SSL Connections with 5.5.33

  • Filter
  • Time
  • Show
Clear All
new posts

  • SSL Connections with 5.5.33

    So I had replication with SSL working with a master and slave both at Percona version 5.5.29. The slave was upgraded to 5.5.33 and I was unable to create an SSL connection. This is the error I get when trying to connect with with the Mysql commandline tool:

    ERROR 2026 (HY000): SSL connection error: ASN: bad other signature confirmation

    While doing some Google searches, there appears there are some OpenSSL vs yaSSL issues between these version of Percona MySQL. So I upgraded the server to be 5.5.33, but I'm still getting the same error.

    Can someone give me an idea on how to fix this. Do I need to regenerate the certificates/keys? I'd prefer a solution (if it exists) that doesn't require me to restart the master since it's a production server.

    Any help would be appreciated.

  • #2

    Are you giving full path of cert dir into SSL configuration in my.cnf / command-line? i.e /Users/.ssh/mysql-ssl-ca-cert.pem
    I would also like you check this checklist https://rtg.in.ua/2013/02/27/mysql-ssl-checklist/
    It can be related to this http://bugs.mysql.com/bug.php?id=67957 too.