Percona XtraBackup moved to https://jira.percona.com/projects/PXB

Getting "Using the default of SSL_verify_mode of SSL_VERIFY_NONE" message when running innobackupex on CentOS 7

Bug #1557991 reported by Hrvoje Matijakovic
18
This bug affects 4 people
Affects Status Importance Assigned to Milestone
Percona XtraBackup moved to https://jira.percona.com/projects/PXB
Status tracked in 2.4
2.3
Triaged
Low
Unassigned
2.4
Triaged
Low
Unassigned

Bug Description

Getting "Using the default of SSL_verify_mode of SSL_VERIFY_NONE" message when running innobackupex on CentOS 7

[root@centos7 ~]# innobackupex --user=root /tmp/
160316 10:05:30 innobackupex: Starting the backup operation

IMPORTANT: Please check that the backup run completes successfully.
           At the end of a successful backup run innobackupex
           prints "completed OK!".

160316 10:05:30 version_check Connecting to MySQL server with DSN 'dbi:mysql:;mysql_read_default_group=xtrabackup;mysql_socket=/var/lib/mysql/mysql.sock' as 'root' (using password: NO).
160316 10:05:31 version_check Connected to MySQL server
160316 10:05:31 version_check Executing a version check against the server...
*******************************************************************
 Using the default of SSL_verify_mode of SSL_VERIFY_NONE for client
 is deprecated! Please set SSL_verify_mode to SSL_VERIFY_PEER
 together with SSL_ca_file|SSL_ca_path for verification.
 If you really don't want to verify the certificate and keep the
 connection open to Man-In-The-Middle attacks please set
 SSL_verify_mode explicitly to SSL_VERIFY_NONE in your application.
*******************************************************************
  at - line 237.
*******************************************************************
 Using the default of SSL_verify_mode of SSL_VERIFY_NONE for client
 is deprecated! Please set SSL_verify_mode to SSL_VERIFY_PEER
 together with SSL_ca_file|SSL_ca_path for verification.
 If you really don't want to verify the certificate and keep the
 connection open to Man-In-The-Middle attacks please set
 SSL_verify_mode explicitly to SSL_VERIFY_NONE in your application.
*******************************************************************
  at - line 237.
160316 10:05:32 version_check Done.
160316 10:05:32 Connecting to MySQL server host: localhost, user: root, password: not set, port: 0, socket: /var/lib/mysql/mysql.sock
Using server version 5.6.29-76.2
innobackupex version 2.3.4 based on MySQL server 5.6.24 Linux (x86_64) (revision id: e80c779)
...

[root@centos7 ~]# innobackupex --version
innobackupex version 2.3.4 Linux (x86_64) (revision id: e80c779)
[root@centos7 ~]# xtrabackup --version
xtrabackup version 2.3.4 based on MySQL server 5.6.24 Linux (x86_64) (revision id: e80c779)

See original description
Hrvoje Matijakovic (hrvojem)
description: updated
Sergei Glushchenko (sergei.glushchenko)
tags: added: version-check
Revision history for this message
sles (slesru) wrote :

looks like it is fixed in 2.4.5 , at least I don't have this error...

Revision history for this message
Paul Phillips (pau1phi11ips) wrote :

I'm getting the same error on 2.4.7. The MySQL server is on localhost, seems odd that it's trying to use SSL.

170420 00:30:01 version_check Connecting to MySQL server with DSN 'dbi:mysql:;mysql_read_default_group=xtrabackup' as 'xtrabackup' (using password: YES).
170420 00:30:01 version_check Connected to MySQL server
170420 00:30:01 version_check Executing a version check against the server...
*******************************************************************
 Using the default of SSL_verify_mode of SSL_VERIFY_NONE for client
 is deprecated! Please set SSL_verify_mode to SSL_VERIFY_PEER
 together with SSL_ca_file|SSL_ca_path for verification.
 If you really don't want to verify the certificate and keep the
 connection open to Man-In-The-Middle attacks please set
 SSL_verify_mode explicitly to SSL_VERIFY_NONE in your application.
*******************************************************************
  at - line 237.
*******************************************************************
 Using the default of SSL_verify_mode of SSL_VERIFY_NONE for client
 is deprecated! Please set SSL_verify_mode to SSL_VERIFY_PEER
 together with SSL_ca_file|SSL_ca_path for verification.
 If you really don't want to verify the certificate and keep the
 connection open to Man-In-The-Middle attacks please set
 SSL_verify_mode explicitly to SSL_VERIFY_NONE in your application.
*******************************************************************
  at - line 237.
170420 00:30:02 version_check Done.
170420 00:30:02 Connecting to MySQL server host: localhost, user: xtrabackup, password: set, port: not set, socket: not set
Using server version 10.1.22-MariaDB
xtrabackup version 2.4.7 based on MySQL server 5.7.13

Revision history for this message
Sergei Glushchenko (sergei.glushchenko) wrote :

Workaround is to add --no-version-check. It does not affect your backups.

Revision history for this message
Shahriyar Rzayev (rzayev-sehriyar) wrote :

Percona now uses JIRA for bug reports so this bug report is migrated to: https://jira.percona.com/browse/PXB-939

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.