Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Unknown SSL error - MariaDB #519
Steps to reproduce this issue
The behavior is different on two PCs. On a desktop I can connect, on a laptop the error occurs.
Originally I had this issue, but it was solved by HeidiSQL 10.0.0.5460. Now I am able to connect to the DB via SSL.
I can always connect from Ubuntu via mysql client.
There is an open ticket related to TLS handshake problem.
The problem is in the self-signed certificate and CA deployment on the client.
I see that after
I have to say, that I am quite disappointed by the level of support. The issue is not even investigated by anyone more than 3 weeks :-(.
Great customer support ...
Thanks to @jacFerron for some hints ....
Be sure I am reading your comments here. Though HeidiSQL is not commercial, and so you cannot expect such support as in commercial products probably.
I also have no clue about the cause here. Apart from downgrading HeidiSQL to 9.5 I cannot tell you anything yet. The comments are also confusing, as the first post tells me it happened on 10.0, while the current version is 10.1. Also, do I understand right that one pc is running the SSL connection fine and the other one not?
I do not expect same support as for a commercial product, but at least when you don't know just say it, No problem at all.
Version is not important I've tried 10.0.X up and also 10.1 current. Same problem.
I keep the version same for reference purposes.
Yes, I have two PCs with almost same environment (W7 Pro, 64-bit, upgraded, HeidiSQL 10.0.0.5460, installed self-signed certificates etc.).
I can connect from one and not from the other.
This leads me to the conclusion that there is a problem with handling and trust to self-signed CA certificates.
Found this, which might be irrelevant, because it's for the Java Connector:
It is not the case. I see from wireshark log that I receive both CA and server cert to the client.
Do you use an external library for handling SSL?
In my recent commit 51da7c8 I am now setting
@mochour did you accidentally close this or is it fixed for you on MariaDB 10.1 ? Does it als run on MySQL 5.7 (or older) for you?
Loaded together? No, these both dlls are already there, but the newer one is preferred. The older one is currently just used as a fallback, when the other one was not installed, for some reason. But it seems the older one now does not throw this "Unknown SSL error" on older servers, while it does on MySQL 8 for example, where the newer one succeeds.