Closed dulmandakh closed 1 month ago
@rassie hello, could you please see this issue. Thank you
Is the problem that ..data/MyOrg-RootCA.crt
should be ../data/MyOrg-RootCA.crt
?
it's copying symlink as is, but pointing file doesn't exists. it works find with cp -s
Oh, that's not nice, I should have seen that coming. In principle, cp -a
should be fine, we just don't consider dotted files when copying, but I think ..data
is a mount-point, which would not be copied correctly. The solution might be as simple as making a cp -aL
out of cp -a
.
I'm a bit time-constrained at the moment, someone care to make a PR with cp
changed and a bit of symlink magic in .test/tests/java-ca-certificates-update/
?
@dulmandakh - Thanks, we'll get round to this, but PR's are welcome as well :-)
@dulmandakh - Thanks, we'll get round to this, but PR's are welcome as well :-)
Hello, in Mongolia we're celebrating lunar new year, so I won't be able to work for next 3 4 days. Please feel free to create a fix.
My workaround for now:
volumeMounts:
- name: cacerts
mountPath: /certificates/MyOrg-RootCA.crt
subPath: MyOrg-RootCA.crt
Please add the exact image (with tag) that you are using
eclipse-temurin:11-jdk
Please add the version of Docker you are running
Kubernetes
What happened?
Created a ConfigMap that includes CA file (MyOrg-RootCA.crt in my example), then mounted it to /certificates directory as described on Docker Hub. Then I start the pod using Kustomization below.
I found ___cacertentrypoint.sh when I entered the container with shell, then I see below output when I run it.
After some investigation I found following contents in /usr/local/share/ca-certificates/.
It's broken symlink. Maybe need to use cp -s instead of cp -a.
Here is the contents of /certificates
kustomization.yaml
pod.yaml
Relevant log output
No response