1include/group_replication.inc 2Warnings: 3Note #### Sending passwords in plain text without SSL/TLS is extremely insecure. 4Note #### Storing MySQL user name or password information in the master info repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START SLAVE; see the 'START SLAVE Syntax' in the MySQL Manual for more information. 5[connection server1] 6server1 7################## FR8: GR do not follow SSL changes 8# Save the defaults 9SET @orig_ssl_ca= @@global.ssl_ca; 10SET @orig_ssl_cert= @@global.ssl_cert; 11SET @orig_ssl_key= @@global.ssl_key; 12SET @orig_group_replication_recovery_ssl_ca= @@global.group_replication_recovery_ssl_ca; 13SET @orig_group_replication_recovery_ssl_cert= @@global.group_replication_recovery_ssl_cert; 14SET @orig_group_replication_recovery_ssl_key= @@global.group_replication_recovery_ssl_key; 15# setting new values for ssl_cert, ssl_key and ssl_ca 16SET GLOBAL ssl_cert = "MYSQL_TEST_DIR/std_data/server-cert-sha512.pem"; 17SET GLOBAL ssl_key = "MYSQL_TEST_DIR/std_data/server-key-sha512.pem"; 18SET GLOBAL ssl_ca = "MYSQL_TEST_DIR/std_data/ca-sha512.pem"; 19ALTER INSTANCE RELOAD TLS; 20# Check that GR variables are not altered 21SELECT @@global.group_replication_recovery_ssl_ca = @orig_group_replication_recovery_ssl_ca, 22@@global.group_replication_recovery_ssl_cert = @orig_group_replication_recovery_ssl_cert, 23@@global.group_replication_recovery_ssl_key = @orig_group_replication_recovery_ssl_key; 24@@global.group_replication_recovery_ssl_ca = @orig_group_replication_recovery_ssl_ca 1 25@@global.group_replication_recovery_ssl_cert = @orig_group_replication_recovery_ssl_cert 1 26@@global.group_replication_recovery_ssl_key = @orig_group_replication_recovery_ssl_key 1 27# cleanup 28SET GLOBAL ssl_cert = @orig_ssl_cert; 29SET GLOBAL ssl_key = @orig_ssl_key; 30SET GLOBAL ssl_ca = @orig_ssl_ca; 31ALTER INSTANCE RELOAD TLS; 32include/group_replication_end.inc 33