This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

SSL Errors after upgrading from MySQL 5.7 to 8

Posted on 03-11-2024 03:53 PM
R0bdiabl0
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Because mysql 5.7 has reached EOL, we decided to upgrade our sql instance to the latest version. We cloned our database and ran the upgrade on it and it succeeded without any noticeable errors. We could see the data on the cloned instance.

Then we ran the upgrade on the production instance. It upgraded quickly and also appeared to upgrade successfully. Our apps were connecting through the sql proxy and were functioning as normal. Then, as we tried to connect to the instance using our sql client, we received unknown SSL errors (SSL Connection Error: Unknown error number.)

We require the SSL client certificates generated by the instance for any public connection. This worked previously to the upgrade. So we figured we needed to delete and reissue the certificates, which we did. This didn't work and we received the same error.

So we checked the error logs and this is what we are seeing when ever the instance starts or restarts:

```
2024-03-11T22:35:07.325655Z 0 [Note] [MY-######] [Server] Skipping generation of SSL certificates as options related to SSL are specified.
2024-03-11T22:35:07.329112Z 0 [Warning] [MY-#####] [Server] Server SSL certificate doesn't verify: unable to get local issuer certificate
2024-03-11T22:35:07.329836Z 0 [Warning] [MY-######] [Server] CA certificate /mysql/datadir/client_ca_cert.pem is self signed.
2024-03-11T22:35:07.330356Z 0 [System] [MY-######] [Server] Channel mysql_main configured to support TLS. Encrypted connections are now supported for this channel.
2024-03-11T22:35:07.331135Z 0 [Warning] [MY-######] [Server] Failed to initialize TLS for channel: mysql_admin. See below for the description of exact issue.
2024-03-11T22:35:07.331613Z 0 [Warning] [MY-######] [Server] Failed to set up SSL because of the following SSL library error: SSL context is not usable without certificate and private key
2024-03-11T22:35:07.331994Z 0 [System] [MY-######] [Server] No TLS configuration was given for channel mysql_admin; re-using TLS configuration of channel mysql_main.
```

Not sure if this has anything to do with it but because it's SSL related, wasn't sure. Any ideas?

Solved Solved
0 1 324
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
R0bdiabl0
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

It appears that if you use an older client like Sequel Pro, it may not have the latest required SSL certs or libraries to connect properly. I moved to a different client and I can connect just fine.

View solution in original post

Jump to Solution
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
R0bdiabl0
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

It appears that if you use an older client like Sequel Pro, it may not have the latest required SSL certs or libraries to connect properly. I moved to a different client and I can connect just fine.

Jump to Solution
0 Likes