apiserver

Commit Graph

Author	SHA1	Message	Date
sanwishe	1b6c1bf2dd	Structured Logging migration: for package staging/src/k8s.io/apiserver/pkg/server/dynamiccertificates Signed-off-by: sanwishe <jiang.mingzhi35@zte.com.cn> Kubernetes-commit: 6eb645088c41f5f9309ad27a3fe80ccebd18460d	2021-05-10 20:08:14 +08:00
Davanum Srinivas	5879417a28	switch over k/k to use klog v2 Signed-off-by: Davanum Srinivas <davanum@gmail.com> Kubernetes-commit: 442a69c3bdf6fe8e525b05887e57d89db1e2f3a5	2020-04-17 15:25:06 -04:00
Monis Khan	b37d21cc60	dynamic certs: pass valid object to event recorder Signed-off-by: Monis Khan <mok@vmware.com> Kubernetes-commit: 2cd6abece45bc62121097ce7cbe7f0d14b9be5e0	2020-03-04 09:54:27 -05:00
Monis Khan	dd3ae9c175	dynamic certs: use correct name with event recorder Signed-off-by: Monis Khan <mok@vmware.com> Kubernetes-commit: 3bc918e48427720938c731a6b26e9474b4819716	2020-03-03 18:40:34 -05:00
Monis Khan	091c53ac7a	dynamic certs: do not copy mutex via shallow copy of tls.Config go vet error: call of dynamiccertificates.NewDynamicServingCertificateController copies lock value: crypto/tls.Config contains sync.Once contains sync.Mutex Signed-off-by: Monis Khan <mok@vmware.com> Kubernetes-commit: 86a5993007e3c781749a5099b540307f65a4f377	2020-03-03 14:58:43 -05:00
David Eads	2e81ed6ee9	allow an SNI cert to be used to respond for a particular IP Kubernetes-commit: 2c8639deb70c5934109022372caa32ca029db473	2019-11-14 16:08:11 -05:00
David Eads	79c6550889	allow individual ca bundles to be empty in union Kubernetes-commit: 758f2ce44f82d68a1a67765823179c3f743e199d	2019-11-12 12:44:53 -05:00
David Eads	84d21cfff4	wire up a means to dynamically reload ca bundles for kube-apiserver Kubernetes-commit: 6beb96261e29754f2b7d0e44829eb6d15422cebf	2019-10-07 14:06:42 -04:00
Jack Kleeman	40fefa1b37	Plumb dynamic SNI certificates We create and use a dynamic certificate provider for the SNI serving certificates. Currently we only use static serving certificate providers, so the files are not reloaded, but we should be able to move to a provider that is able to reload later on. Kubernetes-commit: 84bc6b151d0726db0c737443874577f044e0e9c8	2019-10-08 19:03:56 +01:00
Jack Kleeman	8da4640a3d	Plumb dynamic serving certificates We create and use a dynamic certificate provider for the main apiserver serving certificates: SNI will be handled separately later. Currently we only use static serving certificate providers, so the files are not reloaded, but we should be able to move to a provider that is able to reload later on. Kubernetes-commit: 6f89f1027488aeba4af0786988c2fd2ace9a6f1d	2019-10-07 18:49:24 +01:00
David Eads	695d42bf49	wire dynamic tlsconfig up to apiserver Kubernetes-commit: abddbd87cdcf69053e9fc6e752ade7d92c6b9fd7	2019-10-04 08:37:26 -04:00

11 Commits