Bug #99497 Replication with SSL keep return error code 2026
Submitted: 9 May 2020 12:35 Modified: 11 May 2020 5:34
Reporter: Hetal Sharma Email Updates:
Status: Not a Bug Impact on me:
None 
Category:MySQL Server: Replication Severity:S3 (Non-critical)
Version: OS:Ubuntu
Assigned to: CPU Architecture:Any

[9 May 2020 12:35] Hetal Sharma
Description:
Replication with SSL keep return error code 2026

Thank you.

How to repeat:
The SSL connection worked with using mysql client like bleow:

mysql -h 1.2.3.4 -u back -p test --ssl-ca=/etc/mysql/ca.pem --ssl-cert=/etc/mysql/client-cert.pem --ssl-key=/etc/mysql/client-key.pem

But with the same SSL files not working in Replication setting:

CHANGE MASTER TO
MASTER_HOST='1.2.3.4',
MASTER_USER='back',
MASTER_PASSWORD='xxxxxx',
MASTER_SSL=1,
MASTER_SSL_CAPATH = '/etc/mysql',
MASTER_SSL_CA = '/etc/mysql/ca.pem',
MASTER_SSL_CERT = '/etc/mysql/client-cert.pem',
MASTER_SSL_KEY = '/etc/mysql/client-key.pem';

log keep showing:
# Starting slave from master's last position...
# IO status: Connecting to master
# IO thread running: Connecting
# IO error: 2026:error connecting to master 'user@host:port' - retry-time: 60  retries: 1
# SQL thread running: Yes
# SQL error: None
# Waiting for slave to synchronize with master
[11 May 2020 5:34] MySQL Verification Team
Hello Hetal,

We're sorry, but the bug system is not the appropriate forum for asking help on using MySQL products. Your problem is not the result of a bug.

For details on getting support for MySQL products see http://www.mysql.com/support/
You can also check our forums (free) at http://forums.mysql.com/

Thank you for your interest in MySQL.

Also, not enough information(MySQL version etc) was provided for us to be able to handle this issue as your report doesn't have MySQL server version most likely duplicate of Bug #85688 and please see Bug #85688. 

Related - Bug #75310

Also, please see https://dev.mysql.com/doc/mysql-security-excerpt/8.0/en/creating-ssl-files-using-openssl.h...

regards,
Umesh