Uploaded image for project: 'Percona Server'
  1. Percona Server
  2. PS-5620

Docker image does not support supplying custom TLS certificates

    Details

    • Type: Bug
    • Status: Open
    • Priority: Medium
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Packaging
    • Labels:
      None

      Description

      When supplying TLS certificates and configuring --ssl-* properties the startup will fail with

        

      ...
      Database initialized
      Initializing certificates
      2019-05-10 23:54:54 [ERROR] Could not find OpenSSL on the system
      

       

      This seems to be caused by this code:

       

      		if command -v mysql_ssl_rsa_setup > /dev/null && [ ! -e "$DATADIR/server-key.pem" ]; then
      			# https://github.com/mysql/mysql-server/blob/23032807537d8dd8ee4ec1c4d40f0633cd4e12f9/packaging/deb-in/extra/mysql-systemd-start#L81-L84
      			echo 'Initializing certificates'
      			mysql_ssl_rsa_setup --datadir="$DATADIR"
      			echo 'Certificates initialized'
      		fi
      
      

       

      mysql_ssl_rsa_setup seems to rely on running the openssl cli, which is not installed in the image, so this process fails.

       

      Tested on percona:5.7 images. 

        Smart Checklist

          Attachments

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                agarner Andrew Garner
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: