`--skip-verify` flag does not work on `microk8s join`
See original GitHub issueWhen running the microk8s join
command, it is possible to bypass certificate validation using the --skip-verify
command. However, since PR https://github.com/ubuntu/microk8s/pull/1263, this does not appear to work as intended.
If a sha hash is present in the server connection, ex: microk8s join 192.168.50.4:25000/70cd002331e153d402d815fd21304237
, the --skip-verify
argument is ignored!
It appears that the verify
variable is overwritten in the if block on line 944 (see https://github.com/ubuntu/microk8s/blob/master/scripts/cluster/join.py#L944). It appears that this check for the sha hash ignores the current state of verify
.
I’m not sure if this is intended behavior or not, but it’s definitely misleading.
Inspection: inspection-report-20210712_014812.tar.gz
Issue Analytics
- State:
- Created 2 years ago
- Comments:8 (4 by maintainers)
Top GitHub Comments
Hi @ktsakalozos, I am seeing the same behaviour but, I have a verification fingerprint in my connection string and the
--skip-verify
flag is still being ignored.@smandalika You should run this command inside the Multipass VM where microk8s is running: