Public bug reported:
5.7.26-0ubuntu0.18.04.1
MySQL 5.7 should sort of automatically get around with SSL key generation.
The problem is that included mysql_ssl_rsa_setup script creates
/var/lib/mysql/server-key.pem with rw permissions for root
But it has to be readable by mysqld to be of any usefulness
say "chown :mysql" and "chmod g+r" solved it for me.
I wonder if this can be included in the script mentioned so that it works out
of the box.
askubuntu etc is filled with 'advice' to go to mysql official doc which does
not help, as the recommendations henerate limited permission files again.
By default:
[Warning] Failed to set up SSL because of the following SSL library error: SSL
context is not usable without certificate and private key
after mysql_ssl_rsa_setup:
[ERROR] SSL error: Unable to get private key from 'server-key.pem'
after chown fix:
[Warning] CA certificate ca.pem is self signed.
** Affects: mysql-5.7 (Ubuntu)
Importance: Undecided
Status: New
** Tags: mysql mysqld server-key.pem
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828407
Title:
mysql_ssl_rsa_setup generates server-key.pem inacessible by mysqld
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/mysql-5.7/+bug/1828407/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
