2007-03-05 10:03:42 +01:00
|
|
|
source include/have_ssl.inc;
|
2003-09-01 15:16:20 +04:00
|
|
|
source include/master-slave.inc;
|
|
|
|
|
|
|
|
# We don't test all types of ssl auth params here since it's a bit hard
|
|
|
|
# until problems with OpenSSL 0.9.7 are unresolved
|
|
|
|
|
|
|
|
# creating replication user for whom ssl auth is required
|
|
|
|
# preparing playground
|
|
|
|
connection master;
|
2005-08-10 13:30:53 -07:00
|
|
|
grant replication slave on *.* to replssl@localhost require ssl;
|
2003-09-01 15:16:20 +04:00
|
|
|
create table t1 (t int);
|
|
|
|
save_master_pos;
|
|
|
|
|
|
|
|
#syncing with master
|
|
|
|
connection slave;
|
|
|
|
sync_with_master;
|
|
|
|
|
|
|
|
#trying to use this user without ssl
|
|
|
|
stop slave;
|
|
|
|
change master to master_user='replssl',master_password='';
|
|
|
|
start slave;
|
|
|
|
|
|
|
|
#showing that replication don't work
|
|
|
|
connection master;
|
|
|
|
insert into t1 values (1);
|
|
|
|
#reasonable timeout for changes to propagate to slave
|
2007-12-06 18:27:10 +03:00
|
|
|
let $wait_condition= SELECT COUNT(*) = 1 FROM t1;
|
|
|
|
source include/wait_condition.inc;
|
2003-09-01 15:16:20 +04:00
|
|
|
connection slave;
|
|
|
|
select * from t1;
|
|
|
|
|
|
|
|
#showing that replication could work with ssl params
|
|
|
|
stop slave;
|
|
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR
|
|
|
|
eval change master to master_ssl=1 , master_ssl_ca ='$MYSQL_TEST_DIR/std_data/cacert.pem', master_ssl_cert='$MYSQL_TEST_DIR/std_data/client-cert.pem', master_ssl_key='$MYSQL_TEST_DIR/std_data/client-key.pem';
|
|
|
|
start slave;
|
|
|
|
|
|
|
|
#avoiding unneeded sleeps
|
|
|
|
connection master;
|
|
|
|
save_master_pos;
|
|
|
|
connection slave;
|
|
|
|
sync_with_master;
|
|
|
|
|
|
|
|
#checking that replication is ok
|
|
|
|
select * from t1;
|
|
|
|
|
|
|
|
#checking show slave status
|
|
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR $MASTER_MYPORT MASTER_MYPORT
|
2007-06-11 22:15:39 +02:00
|
|
|
--replace_column 1 # 6 # 7 # 8 # 9 # 10 # 11 # 16 # 22 # 23 # 33 # 35 # 36 #
|
2007-03-29 15:09:57 +02:00
|
|
|
query_vertical show slave status;
|
2003-09-01 15:16:20 +04:00
|
|
|
|
|
|
|
#checking if replication works without ssl also performing clean up
|
|
|
|
stop slave;
|
|
|
|
change master to master_user='root',master_password='', master_ssl=0;
|
|
|
|
start slave;
|
|
|
|
connection master;
|
2006-04-18 18:10:47 +02:00
|
|
|
drop user replssl@localhost;
|
2003-09-01 15:16:20 +04:00
|
|
|
drop table t1;
|
|
|
|
save_master_pos;
|
|
|
|
connection slave;
|
|
|
|
sync_with_master;
|
|
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR $MASTER_MYPORT MASTER_MYPORT
|
2007-06-11 22:15:39 +02:00
|
|
|
--replace_column 1 # 6 # 7 # 8 # 9 # 10 # 11 # 16 # 22 # 23 # 33 # 35 # 36 #
|
2007-03-29 15:09:57 +02:00
|
|
|
query_vertical show slave status;
|
2005-07-28 03:22:47 +03:00
|
|
|
|
|
|
|
# End of 4.1 tests
|
2007-03-29 16:11:02 +02:00
|
|
|
|
|
|
|
# Start replication with ssl_verify_server_cert turned on
|
|
|
|
connection slave;
|
|
|
|
stop slave;
|
|
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR
|
|
|
|
eval change master to
|
|
|
|
master_host="localhost",
|
|
|
|
master_ssl=1 ,
|
|
|
|
master_ssl_ca ='$MYSQL_TEST_DIR/std_data/cacert.pem',
|
|
|
|
master_ssl_cert='$MYSQL_TEST_DIR/std_data/client-cert.pem',
|
|
|
|
master_ssl_key='$MYSQL_TEST_DIR/std_data/client-key.pem',
|
|
|
|
master_ssl_verify_server_cert=1;
|
|
|
|
start slave;
|
|
|
|
|
|
|
|
connection master;
|
|
|
|
create table t1 (t int);
|
|
|
|
insert into t1 values (1);
|
|
|
|
|
|
|
|
sync_slave_with_master;
|
|
|
|
|
|
|
|
echo on slave;
|
|
|
|
#checking that replication is ok
|
|
|
|
select * from t1;
|
|
|
|
|
|
|
|
#checking show slave status
|
|
|
|
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR $MASTER_MYPORT MASTER_MYPORT
|
2007-06-11 22:15:39 +02:00
|
|
|
--replace_column 1 # 6 # 7 # 8 # 9 # 10 # 11 # 16 # 22 # 23 # 33 # 35 # 36 #
|
2007-03-29 16:11:02 +02:00
|
|
|
query_vertical show slave status;
|
|
|
|
|
|
|
|
connection master;
|
|
|
|
drop table t1;
|
|
|
|
sync_slave_with_master;
|