Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

k3s can't utilize tls option with mysql external database #1093

Closed
galal-hussein opened this issue Nov 16, 2019 · 3 comments
Closed

k3s can't utilize tls option with mysql external database #1093

galal-hussein opened this issue Nov 16, 2019 · 3 comments
Labels
area/mysql kind/bug Something isn't working
Milestone
Backlog

Comments

@galal-hussein
Copy link
Contributor

galal-hussein commented Nov 16, 2019
edited
Loading

Version:
v1.0.0-rc5

Describe the bug
Right now when passing tls flags to k3s with mysql, kine sets a custom tls config with the name kine, which always verify server certificate.

To Reproduce

  • start mysql database with tls
  • start k3s server with dsn that have tls=skip-verify and pass only cert/key and not the cacrt

Expected behavior
k3s should start without verifying the server cert

Actual behavior
k3s will fail with message: x509: certificate signed by unknown authority

Additional context
https://github.com/rancher/kine/blob/master/pkg/drivers/mysql/mysql.go#L142-L146

this can be solved by passing a custom parameter to the dsn to skip server cert verification and parsing it from kine library
@galal-hussein galal-hussein added the kind/bug Something isn't working label Nov 16, 2019
@cjellick cjellick added this to the v1.x - Backlog milestone Nov 17, 2019
@cjellick
Copy link
Contributor

This is referenced in our documentation. So when we fix this bug, we need to update the docs.

@caroline-suse-rancher
Copy link
Contributor

Closing due to age

@tuxillo
Copy link

tuxillo commented Jun 16, 2024

Is this still the case? Why close and then remove it from Dev?

@tuxillo tuxillo mentioned this issue Jun 16, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/mysql kind/bug Something isn't working
Projects
K3s Backlog
Status: Closed
Milestone
Backlog
Development

No branches or pull requests
6 participants
@tuxillo @cjellick @galal-hussein @dereknola @davidnuzik @caroline-suse-rancher