I'm trying to set up MySQL replication on a v.5.077 client/server over SSL.
As a first step, I have followed the instructions found at
http://dev.mysql.com/doc/refman/5.0/en/secure-using-ssl.html. I have also generated the certs by following the instructions provided at
http://dev.mysql.com/doc/refman/5.0/en/secure-create-certs.html. The server and client certs use different CNs.
I have the necessary ssl parameters to my.cnf, and show variables like '%ssl%' provides the following:
+---------------+----------------------------------+
| Variable_name | Value |
+---------------+----------------------------------+
| have_openssl | YES |
| have_ssl | YES |
| ssl_ca | /etc/mysql-certs/ca-cert.pem |
| ssl_capath | |
| ssl_cert | /etc/mysql-certs/server-cert.pem |
| ssl_cipher | |
| ssl_key | /etc/mysql-certs/server-key.pem |
+---------------+----------------------------------+
I have included the following in my client my.cnf file:
[client]
ssl-ca=/etc/mysql-certs/cacert.pem
ssl-cert=/etc/mysql-certs/client-cert.pem
ssl-key=/etc/mysql-certs/client-key.pem
Whenever I try to access the server using the following command from the client, I get password prompt and then the error:
[root@dv mysql-certs]# mysql -hserver.domain.com -ureplication -p
Enter password:
ERROR 2026 (HY000): SSL connection error
Any help would be appreciated.