You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Right now when passing tls flags to k3s with mysql, kine sets a custom tls config with the name kine, which always verify server certificate.
To Reproduce
start mysql database with tls
start k3s server with dsn that have tls=skip-verify and pass only cert/key and not the cacrt
Expected behavior
k3s should start without verifying the server cert
Actual behavior
k3s will fail with message: x509: certificate signed by unknown authority
Version:
v1.0.0-rc5
Describe the bug
Right now when passing tls flags to k3s with mysql, kine sets a custom tls config with the name kine, which always verify server certificate.
To Reproduce
Expected behavior
k3s should start without verifying the server cert
Actual behavior
k3s will fail with message:
x509: certificate signed by unknown authority
Additional context
https://github.com/rancher/kine/blob/master/pkg/drivers/mysql/mysql.go#L142-L146
this can be solved by passing a custom parameter to the dsn to skip server cert verification and parsing it from kine library
The text was updated successfully, but these errors were encountered: