I recently updated from 0.8 to 0.9.0 and now to 1.0.0-rc.1. Since 0.9 cloning Git repositories via HTTPS signed by a private CA fail.
skip_verify nor mounting custom CA file (preferred solution) work.
.drone.yml (NOT working)
kind: pipeline name: default clone: git: image: plugins/git depth: 10 skip_verify: true steps: [...]
Clone step always fails with:
Initialized empty Git repository in /drone/src/.git/ + git fetch --depth=10 origin +refs/heads/develop: fatal: unable to access 'https://git.example.com/org/repo.git/': SSL certificate problem: unable to get local issuer certificate
Using the legacy syntax works:
clone: git: image: plugins/git depth: 10 skip_verify: true pipeline: [...]
However due to the migration of Matrix builds it obviously has to be migrated for most projects.
The Git server is running Gitea with
GITEA_SKIP_VERIFY=false which works fine with mounting the CA file mentioned above on the Server node:
drone-server: volumes: - /my/custom/ca-certificates.crt:/etc/ssl/certs/ca-certificates.crt [...]
Do I need to make anything different when using v1.0 here?