This is an automated email from the ASF dual-hosted git repository. kxiao pushed a commit to branch branch-2.0 in repository https://gitbox.apache.org/repos/asf/doris.git
commit f17a82b176b54612db4fb4d595b07da8b971f520 Author: Gavin Chou <[email protected]> AuthorDate: Fri Jul 7 12:24:55 2023 +0800 (chore) Disable ssl connection to FE by default for compatibility reason (#20230) Older MySQL client (< 5.7.28) will try to connect to server with tls1.1, which is insecure and is not supported by Doris FE. The connection will fail. We disable ssl connection support on Doris FE to keep the users' application unaffected. To enable ssl support explicitly, just put the following to fe.conf ``` enable_ssl = true ``` --- fe/fe-common/src/main/java/org/apache/doris/common/Config.java | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/fe/fe-common/src/main/java/org/apache/doris/common/Config.java b/fe/fe-common/src/main/java/org/apache/doris/common/Config.java index eb2acb6022..51cf3d0f99 100644 --- a/fe/fe-common/src/main/java/org/apache/doris/common/Config.java +++ b/fe/fe-common/src/main/java/org/apache/doris/common/Config.java @@ -1823,7 +1823,7 @@ public class Config extends ConfigBase { * If set to ture, doris will establish an encrypted channel based on the SSL protocol with mysql. */ @ConfField(mutable = false, masterOnly = false, expType = ExperimentalType.EXPERIMENTAL) - public static boolean enable_ssl = true; + public static boolean enable_ssl = false; /** * If set to ture, ssl connection needs to authenticate client's certificate. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
