Red Hat Bugzilla – Bug 1276255
golang-1.5 breaks tls handshake certificate chain verification
Last modified: 2015-10-29 10:53:10 EDT
Description of problem:
When building kubernetes with go-1.5, 'kubectl exec --v=9 mock /bin/sh -i' ends with "tls: handshake did not verify certificate chain". This does not happen with go-1.4,
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Based on https://github.com/golang/go/issues/12024, it should be fixed.
This PR  introduces the issue. This PR  is supposed to fix it. Does not appear so. Maybe it is a question of correct configuration.
Confirming it is fixed in golang. Kubernetes upstream has refactored and patched the code for TLS connection in 1.2. Backporting the patch to 1.0.6 solves the issue.