Default is enabled from mysql data directory https://dev.mysql.com/doc/refman/5.7/en/creating-ssl-rsa-files-using-mysql.html One can override that with parameters you mentioned (and use CA signed keys as opposed to default opportunistic attempt)
I will check with upstream and return if I have something. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1828407 Title: mysql_ssl_rsa_setup generates server-key.pem inacessible by mysqld To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mysql-5.7/+bug/1828407/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs