github/client-go
1
0
Fork 0
mirror of https://github.com/kubernetes/client-go.git synced 2025-07-31 23:00:26 +00:00
Code Issues Projects Releases Wiki Activity
4,161 Commits 33 Branches 1,478 Tags 45 MiB
release-1.29
Commit Graph

23 Commits

Author SHA1 Message Date
Etienne Champetier
089cdcdf71 client-go: allow to set NotBefore in NewSelfSignedCACert() 
Signed-off-by: Etienne Champetier <e.champetier@ateme.com>

Kubernetes-commit: 44692a486f96bda80ffd2a2a132a651b47457391
 2023-06-28 00:01:34 -04:00
Etienne Champetier
d19c2b99a8 Revert "Make CA valid 1 hour in the past" 
Kubernetes-commit: 56c5c8f7eef25748389987a416d272bf8db2431d
 2023-06-27 08:57:59 -04:00
Etienne Champetier
d606148375 Make CA valid 1 hour in the past 
When running kubeadm / installing k8s early during boot,
the CA certificate can be generated before time is synchronised
and time is jumped backward.
Make notBefore 1 hour in the past to accept small clock jump.

Signed-off-by: Etienne Champetier <e.champetier@ateme.com>

Kubernetes-commit: e1735b9863777ff11ac35434e047c38dcce4b4f3
 2023-06-13 01:04:28 -04:00
Min Ni
a3b4cd32e5 update serial number to a valid non-zero number in ca certificate (#117791) 
* update serial number to a valid non-zero number in ca certificate

* fix the existing problem (0 SerialNumber in all certificate) as part of this PR in a separate commit

Kubernetes-commit: e865b30abd0a862697ff1d2526ea8897ee98a523
 2023-05-09 17:07:46 +00:00
Khachatur Ashotyan
bd24c4230e client-go: change permissions of key 
Kubernetes-commit: 49af62e64f33317ec0c12f9ed8ab8a0d4f365d44
 2023-02-17 14:21:24 +04:00
Khachatur Ashotyan
a7dbbf8255 client-go: change permissions of GenerateSelfSignedCertKeyWithFixtures generated cert 
Kubernetes-commit: 3cc99c5e77185ce26fd2d5513336e7229c5f7441
 2023-02-17 11:20:39 +04:00
Khachatur Ashotyan
be82893604 client-go: change permissions of directories and certs 
Kubernetes-commit: c941877438c2219318b0625f5b4e321efe324171
 2023-02-17 11:16:46 +04:00
Khachatur Ashotyan
03568a1821 client-go: make generating certificate/key permissions more secure (600) 
Kubernetes-commit: 5f81c3005f6d3aeb652a0626c3632ff68b036577
 2023-02-02 14:52:45 +04:00
inosato
27de641f75 Remove ioutil from client-go 
Signed-off-by: inosato <si17_21@yahoo.co.jp>

Kubernetes-commit: 88dfa51b6003c90e8f0a0508939a1d79950a40df
 2022-07-30 20:54:41 +09:00
Antonio Ojea
a6edfabde7 run hack/update-netparse-cve.sh 
Kubernetes-commit: 0cd75e8fec62a2531637e80bb950ac9983cac1b0
 2021-08-20 01:16:14 +02:00
Yusuke Tsutsumi
db078d2f1b client-go: NewSelfSignedCACert makes Go 1.15+ compatible cert (#100324) 
* NewSelfSignedCACert makes Go 1.15+ compatible cert

As of Go 1.15, X.509 certificates without a SAN no longer
fall back to the CommonName of the certificate.

https://golang.org/doc/go1.15#commonname

Updating NewSelfSignedCACert to produce certificates that
work with this change.

* add missing license

Kubernetes-commit: a41a3ed4ae77a7902577bdb50b35fc5f42ed7c60
 2021-05-18 10:29:21 +00:00
Knic Knic
d3d74fb975 fix cert path generation in windows 
Kubernetes-commit: a381e1b04ec070a63d76d51663b7b0cbf4ce5403
 2020-04-25 15:49:02 -07:00
Andrew Lytvynov
ba851ad197 Extract new keyutil package from client-go/util/cert 
This package contains public/private key utilities copied directly from
client-go/util/cert. All imports were updated.

Future PRs will actually refactor the libraries.

Updates #71004

Kubernetes-commit: 18458392ca24c85c688e655aace1afd04f864cbd
 2018-12-09 16:24:38 -08:00
mourya007
0c54a1af24 Re-Organize the pkutil library 
Kubernetes-commit: 7c37e91a6ddc8610444bb8106541a19bfb24f46a
 2019-01-23 12:01:32 +05:30
Andrew Lytvynov
8986d6b66c Remove unused funcs in certutil 
Kubernetes-commit: 162b3642921ef18a2f5d5489f034409936c42e27
 2018-11-13 10:26:43 -08:00
Christoph Blecker
7f1c01699a Update gofmt for go1.11 
Kubernetes-commit: 97b2992dc191a357e2167eff5035ce26237a4799
 2018-10-05 12:59:38 -07:00
mrIncompetent
30575d7a9f use signer interface for certificate creation 
Kubernetes-commit: ef04b17ad8097db22755af05e2889b4d73eaf99f
 2018-10-02 14:49:45 +02:00
liz
22e1ddcc48 Actually renew certificates (using on-disk CAs) 
Kubernetes-commit: 76be5ca581818227062f7d0638cb772bb862bdb9
 2018-08-29 17:57:02 -04:00
Dr. Stefan Schimanski
ad896870c5 apiserver: use fixtures for self-signed certs in test server 
Kubernetes-commit: 7deccb5b7a7c5224d3d90e1391dd22b2d1f1b9b9
 2018-07-06 12:04:38 +02:00
Jordan Liggitt
dd61bd2530 Split self-signed cert and CA 
Kubernetes-commit: 3d3cde45b73ec31c81fadbfd494387d141858a40
 2018-02-15 23:30:17 -05:00
halfcrazy
b6a34c5a00 fix typo in client-go 
Kubernetes-commit: 86801dee64215e76080fe8df83ffd1fb7df9e093
 2018-02-01 02:33:45 +08:00
Chao Xu
088dc4a30d manually sync with k8s.io/kubernetest at 17375fc59fff39135af63bd1750bb07c36ef873b, k8s.io/apimachinery at d90aa2c8531f13b0ca734845934c10dcb6a56ca7 2017-02-23 12:27:32 -08:00
Kubernetes Publisher
fcdf37233b published by bot 
(https://github.com/kubernetes/contrib/tree/master/mungegithub)

copied from https://github.com/kubernetes/kubernetes.git, branch master,
last commit is baaaf26609565b4299008018486ec75fb30903eb
 2017-01-25 15:19:43 +00:00