Trying to use innobackupex with SSL and cannot get it to work.
# innobackupex --version
innobackupex version 2.4.4 Linux (x86_64) (revision id: df58cf2)
# /etc/my.cnf [mysqld] block
ssl
ssl-ca=/etc/pki/MYSQL/ca-cert.pem
ssl-cert=/etc/pki/MYSQL/server-cert.pem
ssl-key=/etc/pki/MYSQL/server-key.pem
# $HOME/.my.cnf
[client]
user = __user__
password = __pass__
ssl-ca = /etc/pki/MYSQL/ca-cert.pem
ssl-cert = /etc/pki/MYSQL/client-cert.pem
ssl-key = /etc/pki/MYSQL/client-key.pem
If I use mysql on the command line to local host it works fine.
If I try the backup I get:
# innobackupex --defaults-file=/etc/my.cnf --slave-info --safe-slave-backup --compress --compress-threads=8 --stream=xbstream --parallel=8 ./ | nc 0.0.0.0 0000
160830 13:19:14 innobackupex: Starting the backup operation
IMPORTANT: Please check that the backup run completes successfully.
At the end of a successful backup run innobackupex
prints "completed OK!".
160830 13:19:14 version_check Connecting to MySQL server with DSN 'dbi:mysql:;mysql_read_default_group=xtrabackup;my sql_socket=/var/lib/mysql/mysql.sock' as '__user__' (using password: YES).
Failed to connect to MySQL server: DBI connect(';mysql_read_default_group=xtrabackup;mysq l_socket=/var/lib/mysql/mysql.sock','__user__',...) failed: SSL connection error at - line 1314
160830 13:19:14 Connecting to MySQL server host: localhost, user: __user__, password: set, port: 0, socket: /var/lib/mysql/mysql.sock
Failed to connect to MySQL server: Access denied for user '__user__'@'localhost' (using password: YES).
mysql command
# mysql
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 3564711
Server version: 5.6.21-69.0-log Percona Server (GPL), Release 69.0, Revision 675
Copyright (c) 2009-2014 Percona LLC and/or its affiliates
Copyright (c) 2000, 2014, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
[localhost] (__user__@(none)) 13:19:58 > status
--------------
mysql Ver 14.14 Distrib 5.6.21-69.0, for Linux (x86_64) using EditLine wrapper
Connection id: 3564711
Current database:
Current user: rootsec@localhost
SSL: Cipher in use is AES256-SHA
Current pager: stdout
Using outfile: ''
Using delimiter: ;
Server version: 5.6.21-69.0-log Percona Server (GPL), Release 69.0, Revision 675
Protocol version: 10
Connection: Localhost via UNIX socket
Server characterset: latin1
Db characterset: latin1
Client characterset: utf8
Conn. characterset: utf8
UNIX socket: /var/lib/mysql/mysql.sock
Uptime: 344 days 4 hours 29 min 58 sec
Threads: 3 Questions: 60704991 Slow queries: 2439 Opens: 1353 Flush tables: 1 Open tables: 1042 Queries per second avg: 2.041
--------------
I've tried taking --defaults-file out, adding --defaults-extra-file etc. and still nothing.
How are you supposed to backup using SSL?