maria-discuss team mailing list archive

Thread
Date

Galera cluster will not bootstrap with SST set to use TLS

To: maria-discuss@xxxxxxxxxxxxxxxxxxx
From: lejeczek <peljasz@xxxxxxxxxxx>
Date: Fri, 23 Apr 2021 08:36:08 +0100
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.8.1

Hi Guys.

I wonder if anybody sees the same or similar issues which Ido experience with SST, or maybe could try to reproduce itsimply by:


[sst]
tkey = /etc/my.cnf.d/certs/sst/sst.key
tcert = /etc/my.cnf.d/certs/sst/sst.crt

Yes, by having SST to use TLS.

If I do have those two params in my config then'galera_new_cluster' fails to bootstrap new cluster.(naturally all other bits to required are set with TLS)Suffices to take those out and cluster bootstrap okey, then,on such up&running cluster, I can on each node put thoseback in and, one by one, restart the service/server and...it works!?

I filled a bug report -https://jira.mariadb.org/browse/MDEV-25435 - and willappreciate if somebody can comment.

many thanks, L.