SSL SNI routing #15

xhebox · 2022-07-26T08:39:47Z

Without storing username and password, proxy can not complete the authentication without real backend servers. Proxy needs to fake handshake and response for both clients and servers. But if we route by SNI, we only need to fake inital handshake for clients and parse SSL request from clients. It greatly simplify the parsing of mysql protocols, leaving clients to real servers.
This can remove literally lots of code of the complex frontend/backend logic.
- proxy: remove domain types #16 preparation, merged into proxy: remove driver and queryctx #18
- proxy: remove driver and queryctx #18 preparation step two
- proxy: refine sqlserver.SQLServer #27

The text was updated successfully, but these errors were encountered:

This was referenced Jul 26, 2022

TiProxy tracking issue #7

Closed

proxy: remove domain types #16

Closed

proxy: remove driver and queryctx #18

Merged

xhebox mentioned this issue Aug 4, 2022

proxy: refine sqlserver.SQLServer #27

Merged

8 tasks

xhebox mentioned this issue Oct 20, 2022

*: fix static backends & support route by user #119

Merged

8 tasks

djshow832 closed this as completed Jan 10, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SSL SNI routing #15

SSL SNI routing #15

xhebox commented Jul 26, 2022 •

edited

Loading

SSL SNI routing #15

SSL SNI routing #15

Comments

xhebox commented Jul 26, 2022 • edited Loading

xhebox commented Jul 26, 2022 •

edited

Loading