Bug #25500 Add SSL information to SHOW PROCESSLIST
Submitted: 9 Jan 2007 17:34 Modified: 6 Aug 2015 17:27
Reporter: Issac Goldstand Email Updates:
Status: Closed Impact on me:
None 
Category:MySQL Server: General Severity:S4 (Feature request)
Version:5.0.27 OS:Any (All)
Assigned to: CPU Architecture:Any

[9 Jan 2007 17:34] Issac Goldstand 
Description:
It would be really nice if the output from show processlist would also show SSL information (just the cipher being used or "None" for unencrypted would be enough, I think).

Many times I use API (native c, DBD::mysql) calls to make encrypted connections, and there's currently no way (that I know of) of knowing if an encrypted connection was negotiated.  Ditto for mysql-gui tools and replication clients.

How to repeat:
Make an encrypted connection via anything other than the MySQL client (where show status will report SSL information).  It's very difficult to know if you've negotiated SSL without a protocol sniffer...

Suggested fix:
Add SSL-CIPHER to output of SHOW PROCESSLIST; similar to Ssl_cipher in client SHOW STATUS
[9 Jan 2007 18:53] MySQL Verification Team 
Thank you for the bug report feature request.
[6 Aug 2015 15:19] Todd Farmer 
This feature request is implemented in 5.7.8, as
PERFORMANCE_SCHEMA.THREADS table now contains a CONNECTION_TYPE column. 
Additionally, the actual cipher in use can be obtained via the
PERFORMANCE_SCHEMA.STATUS_BY_THREAD table.  Both are described in more
detail in the following blog post:

http://mysqlblog.fivefarmers.com/2015/08/05/identifying-which-connections-are-secure/

This has not been added to PROCESSLIST, as PERFORMANCE_SCHEMA is preferred instrumentation source going forward.