Bug #59628 Verification step needed in SSL cert creation example
Submitted: 20 Jan 2011 10:52 Modified: 14 Jul 2011 19:07
Reporter: Daniël van Eeden Email Updates:
Status: Closed Impact on me:
None 
Category:MySQL Server: Documentation Severity:S4 (Feature request)
Version:5.5 OS:Any
Assigned to: Paul Dubois CPU Architecture:Any
Tags: SSL
Triage: Needs Triage: D5 (Feature request)

[20 Jan 2011 10:52] Daniël van Eeden
Description:
On the secure-create-certs page in the reference manual the 1st example will create CA, server and client SSL/TLS certs.

Due to bug #59515 an extra verification step could make this information much more usefull.

An example of certificate verification:
$ cd mysql-5.5.8/mysql-test/std_data
$ openssl verify -CAfile cacert.pem server-cert.pem client-cert.pem 
server-cert.pem: OK
client-cert.pem: OK

How to repeat:
Read http://dev.mysql.com/doc/refman/5.5/en/secure-create-certs.html

Suggested fix:
--------------------------------------------------
# Verify the generated certificates
shell> openssl verify -CAfile ca-cert.pem server-cert.pem client-cert.pem
server-cert.pem: OK
client-cert.pem: OK
--------------------------------------------------
[29 Mar 2011 15:01] Miguel Solorzano
Thank you for the bug report.
[14 Jul 2011 19:07] Paul Dubois
Thank you for your bug report. This issue has been addressed in the documentation. The updated documentation will appear on our website shortly, and will be included in the next release of the relevant products.