File: gr_recovery_donor_public_key.result

package info (click to toggle)
mysql-8.0 8.0.43-3
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 1,273,924 kB
  • sloc: cpp: 4,684,605; ansic: 412,450; pascal: 108,398; java: 83,641; perl: 30,221; cs: 27,067; sql: 26,594; sh: 24,181; python: 21,816; yacc: 17,169; php: 11,522; xml: 7,388; javascript: 7,076; makefile: 2,194; lex: 1,075; awk: 670; asm: 520; objc: 183; ruby: 97; lisp: 86
file content (78 lines) | stat: -rw-r--r-- 4,928 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
 
include/group_replication.inc
Warnings:
Note	####	Sending passwords in plain text without SSL/TLS is extremely insecure.
Note	####	Storing MySQL user name or password information in the connection metadata repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START REPLICA; see the 'START REPLICA Syntax' in the MySQL Manual for more information.
[connection server1]

############################################################
# 1. Bootstrap group on server1.
[connection server1]
CREATE USER 'u1_caching_sha2_password'@'127.0.0.1' IDENTIFIED WITH 'caching_sha2_password' BY 'pwd';
GRANT REPLICATION SLAVE ON *.* TO 'u1_caching_sha2_password'@'127.0.0.1';
FLUSH PRIVILEGES;
include/start_and_bootstrap_group_replication.inc

############################################################
# 2. Prepare server2 configuration to force public key
#    authentication.
[connection server2]
SET @group_replication_recovery_get_public_key= @@GLOBAL.group_replication_recovery_get_public_key;
SET @group_replication_recovery_public_key_path= @@GLOBAL.group_replication_recovery_public_key_path;
SET @group_replication_recovery_use_ssl= @@GLOBAL.group_replication_recovery_use_ssl;
SET GLOBAL group_replication_recovery_use_ssl= FALSE;
SET @group_replication_recovery_retry_count= @@GLOBAL.group_replication_recovery_retry_count;
SET GLOBAL group_replication_recovery_retry_count= 1;
CHANGE REPLICATION SOURCE TO SOURCE_USER='u1_caching_sha2_password', SOURCE_PASSWORD='pwd' FOR CHANNEL 'group_replication_recovery';
Warnings:
Note	1759	Sending passwords in plain text without SSL/TLS is extremely insecure.
Note	1760	Storing MySQL user name or password information in the connection metadata repository is not secure and is therefore not recommended. Please consider using the USER and PASSWORD connection options for START REPLICA; see the 'START REPLICA Syntax' in the MySQL Manual for more information.
SET SESSION sql_log_bin= 0;
call mtr.add_suppression("There was an error when connecting to the donor server. Please check that group_replication_recovery channel credentials.*");
call mtr.add_suppression("For details please check performance_schema.replication_connection_status table*");
call mtr.add_suppression("Maximum number of retries when trying to connect to a donor reached. Aborting group replication incremental recovery.");
call mtr.add_suppression("Fatal error during the incremental recovery process of Group Replication. The server will leave the group.");
call mtr.add_suppression("Skipping leave operation: concurrent attempt to leave the group is on-going.");
call mtr.add_suppression("Can't locate server public key '.*mysql-test/std_data/invalid_rsa_public_key.pem'");
call mtr.add_suppression("Public key is not in Privacy Enhanced Mail format: '.*mysql-test/std_data/invalid_rsa_public_key.pem'");
call mtr.add_suppression("The server was automatically set into read only mode after an error was detected.");
SET SESSION sql_log_bin= 1;

############################################################
# 3. Disable fetch donor public key and do not set donor
#    public key, recovery must fail and the member status must
#    change to ERROR.
[connection server2]
SET GLOBAL group_replication_recovery_get_public_key= FALSE;
SET GLOBAL group_replication_recovery_public_key_path= "";
include/start_group_replication.inc
include/stop_group_replication.inc

############################################################
# 4. Disable fetch donor public key and do set a donor invalid
#    public key, recovery must fail and the member status must
#    change to ERROR.
[connection server2]
SET GLOBAL group_replication_recovery_get_public_key= FALSE;
SET GLOBAL group_replication_recovery_public_key_path= "MYSQL_TEST_DIR/std_data/invalid_rsa_public_key.pem";
include/start_group_replication.inc
include/stop_group_replication.inc

############################################################
# 5. Disable fetch donor public key and do set a donor valid
#    public key, recovery must succeed and the member status
#    must change to ONLINE.
[connection server2]
SET GLOBAL group_replication_recovery_get_public_key= FALSE;
SET GLOBAL group_replication_recovery_public_key_path= "MYSQL_TEST_DIR/std_data/rsa_public_key.pem";
include/start_group_replication.inc

############################################################
# 6. Clean up.
[connection server1]
DROP USER 'u1_caching_sha2_password'@'127.0.0.1';
[connection server2]
SET GLOBAL group_replication_recovery_use_ssl= @group_replication_recovery_use_ssl;
SET GLOBAL group_replication_recovery_retry_count= @group_replication_recovery_retry_count;
SET GLOBAL group_replication_recovery_get_public_key= @group_replication_recovery_get_public_key;
SET GLOBAL group_replication_recovery_public_key_path= @group_replication_recovery_public_key_path;
include/group_replication_end.inc