Topic: MariaDB 10.11.8 to 10.11.11 Upgrade - Database Server Fails to Start
==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): v1.7.1
- Deployed with iRedMail Easy or the downloadable installer? Downloaded Installer
- Linux/BSD distribution name and version: Ubuntu 24.04.2 LTS
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MariaDB 10.11.8
- Web server (Apache or Nginx): nginx/1.24.0 (Ubuntu)
- Manage mail accounts with iRedAdmin-Pro? No
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
× mariadb.service - MariaDB 10.11.11 database server
Loaded: loaded (/usr/lib/systemd/system/mariadb.service; enabled; preset: enabled)
Drop-In: /etc/systemd/system/mariadb.service.d
└─override.conf
Active: failed (Result: exit-code) since Wed 2025-04-02 17:07:10 UTC; 43s ago
Duration: 14min 53.814s
Docs: man:mariadbd(8)
// Removed URL
Main PID: 27698 (code=exited, status=1/FAILURE)
Status: "MariaDB server is down"
CPU: 229ms
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [Note] InnoDB: log sequence number 3496107597; transaction id 6364558
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [Note] Plugin 'FEEDBACK' is disabled.
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [Note] InnoDB: Loading buffer pool(s) from /var/lib/mysql/ib_buffer_pool
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [Warning] You need to use --log-bin to make --expire-logs-days or --binlog-expire-logs-seconds work.
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [ERROR] Failed to setup SSL
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [ERROR] SSL error: SSL_CTX_set_default_verify_paths failed
Apr 02 17:07:10 some-server mariadbd[27698]: 2025-04-02 17:07:10 0 [ERROR] Aborting
Apr 02 17:07:10 some-server systemd[1]: mariadb.service: Main process exited, code=exited, status=1/FAILURE
Apr 02 17:07:10 some-server systemd[1]: mariadb.service: Failed with result 'exit-code'.
Apr 02 17:07:10 some-server systemd[1]: Failed to start mariadb.service - MariaDB 10.11.11 database server.Before Upgrade
===========
mysql Ver 15.1 Distrib 10.11.8-MariaDB, for debian-linux-gnu (x86_64) using EditLine wrapperMariaDB [(none)]> show global variables like '%ssl%';
+---------------------+-------------------------------+
| Variable_name | Value |
+---------------------+-------------------------------+
| have_openssl | YES |
| have_ssl | YES |
| ssl_ca | /etc/ssl/certs/iRedMail.crt |
| ssl_capath | |
| ssl_cert | /etc/ssl/certs/iRedMail.crt |
| ssl_cipher | |
| ssl_crl | |
| ssl_crlpath | |
| ssl_key | /etc/ssl/private/iRedMail.key |
| version_ssl_library | OpenSSL 3.0.13 30 Jan 2024 |
+---------------------+-------------------------------+
10 rows in set (0.001 sec)====
I used the Downloaded Installer on Jan 23rd, 2025 to install v1.7.1 (if l had waited another day, l would be on v1.7.2).
Everything has been working amazing since then, until l did an upgrade of packages including MariaDB components. Once l move from MariaDB 10.11.8 to 10.11.11, l get an exception with the SSL Certificates Not being found.
The /etc/my.cnf doesn't have the Certificate Settings, so am assuming that they were added as part of the Installer. Settings are below before the Upgrade.
However, since MariaDB 10.11.11 doesn't start AFTER the upgrade, so l cannot access the database to check the variable settings.
I wouldn't mind getting input before l a) post something on the MariaDB Forum b) set has_ssl to No - and then doing the upgrade.
Has anybody else experienced this issue, or suggestions on what to try?
----
Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.