MySQL Bugs: #100765: Test cases of ssl failed because of expired certificates

Bug #100765	Test cases of ssl failed because of expired certificates
Submitted:	8 Sep 2020 9:09	Modified:	10 Sep 2020 8:32
Reporter:	zkong kong	Email Updates:
Status:	Duplicate	Impact on me:	None
Category:	MySQL Server: Tests	Severity:	S7 (Test Cases)
Version:	8.0.19, 8.0.21	OS:	Any
Assigned to:		CPU Architecture:	Any

Description:
Run mtr auth_sec.server_withssl_client_withssl and get the following error:
ERROR 2026 (HY000): SSL connection error: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
mysqltest: At line 60: Command "$MYSQL -uTanjotuser1 -hlocalhost -pabc --ssl-ca=$MYSQL_TEST_DIR/std_data/crl-ca-cert.pem --ssl-key=$MYSQL_TEST_DIR/std_data/crl-client-key.pem --ssl-cert=$MYSQL_TEST_DIR/std_data/crl-client-cert.pem -e "select current_user()"" failed.

Output from before failure:
exec of '/u01/kongzhi.kz/code/RDS_80/bu-Debug/runtime_output_directory//mysql --defaults-file=/u01/kongzhi.kz/code/RDS_80/bu-Debug/mysql-test/var/my.cnf -uTanjotuser1 -hlocalhost -pabc --ssl-ca=/u01/kongzhi.kz/code/RDS_80/mysql-test/std_data/crl-ca-cert.pem --ssl-key=/u01/kongzhi.kz/code/RDS_80/mysql-test/std_data/crl-client-key.pem --ssl-cert=/u01/kongzhi.kz/code/RDS_80/mysql-test/std_data/crl-client-cert.pem -e "select current_user()"' failed, error: 256, status: 1, errno: 0.

check the certificate found that it is expired:
openssl x509 -in ../../mysql-test/std_data/crl-client-cert.pem -noout -dates
notBefore=Jul  1 12:14:10 2019 GMT
notAfter=Jun 30 12:14:10 2020 GMT

How to repeat:
./mtr auth_sec.server_withssl_client_withssl

Suggested fix:
Follow the instruction of crl-certificate-readme.txt to regenerate the certificates

Hello zkong kong,

Thank you for the report and feedback.

regards,
Umesh

new certificates

Attachment: mysql-bug-data-100765.tar.gz (application/x-gzip, text), 11.31 KiB.

Duplicate of 

Bug#100055 SSL tests are failing because of an expired certificate

fixed in 8.0.22.