mirror of https://github.com/k3s-io/k3s
fde87329cb
kubeadm uses certificate rotation to replace the initial high-power cert provided in --kubeconfig with a less powerful certificate on the masters. This requires that we pass the contents of the client config certData and keyData down into the cert store to populate the initial client. Add better comments to describe why the flow is required. Add a test that verifies initial cert contents are written to disk. Change the cert manager to not use MustRegister for prometheus so that it can be tested. |
||
|---|---|---|
| .. | ||
| bootstrap | ||
| BUILD | ||
| OWNERS | ||
| kubelet.go | ||
| kubelet_test.go | ||
| transport.go | ||
| transport_test.go | ||