Support ECDSA P-256 certificates #44
Labels
carvel-accepted
This issue should be considered for future work and that the triage process has been completed
enhancement
This issue is a feature request
priority/unprioritized-backlog
Higher priority than priority/awaiting-more-evidence but not planned. Contributions are welcome.
Comments
ron1
added
carvel-triage
|
@ron1 that would be good. do you happen to know some recommended ways to generate that type of certificate in go? |
|
ah i see some prior art in here: https://go.dev/src/crypto/tls/generate_cert.go |
|
You can also take a look at this linkerd-cli function that generates a ecdsa key: https://github.com/linkerd/linkerd2/blob/b9aa32f9b20057c7166347825428e53525962b9c/pkg/tls/ca.go#L145 |
joe-kimmel-vmw
added
carvel-accepted
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the problem/challenge you have
I need to bootstrap Linkerd with an ECDSA P-256 certificate.
Describe the solution you'd like
I would like to use the secretgen controller to create a ECDSA P-256 certificate for use by graduated CNCF project Linkerd. Linkerd does not support the RSA certs created by the secretgen controller.
Anything else you would like to add:
The text was updated successfully, but these errors were encountered: