| Bug #89711 | Inconsisted argument and session variable: ssl_version and tls_version | ||
|---|---|---|---|
| Submitted: | 19 Feb 2018 9:25 | Modified: | 19 Feb 2018 11:57 |
| Reporter: | Daniël van Eeden (OCA) | Email Updates: | |
| Status: | Verified | Impact on me: | |
| Category: | MySQL Server: Security: Encryption | Severity: | S3 (Non-critical) |
| Version: | 8.0.4 | OS: | Any |
| Assigned to: | CPU Architecture: | Any | |
| Tags: | SSL, tls | ||
[19 Feb 2018 11:57]
MySQL Verification Team
Hello Daniël, Thank you for the report and feedback! Thanks, Umesh
[19 Feb 2018 11:58]
MySQL Verification Team
This seems to be same case even in 5.7 - https://dev.mysql.com/doc/refman/5.7/en/encrypted-connection-protocols-ciphers.html
Description: From 'mysql --help' output: --tls-version=name TLS version to use, permitted values are: TLSv1, TLSv1.1, TLSv1.2 From a TLS enabled session: mysql> SHOW SESSION STATUS LIKE '%_version'; +---------------+---------+ | Variable_name | Value | +---------------+---------+ | Ssl_version | TLSv1.2 | +---------------+---------+ 1 row in set (0.01 sec) How to repeat: Compare session variables with commandline options Suggested fix: Add TLS names for all SSL things and deprecate the SSL things.