cheshire
/
hscloud
forked from hswaw/hscloud
1
0
Fork 0
Code Pull Requests Activity
hscloud/cluster/secrets/cipher
History
q3k a4f8a459b9 cluster: partial cert bump 
Done:

 1. etcd peer CA & certs
 2. etcd client CA & certs
 3. kube CA (currently all components set to accept both new and old CA,
    new CA called ca-kube-new)
 4. kube apiserver
 5. kubelet & kube-proxy
 6. prodvider intermediate

TODO:

 1. kubernetes controller-manager & kubernetes scheduler
 2. kubefront CA
 3. admitomatic?
 4. undo bundle on kube CA components to fully transition away from old
    CA

Change-Id: If529eeaed9a6a2063bed23c9d81c57b36b9a0115
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1487
Reviewed-by: q3k <q3k@hackerspace.pl>
 		2023-03-31 22:53:59 +00:00
..
admitomatic-webhook.key cluster: add admitomatic CA/certificate 2021-02-06 17:18:58 +00:00
ca-admitomatic.key cluster: add admitomatic CA/certificate 2021-02-06 17:18:58 +00:00
ca-etcd.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
ca-etcdpeer.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
ca-kube-new.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
ca-kube-prodvider.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
ca-kube.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
ca-kubefront.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
etcd-bc01n01.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcd-bc01n02.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcd-dcr01s22.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcd-dcr01s24.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcd-kube.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcdpeer-bc01n01.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcdpeer-bc01n02.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcdpeer-dcr01s22.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
etcdpeer-dcr01s24.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
k0-benji-encryption-password tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
k0-benji-secret-access-key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
kube-apiserver.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-controllermanager.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
kube-kubelet-bc01n01.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-kubelet-bc01n02.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-kubelet-dcr01s22.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-kubelet-dcr01s24.hswaw.net.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-proxy.key cluster: partial cert bump 2023-03-31 22:53:59 +00:00
kube-scheduler.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
kube-serviceaccounts.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00
kubefront-apiserver.key tools/secretstore: add sync command, re-encrypt 2020-06-04 19:25:07 +00:00