Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

LP #1341131: SSL MTR tests broken on CentOS 7

Description

**Reported in Launchpad by Laurynas Biveinis last update 24-03-2016 16:44:04

main.ssl [ fail ]
Test ended at 2014-07-12 17:31:25

CURRENT_TEST: main.ssl
mysqltest: At line 9: query 'connect ssl_con,localhost,root,,,,,SSL' failed: 2026: SSL connection error: error:00000001:lib(0):func(0):reason(1)

Affected tests:

rpl.rpl_heartbeat_ssl 'mix'
rpl.rpl_heartbeat_ssl 'row'
rpl.rpl_heartbeat_ssl 'mix'
rpl.rpl_heartbeat_ssl 'stmt'
rpl.rpl_heartbeat_ssl 'row'
rpl.rpl_ssl 'mix'
rpl.rpl_heartbeat_ssl 'stmt'
rpl.rpl_ssl 'row'
rpl.rpl_ssl 'mix'
rpl.rpl_ssl 'stmt'
rpl.rpl_ssl 'row'
rpl.rpl_ssl1 'mix'
rpl.rpl_ssl 'stmt'
rpl.rpl_ssl1 'row'
rpl.rpl_ssl1 'mix'
rpl.rpl_ssl1 'stmt'
rpl.rpl_ssl1 'row'
main.ssl_8k_key
main.ssl_8k_key
main.ssl_cipher
main.ssl_cipher
rpl.rpl_ssl1 'stmt'
main.ssl
main.ssl
main.ssl_compress
main.ssl_compress
main.ssl_connect
main.ssl_connect
main.percona_mysqlbinlog_ssl_compress
main.percona_mysqlbinlog_ssl_compress
main.openssl_1
main.openssl_1
main.percona_ssl_connections_count
main.percona_ssl_connections_count

Environment

None

Smart Checklist

Activity

Show:

George Lorch March 26, 2019 at 10:14 PM

Doesn't apply to >= 5.6 and 5.5 is not getting any more work.

lpjirasync January 20, 2018 at 11:27 PM

**Comment from Launchpad by: Laurynas Biveinis on: 13-07-2014 12:44:08

openssl_1 test still failing with a workaround because it's testing a removed cipher, reported as http://bugs.mysql.com/bug.php?id=73281. Not worth fixing by us until the current bug is fixed.

lpjirasync January 20, 2018 at 11:26 PM

**Comment from Launchpad by: Laurynas Biveinis on: 13-07-2014 12:35:04

An upstream bug, and it seems proper fix will require testsuite certificate regeneration, which is best left for upstream to fix IMHO.

A workaround is available of setting environment variable OPENSSL_ENABLE_MD5_VERIFY if needed.

lpjirasync January 20, 2018 at 11:26 PM

**Comment from Launchpad by: Laurynas Biveinis on: 12-07-2014 15:28:49

SSL error on the server side is
error:1409441B:SSL routines:SSL3_READ_BYTES:tlsv1 alert decrypt error

on the client side
error:0D0C50A1:asn1 encoding routines:ASN1_item_verify:unknown message digest algorithm
followed by
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed

Won't Do

Details

Assignee

Reporter

Labels

Priority

Smart Checklist

Created January 20, 2018 at 11:25 PM
Updated March 6, 2024 at 3:35 PM
Resolved March 26, 2019 at 10:14 PM
Configure