The S3 backup MySQL Binlogs certificate verification fails

Certificate skipping verifyTLS: false has no effect, But scheduled backups work

2022/10/23 12:21:19 ERROR: collect binlog files: get last uploaded gtid set: read last gtid set: Get "https://minio.minio.svc.cluster.local/binlog/last-binlog-set-40837397-52bc-11ed-95c2-1efffc9cf9af": x509: certificate signed by unknown authority

Helm chart snippet:

backup:
  enabled: true
  image: ""
  # serviceAccountName: percona-xtradb-cluster-operator
  imagePullPolicy: IfNotPresent
  imagePullSecrets: []
  # - name: private-registry-credentials
  pitr:
    enabled: true
    storageName: s3-binlogs
    timeBetweenUploads: 60
    resources:
      requests: {}
      limits: {}
  storages:
    s3-binlogs:
      type: s3
      verifyTLS: false
      s3:
        bucket: binlog
        credentialsSecret: minio-secret
        region: us-west-2
        endpointUrl: https://minio.minio.svc.cluster.local
    s3-backup:
      type: s3
      verifyTLS: false
      s3:
        bucket: mysql
        credentialsSecret: minio-secret
        region: us-west-2
        endpointUrl: https://minio.minio.svc.cluster.local
  schedule:
    - name: "daily-backup"
      schedule: "00 00 * * *"
      keep: 5
      storageName: s3-backup
1 Like

@Draken,
If you set verifyTLS: true do the backups fail, or does it produce the same message and still succeed? If so, yes, that’s a bug.

1 Like

@matthewb
Set verifyTS: true Backup still fails, this should be a bug

1 Like

Hi @Draken can you please report to https://jira.percona.com/projects/K8SPXC

1 Like