kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #46795 from neolit123/1.31-add-note-about-ecdsa-fg-kubeconfig-bug 

kubeadm: add note about a bug in the PublicKeysECDSA FG
pull/46800/head
Kubernetes Prow Robot 2024-06-12 03:32:42 -07:00 committed by GitHub
parent 71e850f99a a493517449
commit 3dfa81ca5f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
content/en/docs/reference/setup-tools/kubeadm/kubeadm-init.md
View File

@ -174,7 +174,9 @@ as a learner and promoted to a voting member only after the etcd data are fully
`PublicKeysECDSA`
: Can be used to create a cluster that uses ECDSA certificates instead of the default RSA algorithm.
Renewal of existing ECDSA certificates is also supported using `kubeadm certs renew`, but you cannot
switch between the RSA and ECDSA algorithms on the fly or during upgrades.
switch between the RSA and ECDSA algorithms on the fly or during upgrades. Kubernetes
{{< skew currentVersion >}} has a bug where keys in generated kubeconfig files are set use RSA
despite the feature gate being enabled.
`RootlessControlPlane`
: Setting this flag configures the kubeadm deployed control plane component static Pod containers