Skip to content

Allow empty passwords #742

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
SuperQ merged 1 commit into from
Jun 19, 2023
Merged

Allow empty passwords #742

SuperQ merged 1 commit into from
Jun 19, 2023

Conversation

@SuperQ
Copy link
Member

@SuperQ SuperQ commented Jun 15, 2023

Empty passwords are allowed for UNIX socket connections and when using TLS auth.

Fixes: #686

@SuperQ
Copy link
Member Author

SuperQ commented Jun 15, 2023

CC @strafer

@SuperQ SuperQ force-pushed the superq/empty_password branch from 0e0cef6 to 27904bf Compare June 15, 2023 12:14
@SuperQ
Allow empty passwords
d867de4 
Empty passwords are allowed for UNIX socket connections and when using
TLS auth.

Fixes: #686

Signed-off-by: SuperQ <[email protected]>
@SuperQ SuperQ force-pushed the superq/empty_password branch from 27904bf to d867de4 Compare June 15, 2023 12:19
@SuperQ SuperQ requested review from Nexucis and matthiasr June 15, 2023 12:22
matthiasr
matthiasr approved these changes Jun 19, 2023
View reviewed changes
Copy link
Contributor

@matthiasr matthiasr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I vaguely remember MySQL making a distinction between "no password" and "empty password" in some circumstances. Which one will this end up using on the wire?

@SuperQ
Copy link
Member Author

SuperQ commented Jun 19, 2023

I don't know, but from the perspective of the Go mysql driver, there's no difference. The DSN Config struct defines pasword as a string, not a *string, so the default is empty string.

@SuperQ SuperQ merged commit 2b7699b into main Jun 19, 2023
@SuperQ SuperQ deleted the superq/empty_password branch June 19, 2023 07:34
SuperQ added a commit that referenced this pull request Jun 19, 2023
@SuperQ
Release 0.15.0
a726b4d 
* [CHANGE] Allow `tlsCfg.InsecureSkipVerify` outside of mTLS #631
* [CHANGE] Update to exporter-toolkit v0.8.1 #677
* [CHANGE] Fix shared metrics between requests #722
* [FEATURE] Add support for collecting metrics from `sys.user_summary` #628
* [FEATURE] Support for multi-target mysqld probes #651
* [FEATURE] Add MySQL TLS configurations #718
* [ENHANCEMENT] Add UNIX domain socket support for multi-target scraping #707
* [BUGFIX] Fix `infoSchemaInnodbMetricsEnabledColumnQuery` #687
* [BUGFIX] Allow empty passwords #742

Signed-off-by: SuperQ <[email protected]>
@SuperQ SuperQ mentioned this pull request Jun 19, 2023
Merged
SuperQ added a commit that referenced this pull request Jun 22, 2023
@SuperQ
Release 0.15.0
0eeb39b 
* [CHANGE] Allow `tlsCfg.InsecureSkipVerify` outside of mTLS #631
* [CHANGE] Update to exporter-toolkit v0.8.1 #677
* [CHANGE] Fix shared metrics between requests #722
* [FEATURE] Add support for collecting metrics from `sys.user_summary` #628
* [FEATURE] Support for multi-target mysqld probes #651
* [FEATURE] Add MySQL TLS configurations #718
* [ENHANCEMENT] Add UNIX domain socket support for multi-target scraping #707
* [BUGFIX] Fix `infoSchemaInnodbMetricsEnabledColumnQuery` #687
* [BUGFIX] Allow empty passwords #742

Signed-off-by: SuperQ <[email protected]>
SuperQ added a commit that referenced this pull request Jun 22, 2023
@SuperQ
Release 0.15.0
95b3d20 
BREAKING CHANGES:

The exporter no longer supports the monolithic `DATA_SOURCE_NAME` environment variable.
To configure connections to MySQL you can either use a `my.cnf` style config file or command line arguments.

For example:

    export MYSQLD_EXPORTER_PASSWORD=secret
    mysqld_exporter --mysqld.address=localhost:3306 --mysqld.username=exporter

We have also dropped some internal scrape metrics:
- `mysql_exporter_scrapes_total`
- `mysql_exporter_scrape_errors_total`
- `mysql_last_scrape_failed`

The default client configuration file is now `.my.cnf` in the process working directory. Use `--config.my-cnf="$HOME/.my.cnf"` to retain the previous default.

Changes:

* [CHANGE] Allow `tlsCfg.InsecureSkipVerify` outside of mTLS #631
* [CHANGE] Update to exporter-toolkit v0.8.1 #677
* [CHANGE] Fix shared metrics between requests #722
* [CHANGE] Allow empty passwords #742
* [CHANGE] Don't use HOME env in the my-cnf config path. #745
* [FEATURE] Add support for collecting metrics from `sys.user_summary` #628
* [FEATURE] Support for multi-target mysqld probes #651
* [FEATURE] Add MySQL TLS configurations #718
* [FEATURE] Add config reload via /-/reload #734
* [ENHANCEMENT] Add UNIX domain socket support for multi-target scraping #707
* [ENHANCEMENT] Use `STRAIGHT_JOIN` in infoSchemaAutoIncrementQuery #726
* [BUGFIX] Fix `infoSchemaInnodbMetricsEnabledColumnQuery` #687
* [BUGFIX] Allow empty passwords #742

Signed-off-by: SuperQ <[email protected]>
SuperQ added a commit that referenced this pull request Jun 24, 2023
@SuperQ
Release 0.15.0 (#744)
6ca2a42 
BREAKING CHANGES:

The exporter no longer supports the monolithic `DATA_SOURCE_NAME` environment variable.
To configure connections to MySQL you can either use a `my.cnf` style config file or command line arguments.

For example:

    export MYSQLD_EXPORTER_PASSWORD=secret
    mysqld_exporter --mysqld.address=localhost:3306 --mysqld.username=exporter

We have also dropped some internal scrape metrics:
- `mysql_exporter_scrapes_total`
- `mysql_exporter_scrape_errors_total`
- `mysql_last_scrape_failed`

The default client configuration file is now `.my.cnf` in the process working directory. Use `--config.my-cnf="$HOME/.my.cnf"` to retain the previous default.

Changes:

* [CHANGE] Allow `tlsCfg.InsecureSkipVerify` outside of mTLS #631
* [CHANGE] Update to exporter-toolkit v0.8.1 #677
* [CHANGE] Fix shared metrics between requests #722
* [CHANGE] Allow empty passwords #742
* [CHANGE] Don't use HOME env in the my-cnf config path. #745
* [FEATURE] Add support for collecting metrics from `sys.user_summary` #628
* [FEATURE] Support for multi-target mysqld probes #651
* [FEATURE] Add MySQL TLS configurations #718
* [FEATURE] Add config reload via /-/reload #734
* [ENHANCEMENT] Add UNIX domain socket support for multi-target scraping #707
* [ENHANCEMENT] Use `STRAIGHT_JOIN` in infoSchemaAutoIncrementQuery #726
* [BUGFIX] Fix `infoSchemaInnodbMetricsEnabledColumnQuery` #687
* [BUGFIX] Allow empty passwords #742

Signed-off-by: SuperQ <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matthiasr matthiasr matthiasr approved these changes

@Nexucis Nexucis Awaiting requested review from Nexucis

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

option to support empty password in cnf

3 participants

@SuperQ @matthiasr