[PS-5620] Modify Docker image to support supplying custom TLS certificates - Percona JIRA

XML

Word

Printable

Details

Type: Bug
Status: Done
Priority: Medium
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 5.7.30-33, 8.0.20-11, 5.6.49-89.0
Component/s: Packaging
Labels:
None

Description

When supplying TLS certificates and configuring --ssl-* properties the startup will fail with

...
Database initialized
Initializing certificates
2019-05-10 23:54:54 [ERROR] Could not find OpenSSL on the system

This seems to be caused by this code:

		if command -v mysql_ssl_rsa_setup > /dev/null && [ ! -e "$DATADIR/server-key.pem" ]; then
			# https://github.com/mysql/mysql-server/blob/23032807537d8dd8ee4ec1c4d40f0633cd4e12f9/packaging/deb-in/extra/mysql-systemd-start#L81-L84
			echo 'Initializing certificates'
			mysql_ssl_rsa_setup --datadir="$DATADIR"
			echo 'Certificates initialized'
		fi

mysql_ssl_rsa_setup seems to rely on running the openssl cli, which is not installed in the image, so this process fails.

Tested on percona:5.7 images.

Attachments

Activity

People

Assignee:: Illia Pshonkin (Inactive)

Reporter:: Andrew Garner

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 11/May/19 2:07 AM

Updated:: 27/Jul/20 1:56 PM

Resolved:: 12/May/20 12:51 PM

Time Tracking

Estimated:

Not Specified

Remaining:

Logged: