hcq/MaxScale
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

MXS-2483: Re-configuring SSL for servers is an error

Browse Source 
Since listeners cannot be reconfigured, we can accept this limitation and
impose it on the servers as well. This keeps the behavior consistent and
removes the need to resolve the deletion issue (for the time being).
This commit is contained in:
Markus Mäkelä
2019-05-20 20:15:36 +03:00
parent 3b8e28392e
commit 9c6ec5e6c9
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
server/core/config_runtime.cc
View File

@ -434,7 +434,11 @@ bool runtime_enable_server_ssl(Server* server,
{ {
bool rval = false; bool rval = false;
if (key && cert && ca) if (server->ssl_context())
{
config_runtime_error("Server '%s' already configured to use SSL.", server->name());
}
else if (key && cert && ca)
{ {
std::lock_guard<std::mutex> guard(crt_lock); std::lock_guard<std::mutex> guard(crt_lock);
mxs::SSLContext* ssl = create_ssl(server->name(), key, cert, ca, version, depth, verify); mxs::SSLContext* ssl = create_ssl(server->name(), key, cert, ca, version, depth, verify);