Runnercache Selfsigned Certificate

Hello GitLab team,

How can I add a self-signed certificate from a self-hosted Minio server to the Gitlab runner configuration? My intention was to set a certificate file under the cache.s3 section, but there are no options in the documentation. I have also put the self signed cert in the system truststore, as well as in the /etc/gitlab-runner/certs directory. And I use the shell executor, not the docker executor. The runner is on a seperate self hosted machine.

The Self signed cert between the GitLab Server and the runner works perfectly.

I get the following error message, push and pull the artifact to the minio-server in the CI Pipeline:

tls: failed to verify certificate: x509: certificate signed by unknown authority
Failed to extract cache

gitlab-runner --version
Version:      17.4.0
Git revision: b92ee590
Git branch:   17-4-stable
GO version:   go1.22.5
Built:        2024-09-19T11:11:17+0000
OS/Arch:      linux/amd64

Are there any options to trust the selfsigned certificate and run the cache over https?

Best regards

Edited Oct 10, 2024 by Florian Weidner