Details
-
Bug
-
Status: Closed (View Workflow)
-
Critical
-
Resolution: Fixed
-
10.2(EOL)
Description
http://buildbot.askmonty.org/buildbot/builders/win32-debug/builds/4916/steps/test/logs/stdio
main.ssl_connect w2 [ fail ]
|
Test ended at 2017-08-10 09:47:19
|
|
|
CURRENT_TEST: main.ssl_connect
|
mysqltest: At line 13: query 'connect test_con1,localhost,root,,,,,SSL' failed: 2026: Unknown SSL error (0x80090308)
|
|
|
- saving 'D:/win32-debug/build/mysql-test/var/2/log/main.ssl_connect/' to 'D:/win32-debug/build/mysql-test/var/log/main.ssl_connect/'
|
|
Attachments
Issue Links
- duplicates
-
-
- Closed
-
- relates to
-
-
- Closed
-
-
-
- Closed
-
-
CONC-418 Use FormatMessage to get error string for unknown Schannel error codes
-
- Closed
-
-
-
- Closed
-
Activity
Unfortunately, there is some missing piece of the puzzle
wlad@workpc:~$ ./01_bootintermediateca.sh
Generating RSA private key, 4096 bit long modulus
...................................................................................................................................................................................++++
...............................................................................................................++++
e is 65537 (0x010001)
Enter pass phrase for intermediate/private/intermediate.key.pem:
Verifying - Enter pass phrase for intermediate/private/intermediate.key.pem:
Enter pass phrase for intermediate/private/intermediate.key.pem:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
Country Name (2 letter code) [GB]:
State or Province Name [England]:
Locality Name []:
Organization Name [Alice Ltd]:
Organizational Unit Name []:
Common Name []:
Email Address []:
Using configuration from openssl.cnf
Can't open openssl.cnf for reading, No such file or directory
140217668604352:error:02001002:system library:fopen:No such file or directory:../crypto/bio/bss_file.c:72:fopen('openssl.cnf','r')
140217668604352:error:2006D080:BIO routines:BIO_new_file:no such file:../crypto/bio/bss_file.c:79:
chmod: cannot access 'intermediate/certs/intermediate.cert.pem': No such file or directory
cat: intermediate/certs/intermediate.cert.pem: No such file or directory
cat: certs/ca.cert.pem: No such file or directory
I created the intermediate and certs subdirectory, and maybe some other subdirectories it complained about,
but no luck
kpenza maybe you can just share the certficates generated with your script, that should be enough, right?
Vladislav Vaintroub Yes, sure. I have attached the generated certificates in tar file certificates.tar.
Thanks kpenza, those certificates were really helpful.
It appears that openssl (but not on some reason wolfssl), sends a lot of data in the server handshake, at once, and there was a bug reading large messages during the handshake in connector's code. This will be fixed with the next 10.2+
Vladislav Vaintroub I have attached myca.tar that I used to generate the CA certificates.
Note that the tar file needs to be extracted in the root of your home directory and you need to update the dir value in both intermediateca.cnf and rootca.cnf to reflect your home directory. Just execute the scripts in sequence of their prefix.