github/client-go
1
0
Fork 0
mirror of https://github.com/kubernetes/client-go.git synced 2025-06-25 22:51:40 +00:00
Code Issues Projects Releases Wiki Activity

Revert "Make CA valid 1 hour in the past"

Browse Source 
Kubernetes-commit: 56c5c8f7eef25748389987a416d272bf8db2431d
This commit is contained in:
Etienne Champetier 2023-06-27 08:57:59 -04:00 committed by Kubernetes Publisher
parent 9186f40b18
commit d19c2b99a8
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
util/cert/cert.go
View File

@ -71,7 +71,7 @@ func NewSelfSignedCACert(cfg Config, key crypto.Signer) (*x509.Certificate, erro
Organization: cfg.Organization,
},
DNSNames: []string{cfg.CommonName},
NotBefore: now.Add(-time.Hour).UTC(), // valid an hour earlier to avoid flakes
NotBefore: now.UTC(),
NotAfter: now.Add(duration365d * 10).UTC(),
KeyUsage: x509.KeyUsageKeyEncipherment | x509.KeyUsageDigitalSignature | x509.KeyUsageCertSign,
BasicConstraintsValid: true,