+		public string CertificatePassword
+		{
+			get { return MySqlConnectionStringOption.CertificatePassword.GetValue(this); }
+			set { MySqlConnectionStringOption.CertificatePassword.SetValue(this, value); }
+		}
+
 		public bool Pooling
 		{
 			get { return MySqlConnectionStringOption.Pooling.GetValue(this); }
@@ -179,6 +205,9 @@ internal abstract class MySqlConnectionStringOption
 		public static readonly MySqlConnectionStringOption<bool> OldGuids;
 		public static readonly MySqlConnectionStringOption<bool> PersistSecurityInfo;
 		public static readonly MySqlConnectionStringOption<bool> UseCompression;
+		public static readonly MySqlConnectionStringOption<SslMode> SslMode;
+		public static readonly MySqlConnectionStringOption<string> CertificateFile;
+		public static readonly MySqlConnectionStringOption<string> CertificatePassword;
 		public static readonly MySqlConnectionStringOption<bool> Pooling;
 		public static readonly MySqlConnectionStringOption<bool> ConnectionReset;
 		public static readonly MySqlConnectionStringOption<uint> ConnectionTimeout;
@@ -265,6 +294,18 @@ static MySqlConnectionStringOption()
 				keys: new[] { "Compress", "Use Compression", "UseCompression" },
 				defaultValue: false));
 
+			AddOption(CertificateFile = new MySqlConnectionStringOption<string>(
+				keys: new[] { "CertificateFile", "Certificate File" },
+				defaultValue: ""));
+
+			AddOption(CertificatePassword = new MySqlConnectionStringOption<string>(
+				keys: new[] { "CertificatePassword", "Certificate Password" },
+				defaultValue: ""));
+
+			AddOption(SslMode = new MySqlConnectionStringOption<SslMode>(
+				keys: new[] { "SSL Mode", "SslMode" },
+				defaultValue: MySqlClient.SslMode.None));
+
 			AddOption(Pooling = new MySqlConnectionStringOption<bool>(
 				keys: new[] { "Pooling" },
 				defaultValue: true));
@@ -334,6 +375,16 @@ private static T ChangeType(object objectValue)
 					return (T) (object) false;
 			}
 
+			if (typeof(T) == typeof(SslMode) && objectValue is string)
+			{
+				foreach (var val in Enum.GetValues(typeof(T)))
+				{
+					if (string.Equals((string) objectValue, val.ToString(), StringComparison.OrdinalIgnoreCase))
+						return (T) val;
+				}
+				throw new InvalidOperationException("Value '{0}' not supported for option '{1}'.".FormatInvariant(objectValue, typeof(T).Name));
+			}
+
 			return (T) Convert.ChangeType(objectValue, typeof(T), CultureInfo.InvariantCulture);
 		}
 
 
@@ -5,6 +5,7 @@ namespace MySql.Data.Protocol.Serialization
 {
 	internal interface IPacketHandler
 	{
+		void SetByteHandler(IByteHandler byteHandler);
 		ValueTask<Packet> ReadPacketAsync(ProtocolErrorBehavior protocolErrorBehavior, IOBehavior ioBehavior);
 		ValueTask<int> WritePacketAsync(Packet packet, IOBehavior ioBehavior);
 	}
 
@@ -6,6 +6,7 @@ namespace MySql.Data.Protocol.Serialization
 {
 	internal interface IPayloadHandler
 	{
+		void SetByteHandler(IByteHandler byteHandler);
 		ValueTask<ArraySegment<byte>> ReadPayloadAsync(IConversation conversation, ProtocolErrorBehavior protocolErrorBehavior, IOBehavior ioBehavior);
 		ValueTask<int> WritePayloadAsync(IConversation conversation, ArraySegment<byte> payload, IOBehavior ioBehavior);
 	}
Original file line number	Diff line number	Diff line change
`@@ -226,8 +226,8 @@ private async Task<MySqlSession> CreateSessionAsync(IOBehavior ioBehavior, Cance`
`226`	`226`	`else`
`227`	`227`	`{`
`228`	`228`	`var session = new MySqlSession();`
`229`		`- await session.ConnectAsync(m_connectionStringBuilder.Server.Split(','), (int) m_connectionStringBuilder.Port, m_connectionStringBuilder.UserID,`
`230`		`- m_connectionStringBuilder.Password, m_connectionStringBuilder.Database, ioBehavior, linkedSource.Token).ConfigureAwait(false);`
	`229`	`+ await session.ConnectAsync(m_connectionStringBuilder.Server.Split(','), (int) m_connectionStringBuilder.Port, m_connectionStringBuilder.UserID, m_connectionStringBuilder.Password, m_connectionStringBuilder.Database,`
	`230`	`+ m_connectionStringBuilder.SslMode, m_connectionStringBuilder.CertificateFile, m_connectionStringBuilder.CertificatePassword, ioBehavior, linkedSource.Token).ConfigureAwait(false);`
`231`	`231`	`return session;`
`232`	`232`	`}`
`233`	`233`	`}`
Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@ namespace MySql.Data.Protocol.Serialization`
`5`	`5`	`{`
`6`	`6`	`internal interface IPacketHandler`
`7`	`7`	`{`
	`8`	`+ void SetByteHandler(IByteHandler byteHandler);`
`8`	`9`	`ValueTask<Packet> ReadPacketAsync(ProtocolErrorBehavior protocolErrorBehavior, IOBehavior ioBehavior);`
`9`	`10`	`ValueTask<int> WritePacketAsync(Packet packet, IOBehavior ioBehavior);`
`10`	`11`	`}`
Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@ namespace MySql.Data.Protocol.Serialization`
`6`	`6`	`{`
`7`	`7`	`internal interface IPayloadHandler`
`8`	`8`	`{`
	`9`	`+ void SetByteHandler(IByteHandler byteHandler);`
`9`	`10`	`ValueTask<ArraySegment<byte>> ReadPayloadAsync(IConversation conversation, ProtocolErrorBehavior protocolErrorBehavior, IOBehavior ioBehavior);`
`10`	`11`	`ValueTask<int> WritePayloadAsync(IConversation conversation, ArraySegment<byte> payload, IOBehavior ioBehavior);`
`11`	`12`	`}`