github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
k3s/cmd
History
Kubernetes Submit Queue 2164f09bf9 Merge pull request #50832 from nckturner/external-ca 
Automatic merge from submit-queue (batch tested with PRs 50832, 51119, 51636, 48921, 51712)

kubeadm: Add support for using an external CA whose key is never stored in the cluster

We allow a kubeadm user to use an external CA by checking to see if ca.key is missing and skipping cert checks and kubeconfig generation if ca.key is missing.  We also pass an empty arg --cluster-signing-key-file="" to kube controller manager so that the csr signer doesn't start. 



**What this PR does / why we need it**:

This PR allows the kubeadm certs phase and kubeconfig phase to be skipped if the ca.key is missing but all other certs are present.  

**Which issue this PR fixes** : 

Fixes kubernetes/kubeadm/issues/280

**Special notes for your reviewer**:

@luxas @mikedanese @fabriziopandini 

**Release note**:

```release-note
kubeadm: Add support for using an external CA whose key is never stored in the cluster
```
 		2017-09-02 19:26:20 -07:00
..
clicheck Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
cloud-controller-manager Merge pull request #44680 from rrati/pvl-controller 2017-08-31 23:13:23 -07:00
gendocs Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
genkubedocs Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
genman Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
genswaggertypedocs Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
genutils Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
genyaml Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
gke-certificates-controller Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
hyperkube apiservers: add synchronous shutdown mechanism on SIGTERM+INT 2017-08-15 09:17:18 +02:00
importverifier Fix prefixing bug in import verifier 2017-08-29 12:17:08 -07:00
kube-apiserver add selfsubjectrulesreview api 2017-09-01 19:09:43 +08:00
kube-controller-manager Merge pull request #49257 from k82cn/k8s_42001 2017-08-31 23:13:20 -07:00
kube-proxy Merge pull request #47054 from caseydavenport/fix-masq-all 2017-08-30 01:36:25 -07:00
kubeadm Merge pull request #50832 from nckturner/external-ca 2017-09-02 19:26:20 -07:00
kubectl Use `select` to disable building static binaries if `--cpu=darwin`. 2017-08-14 09:56:05 -07:00
kubelet Kubelet side extension to support device allocation 2017-09-01 11:56:35 -07:00
kubemark Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
linkcheck Use buildozer to delete licenses() rules except under third_party/ 2017-08-11 09:32:39 -07:00
BUILD Remove seemingly obsolete binaries 2017-08-18 21:01:19 -07:00
OWNERS Updated top level owners file to match new format 2017-01-19 11:29:16 -08:00