[MDEV-28101] Letsencrypt certificate not working for SST encryption - Jira

XML

Word

Printable

Details

Type: Bug
Status: Open (View Workflow)
Priority: Major
Resolution: Unresolved
Affects Version/s: 10.6.7
Fix Version/s: 10.6
Component/s: Galera SST
Labels:
- SSL
- galera
- sst
Environment:
Ubuntu Server

Description

When trying to use a certificate issued by Letsencrypt to encrypt SST traffic an error occours which makes SST unable to continue and therefor breaks the cluster. The configuration is working with self signed certificates. It is a 2 node Cluster.
Letsencrypt is working to encrypt client connections.

The issue according to the logs "WSREP: Handshake failed: tlsv1 alert unknown ca"
shortened logs are attached

the config of second node is also attached (without username and passwort of BackupUser)

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

node2 config.txt
2 kB
2022-03-16 16:37
short.txt
8 kB
2022-03-16 16:34

Activity

People

Assignee:: Julius Goryavsky

Reporter:: Henri

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2022-03-16 16:38

Updated:: 2023-03-03 17:26

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.