PS 5.7 init script generates certs regardless of .cnf setting
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Percona Server moved to https://jira.percona.com/projects/PS | Status tracked in 5.7 | |||||
5.5 |
New
|
Undecided
|
Unassigned | |||
5.6 |
New
|
Undecided
|
Unassigned | |||
5.7 |
Triaged
|
Medium
|
Unassigned |
Bug Description
The /etc/init.d/mysql shipped with PS is not aware of the mysql options auto_generate_certs and sha256_
It checks for the absence of ${MYSQLDATA}
See line 154 of PS distributed /etc/init.d/mysql.
I consider this a bug as if I have my own custom pems/cas, specified in the .cnf, it should honor them and not create it's own.
These extra files could easily lead to confusion if myself or others in the future assume that the ${MYSQLDATA}/*pem files have any legitimacy. WRT to sysadmins, the presence of these files suggests they are indeed functional. In fact, they are useless and misleading.
Workaround by symlinking ${MYSQLDATA}
tags: | added: pkg |
See https:/ /github. com/percona/ percona- server/ blob/5. 7/build- ps/ubuntu/ percona- server- server- 5.7.mysql. init#L154