https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=41099
--- Comment #12 from Tomás Cohen Arazi (tcohen) <[email protected]> --- (In reply to Lucas Gass (lukeg) from comment #11) > This has been reverted from main upon Tomas's request. There's no elegant solution that works for everyone, at `koha-mysql` level. The `mysql` command (be it from MariaDB or MySQL) on each of the supported OS versions has really different behaviors: | Version | SSL Disable Method | Status | |---------------|---------------------------|-----------------| | MySQL 5.7 | None reliable | Omit SSL config | | MySQL 8.0+ | `ssl=off` | Supported | | MariaDB 10.5 | `ssl=off` | Supported | | MariaDB 10.6 | `ssl=off` | Supported. | | MariaDB 10.11 | `ssl=off` or `--skip-ssl` | Both supported | | MariaDB 11.4+ | `ssl-mode=DISABLED` | Supported | I suggest we add something like this at KTD level, in `run.sh`: ```bash # Detect database version DB_VERSION=$(mysql --version | grep -oE '[0-9]+\.[0-9]+') DB_TYPE=$(mysql --version | grep -q MariaDB && echo "mariadb" || echo "mysql") # Set SSL parameter based on version if [[ "$DB_TYPE" == "mysql" ]]; then if [[ "$DB_VERSION" == "5.7" ]]; then SSL_PARAM="" # No reliable disable option else SSL_PARAM="ssl=off" fi elif [[ "$DB_TYPE" == "mariadb" ]]; then case "$DB_VERSION" in 10.5|10.6) SSL_PARAM="ssl=off" ;; 10.11) SSL_PARAM="ssl=off" # or --skip-ssl ;; 11.*) SSL_PARAM="ssl-mode=DISABLED" ;; *) SSL_PARAM="ssl=off" # fallback ;; esac fi ``` -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
