box: let authentication method require encryption
If an IO stream is encrypted, it should set flag IOSTREAM_IS_ENCRYPTED.
If an authentication method requires the channel to be encrypted, it
should set flag AUTH_METHOD_REQUIRES_ENCRYPTION. An attempt to use an
authentication method that requires encryption over an unencrypted IO
stream will raise an error ER_UNSUPPORTED("Authentication method '%s'
does not support unencrypted connection"). This check is performed by
both net.box and applier.
Needed for https://github.com/tarantool/tarantool-ee/issues/322
NO_DOC=ee
NO_TEST=ee
NO_CHANGELOG=ee
Showing
- src/box/applier.cc 2 additions, 0 deletionssrc/box/applier.cc
- src/box/auth_chap_sha1.c 1 addition, 0 deletionssrc/box/auth_chap_sha1.c
- src/box/authentication.c 15 additions, 0 deletionssrc/box/authentication.c
- src/box/authentication.h 21 additions, 0 deletionssrc/box/authentication.h
- src/box/lua/net_box.c 2 additions, 0 deletionssrc/box/lua/net_box.c
- src/lib/core/iostream.h 11 additions, 0 deletionssrc/lib/core/iostream.h
Loading
Please register or sign in to comment