Package: mariadb-server
Version: 10.1.44-0+deb9u1
Severity: normal
When I try to connect to MariaDB 10.1.44 with mariadb-client (Ver 15.1 Distrib
10.3.22-MariaDB) and the --ssl-verify-server-cert option set, I get the
following error message:
ERROR 2026 (HY000): SSL connection error: The certificate is NOT trusted. The
certificate issuer is unknown.
The CN of the server.crt is the hostname and the certificate seem alright:
# openssl verify -CAfile ca.pem server.crt
server.crt: OK
Connecting to MariaDB 10.4 with --ssl-verify-server-cert works fine. It would be
nice if you could help me to understand the issue here.
-- System Information:
Debian Release: 9.12
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500,
'oldstable'), (350, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.9.0-12-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages mariadb-server depends on:
ii mariadb-server-10.1 10.1.44-0+deb9u1
mariadb-server recommends no packages.
mariadb-server suggests no packages.
-- no debconf information
