github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-01 07:47:56 +00:00
Code Issues Projects Releases Wiki Activity

certificates default to tolerate no key encipherment

Browse Source
This commit is contained in:
Paco Xu 2022-08-03 16:39:55 +08:00
parent 685d639cb5
commit 3ace3eb74b
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pkg/apis/certificates/v1beta1/defaults.go
View File

@ -56,9 +56,9 @@ func DefaultSignerNameFromSpec(obj *certificatesv1beta1.CertificateSigningReques
// Set the signerName to 'legacy-unknown' as the CSR could not be // Set the signerName to 'legacy-unknown' as the CSR could not be
// recognised. // recognised.
return certificatesv1beta1.LegacyUnknownSignerName return certificatesv1beta1.LegacyUnknownSignerName
case IsKubeletClientCSR(csr, obj.Usages, false): case IsKubeletClientCSR(csr, obj.Usages, true):
return certificatesv1beta1.KubeAPIServerClientKubeletSignerName return certificatesv1beta1.KubeAPIServerClientKubeletSignerName
case IsKubeletServingCSR(csr, obj.Usages, false): case IsKubeletServingCSR(csr, obj.Usages, true):
return certificatesv1beta1.KubeletServingSignerName return certificatesv1beta1.KubeletServingSignerName
default: default:
return certificatesv1beta1.LegacyUnknownSignerName return certificatesv1beta1.LegacyUnknownSignerName