Merge branch 'develop' into MXS-129

CMakeLists.txt

@@ -154,7 +154,8 @@ install(FILES ${CMAKE_BINARY_DIR}/ReleaseNotes.txt DESTINATION ${MAXSCALE_SHARED
 install(FILES ${CMAKE_BINARY_DIR}/UpgradingToMaxScale110.txt DESTINATION ${MAXSCALE_SHAREDIR})
 install(FILES server/maxscale_template.cnf DESTINATION ${MAXSCALE_SHAREDIR})
 install(FILES server/maxscale_binlogserver_template.cnf DESTINATION ${MAXSCALE_SHAREDIR})
-install(FILES ${ERRMSG} DESTINATION ${MAXSCALE_VARDIR}/lib/maxscale)
+install(FILES ${ERRMSG} DESTINATION ${MAXSCALE_VARDIR}/lib/maxscale 
+  PERMISSIONS OWNER_READ OWNER_WRITE OWNER_EXECUTE GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
 install(FILES ${CMAKE_SOURCE_DIR}/COPYRIGHT DESTINATION ${MAXSCALE_SHAREDIR})
 install(FILES ${CMAKE_SOURCE_DIR}/README DESTINATION ${MAXSCALE_SHAREDIR})
 install(FILES ${CMAKE_SOURCE_DIR}/LICENSE DESTINATION ${MAXSCALE_SHAREDIR})

Documentation/Reference/MaxScale-and-SSL.md

@@ -6,7 +6,7 @@ MaxScale supports client side SSL connections. Enabling is done on a per service
 
 Here are the options which relate to SSL and certificates.
 Parameter|Values|Description
-----------------------------
+---------|-----------|--------
 ssl         | disabled, enabled, required |`disable` disables SSL, `enabled` enables SSL for client connections but still allows non-SSL connections and `required` requires SSL from all client connections. With the `required` option, client connections that do not use SSL will be rejected.
 ssl_cert    | <path to file>              |Path to server certificate
 ssl_key     | <path to file>              |Path to server private key

etc/maxscale.service.in

@@ -5,7 +5,7 @@ After=network.target
 [Service]
 Type=forking
 PIDFile=@MAXSCALE_VARDIR@/run/maxscale/maxscale.pid
-ExecStart=@CMAKE_INSTALL_PREFIX@/@MAXSCALE_BINDIR@/maxscale
+ExecStart=@CMAKE_INSTALL_PREFIX@/@MAXSCALE_BINDIR@/maxscale --user=maxscale
 
 [Install]
 WantedBy=multi-user.target

server/core/dcb.c

@@ -73,8 +73,6 @@
 #include <hashtable.h>
 #include <hk_heartbeat.h>
 
-#include "mysql_client_server_protocol.h"
-
 /** Defined in log_manager.cc */
 extern int            lm_enabled_logfiles_bitmask;
 extern size_t         log_ses_count[];
@@ -1397,10 +1395,9 @@ dcb_write_SSL(DCB *dcb, GWBUF *queue)
 	    }
 #endif /* FAKE_CODE */
 	    qlen = GWBUF_LENGTH(queue);
-	    GW_NOINTR_CALL(
-		    w = gw_write_SSL(dcb->ssl, GWBUF_DATA(queue), qlen);
+
+        w = gw_write_SSL(dcb->ssl, GWBUF_DATA(queue), qlen);
 	    dcb->stats.n_writes++;
-	    );
 
 	    if (w < 0)
 	    {
@@ -1660,7 +1657,7 @@ dcb_drain_writeq_SSL(DCB *dcb)
 	while (dcb->writeq != NULL)
 	{
 	    len = GWBUF_LENGTH(dcb->writeq);
-	    GW_NOINTR_CALL(w = gw_write_SSL(dcb->ssl, GWBUF_DATA(dcb->writeq), len););
+        w = gw_write_SSL(dcb->ssl, GWBUF_DATA(dcb->writeq), len);
 
 	    if (w < 0)
 	    {
@@ -2910,4 +2907,4 @@ int dcb_connect_SSL(DCB* dcb)
     }
 
     return rval;
-}
+}