mirror of
https://github.com/optim-enterprises-bv/kubernetes.git
synced 2026-01-10 17:21:48 +00:00
dd14bc5a18
Automatic merge from submit-queue (batch tested with PRs 68087, 68256, 64621, 68299, 68296). If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md. Fixes using externally managed certs for kubeadm **What this PR does / why we need it**: The certificates overhaul caused a regression when using external certificates. This fixes that issue so external CAs no longer require a key if all certificates exist. Walk the certificate tree, at each step checking for a CACert. If the CACert is found, try to use it to generate certificates. Otherwise, generate a new CA cert. **Which issue(s) this PR fixes** *(optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close the issue(s) when PR gets merged)*: Fixes kubernetes/kubeadm#918 **Special notes for your reviewer**: **Release note**: ```release-note External CAs can now be used for kubeadm with only a certificate, as long as all required certificates already exist. ```