RethinkDB SSL Errors After Switching Back from LibreSSL to OpenSSL
The RethinkDB server which is installed from the rethinkdb package on Alpine 3.9 seems to no longer accept valid client certificates. Here are logs from one RethinkDB server where another server is trying to open a TLS connection to it:
Recursively removing directory /var/data/db/tmp
Initializing directory /var/data/db
Running rethinkdb 2.3.6 (GCC 8.2.0)...
Running on Linux 4.9.125-linuxkit x86_64
Loading data from directory /var/data/db
Listening for intracluster connections on port 29015
Listening for client driver connections on port 28015
Administrative HTTP connections are disabled.
Listening on cluster addresses: 127.0.0.1, 10.0.9.3
Listening on driver addresses: 127.0.0.1, 10.0.9.3
Listening on http addresses: 127.0.0.1, 10.0.9.3
Server ready, "b5cf9533c962_8id" 4739f661-9c4b-4992-aa28-9e81464220e8
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
error: Cluster server connection TLS handshake failed: sslv3 alert unsupported certificate (OpenSSL error 336151571)
Server got SIGTERM from pid 0, uid 0; shutting down...
Shutting down client connections...
All client connections closed.
Shutting down storage engine... (This may take a while if you had a lot of unflushed data in the writeback cache.)
Storage engine shut down.
(from redmine: issue id 9985, created on 2019-02-15)