[debian-mysql] Bug#851132: Bug#851132: /usr/sbin/mysqld: ssl_ciphers not working; mariadb built without TLS support?
Otto Kekäläinen
otto at debian.org
Mon Jan 16 14:57:25 UTC 2017
2017-01-15 11:49 GMT+02:00 Matthew Sackman <matthew at wellquite.org>:
> Hello,
>
> Thank you for your reply. I have read through the links you provided,
> though I'm afraid I'm still unable to fix this.
>
> I have ssl-ciphers set in my config, and I have even modified the init
> script so that --ssl is passed to mysql (though that should be implied).
> According to
> https://mariadb.com/kb/en/mariadb/secure-connections-overview/ that
> should be enough. However, I still get:
>
> MariaDB [(none)]> SHOW VARIABLES LIKE 'version_ssl_library';
> +---------------------+-------------+
> | Variable_name | Value |
> +---------------------+-------------+
> | version_ssl_library | YaSSL 2.4.2 |
> +---------------------+-------------+
> 1 row in set (0.00 sec)
>
> MariaDB [(none)]> SHOW VARIABLES LIKE 'have_ssl';
> +---------------+----------+
> | Variable_name | Value |
> +---------------+----------+
> | have_ssl | DISABLED |
> +---------------+----------+
> 1 row in set (0.00 sec)
>
> I can find nothing further in any docs as to how to get this DISABLED to
> change to a YES.
>
> Matthew
I looked at the build logs and any SSL tests pass, e.g.
sys_vars.have_openssl_basic w3 [ pass ] 4
sys_vars.have_ssl_basic w3 [ pass ] 4
sys_vars.ssl_cert_basic w1 [ pass ] 4
sys_vars.ssl_cipher_basic w1 [ pass ] 6
sys_vars.ssl_crl_basic w1 [ pass ] 1
sys_vars.ssl_crlpath_basic w1 [ pass ] 1
sys_vars.ssl_key_basic w1 [ pass ] 6
No test fails.
In the build options there is -DWITH_SSL=bundled
In general the build log is full of YaSSL references. Everything should be OK.
Please somebody help debug this :)
PS. Matthew: Remember to keep the bug e-mail included in your replies
so that others can track progress of the issue.
More information about the pkg-mysql-maint
mailing list