Skip to content

OpenShift over VPN: await_condition fails with peer closed connection without sending TLS close_notify #1915

@starpit

Description

@starpit

Current and expected behavior

When i use oc get deploy -w I see no issues. But when i use kube-rs on the same machine, at the same time (i.e. i do this concurrently) with this rust code:

await_condition(deployments, name, is_deployment_completed()).await?;

I get the following error:

Error: failed to probe for whether the condition is fulfilled yet: watch stream failed: Error reading events stream: ServiceError: error reading a body from connection

Caused by:
    0: watch stream failed: Error reading events stream: ServiceError: error reading a body from connection
    1: Error reading events stream: ServiceError: error reading a body from connection
    2: ServiceError: error reading a body from connection
    3: error reading a body from connection
    4: peer closed connection without sending TLS close_notify: https://docs.rs/rustls/latest/rustls/manual/_03_howto/index.html#unexpected-eof

I have tried both ring and aws_lc_rs, both result in the above error.

Possible solution

No response

Additional context

This is using an OpenShift server over a "tunnel all" Cisco Secure Connect VPN.

Environment

Client Version: v1.34.1
Kustomize Version: v5.7.1
Server Version: v1.31.11
Warning: version difference between client (1.34) and server (1.31) exceeds the supported minor version skew of +/-1

This is running OpenShift.

Configuration and features

kube = { version = "3.0.0", default-features = false, features = ["client", "runtime", "rustls-tls", "ring"], optional = true }
k8s-openapi = { version = "0.27.0", features = ["latest", "schemars"], optional = true }

YAML

No response

Affected crates

No response

Would you like to work on fixing this bug?

None

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions