Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Get Qt Extensions
  • Unsolved
Collapse
Brand Logo
  1. Home
  2. Qt Development
  3. General and Desktop
  4. How to set cert for QSqlDatabase connection with SSL?
QtWS: Super Early Bird Tickets Available!

How to set cert for QSqlDatabase connection with SSL?

Scheduled Pinned Locked Moved General and Desktop
4 Posts 3 Posters 8.3k Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • M Offline
    M Offline
    mateuszzz88
    wrote on last edited by
    #1

    Hello,

    I am trying to connect to MySQL db over SSL, but I get an error: "SSL connection error QMYSQL: Unable to connect"
    I followed procedure from "here":http://dev.mysql.com/doc/refman/5.5/en/secure-create-certs.html (example 1) and set up my.cnf, server-side appearrs to work ok:
    @mysql> show variables like '%ssl%';
    +---------------+-----------------------------+
    | Variable_name | Value |
    +---------------+-----------------------------+
    | have_openssl | YES |
    | have_ssl | YES |
    | ssl_ca | /root/certs/ca-cert.pem |
    | ssl_capath | |
    | ssl_cert | /root/certs/server-cert.pem |
    | ssl_cipher | |
    | ssl_key | /root/certs/server-key.pem |
    +---------------+-----------------------------+@

    I have "QT += core gui sql ssl network" in .pro and connect with following code:
    @ QSqlDatabase db = QSqlDatabase::addDatabase("QMYSQL","asterisk");
    db.setHostName(iHostLineEdit->text());
    db.setDatabaseName("asterisk");
    db.setConnectOptions("CLIENT_SSL=1;CLIENT_IGNORE_SPACE=1");
    db.setUserName(iUserLineEdit->text());
    db.setPassword(iPassLineEdit->text());
    bool ok = db.open();@
    My guess (based on "this":http://dev.mysql.com/doc/refman/5.5/en/secure-using-ssl.html ) is that I have to set CA-cert.pem as certification authority cert. But how do I do that without any QSslSocket instance?

    EDIT
    in case: I work on windows with mingw; mysql connection without ssl works.

    1 Reply Last reply
    0
  • H Offline
    H Offline
    harryF
    wrote on last edited by
    #2

    According to the MySQL docs, the mysql_ssl_set() function needs to be called before opening the connection.

    I suggest that you create a feature request at bugreports.qt.nokia.com stating your problem and requesting additional connection options for setting SSL certificates.

    As a workaround, you have to call mysql_ssl_set() manually before calling QSqlDatabase::open(). QSqlDriver::handle() returns a QVariant containing the MYSQL* connection pointer. Pseudo code:

    @mysql_ssl_set(qvariant_cast<MYSQL *>(mySqlDatabase->driver->handle()), "...", ... @

    // happy hacking

    1 Reply Last reply
    0
  • M Offline
    M Offline
    mateuszzz88
    wrote on last edited by
    #3

    farryF, thank you for your answer, I'll try that API. If I succeed I'll post reqest - for now I'm not sure I set up certs correctly. I can connect to mysqld over ssl from commandline only when specyfying all: ca-cert, client-cert and client-key.

    1 Reply Last reply
    0
  • N Offline
    N Offline
    nicolas_rolando
    wrote on last edited by
    #4

    You can try this "simple solution":http://qt-project.org/forums/viewthread/24984/.
    Bye

    1 Reply Last reply
    0

  • Login
  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Get Qt Extensions
  • Unsolved