rpl_ssl1.test 2.62 KB
Newer Older
1
source include/have_ssl.inc;
2 3 4 5 6 7 8 9
source include/master-slave.inc;

# We don't test all types of ssl auth params here since it's a bit hard 
# until problems with OpenSSL 0.9.7 are unresolved

# creating replication user for whom ssl auth is required
# preparing playground
connection master;
10
grant replication slave on *.* to replssl@localhost require ssl;
11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26
create table t1 (t int);
save_master_pos;

#syncing with master
connection slave;
sync_with_master;

#trying to use this user without ssl
stop slave;
change master to master_user='replssl',master_password='';
start slave;

#showing that replication don't work
connection master;
insert into t1 values (1);
#reasonable timeout for changes to propagate to slave
27 28
let $wait_condition= SELECT COUNT(*) = 1 FROM t1;
source include/wait_condition.inc;
29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47
connection slave;
select * from t1;

#showing that replication could work with ssl params
stop slave;
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR
eval change master to master_ssl=1 , master_ssl_ca ='$MYSQL_TEST_DIR/std_data/cacert.pem', master_ssl_cert='$MYSQL_TEST_DIR/std_data/client-cert.pem', master_ssl_key='$MYSQL_TEST_DIR/std_data/client-key.pem';
start slave;

#avoiding unneeded sleeps
connection master;
save_master_pos;
connection slave;
sync_with_master;

#checking that replication is ok
select * from t1;

#checking show slave status
48 49 50
let $status_items= Master_SSL_Allowed, Master_SSL_CA_Path, Master_SSL_CA_File, Master_SSL_Cert, Master_SSL_Key;
source include/show_slave_status.inc;
source include/check_slave_is_running.inc;
51 52 53 54 55 56

#checking if replication works without ssl also performing clean up
stop slave;
change master to master_user='root',master_password='', master_ssl=0;
start slave;
connection master;
57
drop user replssl@localhost;
58 59 60 61
drop table t1;
save_master_pos;
connection slave;
sync_with_master;
62 63
source include/show_slave_status.inc;
source include/check_slave_is_running.inc;
64
# End of 4.1 tests
msvensson@pilot.blaudden's avatar
msvensson@pilot.blaudden committed
65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89

# Start replication with ssl_verify_server_cert turned on
connection slave;
stop slave;
--replace_result $MYSQL_TEST_DIR MYSQL_TEST_DIR
eval change master to
 master_host="localhost",
 master_ssl=1 ,
 master_ssl_ca ='$MYSQL_TEST_DIR/std_data/cacert.pem',
 master_ssl_cert='$MYSQL_TEST_DIR/std_data/client-cert.pem',
 master_ssl_key='$MYSQL_TEST_DIR/std_data/client-key.pem',
 master_ssl_verify_server_cert=1;
start slave;

connection master;
create table t1 (t int);
insert into t1 values (1);

sync_slave_with_master;

echo on slave;
#checking that replication is ok
select * from t1;

#checking show slave status
90 91
source include/show_slave_status.inc;
--source include/check_slave_is_running.inc
msvensson@pilot.blaudden's avatar
msvensson@pilot.blaudden committed
92 93 94 95

connection master;
drop table t1;
sync_slave_with_master;