kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
17,507 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

47 Commits

Author SHA1 Message Date
Aaron Friel a714745382 Use exported interface to detect SSH key type 
Don't rely on the `golang.org/x/crypto` library to keep consistent,
non-exported type names.
 2022-06-15 17:57:29 -07:00
Ole Markus With ce2e877aeb Remove bazel files from vendor 2022-04-12 13:29:03 +02:00
Jake 191f54fa2f add support for ed25519 keys 2022-03-02 09:21:05 +00:00
justinsb aa04046ad0 Create helper functions for parsing public keys 
These are useful when verifying and creating PKI signatures.
 2021-12-18 19:42:39 -05:00
justinsb 3ec42f10c0 PKI library: Add initial support for EC keys 
EC keys are much shorter (at a given security level); we should
support them.
 2021-12-11 10:09:10 -05:00
Ciprian Hacman ea7df00719 Run hack/update-gofmt.sh 2021-12-01 22:39:50 +02:00
John Gardiner Myers 5687b0d5dc Weaken some interfaces 2021-06-21 23:11:47 -07:00
John Gardiner Myers 2300d89591 Rename pki.FindKeypair to FindPrimaryKeypair 2021-06-05 16:38:26 -07:00
John Gardiner Myers 0364a3af25 Refactor FindKeypair interfaces 2021-06-05 16:38:24 -07:00
Peter Rifel 4fc2939c3b
Ignore KOPS_RSA_PRIVATE_KEY_SIZE in pki unit tests 2020-12-10 22:02:42 -06:00
Peter Rifel 4d9f0128a3
Upgrade to klog2 
This splits up the kubernetes 1.19 PR to make it easier to keep up to date until we get it sorted out.
 2020-08-16 20:56:48 -05:00
John Gardiner Myers bec273ebf1 Implement signing of kubelet cert in kops-controller 2020-08-15 10:30:20 -07:00
John Gardiner Myers 23e2d14a78 Pull the 30-day skew code into IssueCert 2020-06-16 22:02:18 -07:00
John Gardiner Myers 7f050ee44a Address review comment 2020-06-04 10:34:48 -07:00
John Gardiner Myers 7ed41a6d5a Improve comments 2020-06-04 10:26:45 -07:00
John Gardiner Myers d64e760d5b Use pki.IssueCert() for nodeup client certs 2020-06-04 10:26:45 -07:00
John Gardiner Myers 08cdee1de2 Add test for pki.IssueCert() 2020-06-04 10:26:42 -07:00
John Gardiner Myers c142483cfa Move cert issuance code to pki module 2020-06-04 10:26:42 -07:00
John Gardiner Myers 48f28eb261 Improve pki.SignNewCertificate test 2020-04-26 20:26:48 -07:00
John Gardiner Myers 935d757a7c Use KOPS_RSA_PRIVATE_KEY_SIZE for more keys 2020-04-26 20:17:02 -07:00
tanjunchen 977f987d65 fix-pkg-staticcheck and remove the repeat code 2019-12-03 10:32:37 +08:00
feifei.zhang@huawei.com 4b49412105 fix golint failures 2019-10-31 20:22:37 +08:00
chentanjun 3d1966df84 fix-up some spelling mistakes in /pkg 2019-09-26 10:15:44 +08:00
mikesplain 9e55b8230a Update copyright notices 
Also cleans some white spaces
 2019-09-09 14:47:51 -04:00
Justin SB 76d03b3f71
Generated files: glog -> klog 2019-05-06 12:56:03 -04:00
Justin SB 3e33ac7682
Change code from glog to klog 
We don't call klog.InitFlags yet, because that will cause a flag
redefinition error until we get everyone to stop using glog.  That
will happen when we update to k8s 1.13.
 2019-05-06 12:54:51 -04:00
Justin SB de581b1b64
Switch to golang 1.11.5 
For cherry-picking to 1.13

https://github.com/kubernetes/kubernetes/blob/release-1.13/build/build-image/cross/Dockerfile
 2019-04-20 17:36:56 -04:00
Justin SB 26bd75aecb
Bulk spelling fixes 
Experimenting with my own spelling checker, these are the typos it caught.
 2018-12-20 17:43:56 -05:00
Justin Santa Barbara 9e765a75bf Generate much smaller keys in integration tests 
We expose the default key size, and temporarily set it to 512 (from
2048) during testing.  This is much faster, and key generation was the
primary bottleneck.
 2018-10-03 08:33:46 -07:00
Justin Santa Barbara c121e7f14e Create lifecycle test against AWS mocks 
We create a cluster, run kops update, then run kops update again.  We
expect no changes on the second update.
 2018-03-11 17:04:30 -04:00
Justin Santa Barbara f8c57c2f57 Move ssh key functions to pkg/pki 
Preparation for reuse by the roundtrip mock tests.
 2018-03-11 13:20:08 -04:00
Justin Santa Barbara f7b7fed125 Reduce log levels: parsing pem block 
These messages are not very useful, even for v=8
 2018-03-10 16:15:07 -05:00
k8s-ci-robot 1c75f47510
Merge pull request #4526 from mad01/custom-ca 
custom ca new implementation of #2924
 2018-03-01 12:52:28 -08:00
Alexander Brandstedt 62ab65e8e3 implementation custom ca cert and key #2924 
- implementing as new subcommand keypair to secret
- rename of LoadPEMCertificate to ParsePEMCertificate to have
  the same naming of parsing of certificate/private key bytes in
  the same package result is
    pki.ParsePEMPrivateKey(privateKeyBytes)
    pki.ParsePEMCertificate(certBytes)
 2018-03-01 09:50:04 +01:00
k8s-ci-robot b6fc32171e
Merge pull request #4354 from snelson-pp/increase-generated-cert-bits 
Increase key size in GeneratePrivateKey() to 3072
 2018-02-28 13:03:47 -08:00
Stephen Nelson 6cc046f96c Added test for environment variable overriding of private key size 2018-02-26 14:35:44 -08:00
Mike Splain 45a57915e2 Fix bazel deprecation notice 2018-02-26 09:36:13 -05:00
Stephen Nelson 5ef58e3b57 Make key size determined by environment variable RSA_PRIVATE_KEY_SIZE 2018-02-20 18:58:36 -08:00
Stephen Nelson 6f2baeb5f4 Increase key size in GeneratePrivateKey() to 3072 2018-01-29 16:46:04 -08:00
Blake 0450d08c0b bazel 0.9.0 running `make bazel-build` updates 2018-01-18 13:26:27 -08:00
Justin Santa Barbara 8c23031561 Add roundtrip tests for certs & private keys 
Travis should cover all our supported go versions.
 2017-12-29 21:18:29 -05:00
chrislovecnm 609e268a1d gazelle updates with new bazel version 2017-11-05 17:41:53 -07:00
chrislovecnm 1e418c3e13 more goimport updates 2017-11-04 10:03:02 -06:00
chrislovecnm 4711d1596e update to imports that apimachinery is doing now automatically 2017-10-27 14:28:48 -06:00
Justin Santa Barbara a879521ba3 Initial aggregation support 
Create the keypairs, which are supposed to be signed by a different CA.

Set the `--requestheader-...` flags on apiserver.

Fix #3152
Fix #2691
 2017-10-22 14:41:38 -04:00
Justin Santa Barbara 0143be7c4f autogen: BUILD and BUILD.bazel 2017-10-02 14:27:21 -04:00
Justin Santa Barbara a16c8b1500 Refactor PKI classes into their own package 
This will support generation of keys on the node.
 2017-08-27 08:14:55 -04:00