[asterisk-users] cdr_mysql: Cannot connect to database server - SSL error: SSL_CTX_set_default_verify_paths failed
John Runyon
john at simplynuc.com
Mon Jun 8 05:57:40 CDT 2020
On Mon, 8 Jun 2020 at 05:18, Markus <universe at truemetal.org> wrote:
> Hi list!
>
> I'm getting this error frequently:
>
> ERROR[25193][C-0004f387]: cdr_mysql.c:203 mysql_log: Cannot connect to
> database server localhost: (2026) SSL connection error:
> SSL_CTX_set_default_verify_paths failed
>
"SSL_CTX_set_default_verify_paths() specifies that the default locations
from which CA certificates are loaded should be used." (
https://www.openssl.org/docs/man1.1.0/man3/SSL_CTX_set_default_verify_paths.html
)
"The SSL_CTX_set_default_verify_paths failed error occurs if paths to any
of the certificate files are invalid (either missing or have incorrect
permissions)." (
https://stackoverflow.com/questions/27031318/what-does-this-error-mean-in-mariadb-ssl-error-2026-hy000-ssl-connection-e/45083610
)
Sounds to me like your CApath / CAfile being used by MySQL doesn't exist,
and so it's unable to verify the certificate. You can try some of the
answers in that stack overflow thread... or just don't use SSL to connect
to a local MySQL instance. Unless you've done some weird configuration,
only the same user as one of the processes, or root, has the ability to
eavesdrop; and both could eavesdrop by attaching to the process (i.e. with
a debugger) even with SSL enabled.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-users/attachments/20200608/d00abe82/attachment.html>
More information about the asterisk-users
mailing list