Page MenuHomePhabricator

Redis: Add support for TLS
Open, MediumPublic

Description

For some setups, it's necessary to access Redis through TLS. This is already supported by phpredis 5.x, but the option handling in RedisConnectionPool.php doesn't support specifying Redis TLS endpoints, like tls://redis.server.example

I'd like to add support for that style of Redis hosts in RedisConnectionPool, what do you think?

Details

Related Gerrit Patches:

Event Timeline

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 5 2019, 10:21 PM
kchapman added subscribers: aaron, kchapman.

tagging Performance for @aaron to provide input into the proposal.

kchapman triaged this task as Medium priority.Nov 13 2019, 7:15 PM
eprodromou added a subscriber: eprodromou.

We think this makes sense. Watching for a patch.

Gilles moved this task from Inbox to Radar on the Performance-Team board.Dec 2 2019, 9:14 PM
Gilles edited projects, added Performance-Team (Radar); removed Performance-Team.
aaron added a comment.Dec 5 2019, 8:06 AM

The RedisConnectionPool patch idea seems reasonable to me.

Change 554966 had a related patch set uploaded (by Juan Osorio (Microsoft); owner: Juan Osorio (Microsoft)):
[mediawiki/core@master] Adds support for TLS to RedisConnectionPool

https://gerrit.wikimedia.org/r/554966