kubernetes-sigs
diff --git a/‎api/bootstrap/kubeadm/v1beta1/conversion_test.go
Lines changed: 1 addition & 0 deletions b/‎api/bootstrap/kubeadm/v1beta1/conversion_test.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎api/bootstrap/kubeadm/v1beta1/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions b/‎api/bootstrap/kubeadm/v1beta1/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎api/bootstrap/kubeadm/v1beta2/kubeadm_types.go
Lines changed: 6 additions & 1 deletion b/‎api/bootstrap/kubeadm/v1beta2/kubeadm_types.go
Lines changed: 6 additions & 1 deletion
diff --git a/‎api/bootstrap/kubeadm/v1beta2/zz_generated.deepcopy.go
Lines changed: 5 additions & 0 deletions b/‎api/bootstrap/kubeadm/v1beta2/zz_generated.deepcopy.go
Lines changed: 5 additions & 0 deletions
diff --git a/‎api/controlplane/kubeadm/v1beta1/conversion_test.go
Lines changed: 1 addition & 0 deletions b/‎api/controlplane/kubeadm/v1beta1/conversion_test.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml
Lines changed: 7 additions & 1 deletion b/‎bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigs.yaml
Lines changed: 7 additions & 1 deletion
diff --git a/‎bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigtemplates.yaml
Lines changed: 7 additions & 1 deletion b/‎bootstrap/kubeadm/config/crd/bases/bootstrap.cluster.x-k8s.io_kubeadmconfigtemplates.yaml
Lines changed: 7 additions & 1 deletion
diff --git a/‎bootstrap/kubeadm/types/upstreamv1beta3/conversion_test.go
Lines changed: 1 addition & 0 deletions b/‎bootstrap/kubeadm/types/upstreamv1beta3/conversion_test.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎bootstrap/kubeadm/types/upstreamv1beta3/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions b/‎bootstrap/kubeadm/types/upstreamv1beta3/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎bootstrap/kubeadm/types/upstreamv1beta4/conversion.go
Lines changed: 2 additions & 0 deletions b/‎bootstrap/kubeadm/types/upstreamv1beta4/conversion.go
Lines changed: 2 additions & 0 deletions
@@ -130,6 +130,7 @@ func hubKubeadmConfigSpec(in *bootstrapv1.KubeadmConfigSpec, c randfill.Continue
 	// Drop the field to avoid round trip errors as it exists only in v1beta2.
 	if in.ClusterConfiguration != nil {
 		in.ClusterConfiguration.CertificateValidityPeriodSeconds = nil
+		in.ClusterConfiguration.CACertificateValidityPeriodSeconds = nil
 	}
 }
 
 
@@ -174,9 +174,14 @@ type ClusterConfiguration struct {
 	FeatureGates map[string]bool `json:"featureGates,omitempty"`
 
 	// certificateValidityPeriodSeconds specifies the validity period for a non-CA certificate generated by kubeadm.
-	// Default value: 756,864,000 seconds, 8760h (365 days * 24 hours = 1 year)
+	// Default value: 756,864,000 seconds -> 8760h (365 days * 24 hours = 1 year)
 	// +optional
 	CertificateValidityPeriodSeconds *int32 `json:"certificateValidityPeriodSeconds,omitempty"`
+
+	// caCertificateValidityPeriodSeconds specifies the validity period for a CA certificate generated by kubeadm.
+	// Default value: 756,864,000 seconds -> 87600h (365 days * 24 hours * 10 = 10 years)
+	// +optional
+	CACertificateValidityPeriodSeconds *int32 `json:"caCertificateValidityPeriodSeconds,omitempty"`
 }
 
 // ControlPlaneComponent holds settings common to control plane component of the cluster.
 
@@ -106,6 +106,7 @@ func hubKubeadmConfigSpec(in *bootstrapv1.KubeadmConfigSpec, c randfill.Continue
 	}
 	if in.ClusterConfiguration != nil {
 		in.ClusterConfiguration.CertificateValidityPeriodSeconds = nil
+		in.ClusterConfiguration.CACertificateValidityPeriodSeconds = nil
 	}
 }
 
 
@@ -201,4 +201,5 @@ func hubClusterConfigurationFuzzer(obj *bootstrapv1.ClusterConfiguration, c rand
 	c.FillNoCustom(obj)
 
 	obj.CertificateValidityPeriodSeconds = nil
+	obj.CACertificateValidityPeriodSeconds = nil
 }
@@ -67,6 +67,7 @@ func Convert_upstreamv1beta4_ClusterConfiguration_To_v1beta2_ClusterConfiguratio
 		return err
 	}
 	out.CertificateValidityPeriodSeconds = clusterv1.ConvertToSeconds(in.CertificateValidityPeriod)
+	out.CACertificateValidityPeriodSeconds = clusterv1.ConvertToSeconds(in.CACertificateValidityPeriod)
 	return nil
 }
 
@@ -230,5 +231,6 @@ func Convert_v1beta2_ClusterConfiguration_To_upstreamv1beta4_ClusterConfiguratio
 		return err
 	}
 	out.CertificateValidityPeriod = clusterv1.ConvertFromSeconds(in.CertificateValidityPeriodSeconds)
+	out.CACertificateValidityPeriod = clusterv1.ConvertFromSeconds(in.CACertificateValidityPeriodSeconds)
 	return nil
 }
Original file line number	Diff line number	Diff line change
`@@ -130,6 +130,7 @@ func hubKubeadmConfigSpec(in *bootstrapv1.KubeadmConfigSpec, c randfill.Continue`
`130`	`130`	`// Drop the field to avoid round trip errors as it exists only in v1beta2.`
`131`	`131`	`if in.ClusterConfiguration != nil {`
`132`	`132`	`in.ClusterConfiguration.CertificateValidityPeriodSeconds = nil`
	`133`	`+ in.ClusterConfiguration.CACertificateValidityPeriodSeconds = nil`
`133`	`134`	`}`
`134`	`135`	`}`
`135`	`136`
Original file line number	Diff line number	Diff line change
`@@ -106,6 +106,7 @@ func hubKubeadmConfigSpec(in *bootstrapv1.KubeadmConfigSpec, c randfill.Continue`
`106`	`106`	`}`
`107`	`107`	`if in.ClusterConfiguration != nil {`
`108`	`108`	`in.ClusterConfiguration.CertificateValidityPeriodSeconds = nil`
	`109`	`+ in.ClusterConfiguration.CACertificateValidityPeriodSeconds = nil`
`109`	`110`	`}`
`110`	`111`	`}`
`111`	`112`
Original file line number	Diff line number	Diff line change
`@@ -201,4 +201,5 @@ func hubClusterConfigurationFuzzer(obj *bootstrapv1.ClusterConfiguration, c rand`
`201`	`201`	`c.FillNoCustom(obj)`
`202`	`202`
`203`	`203`	`obj.CertificateValidityPeriodSeconds = nil`
	`204`	`+ obj.CACertificateValidityPeriodSeconds = nil`
`204`	`205`	`}`
Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,7 @@ func Convert_upstreamv1beta4_ClusterConfiguration_To_v1beta2_ClusterConfiguratio`
`67`	`67`	`return err`
`68`	`68`	`}`
`69`	`69`	`out.CertificateValidityPeriodSeconds = clusterv1.ConvertToSeconds(in.CertificateValidityPeriod)`
	`70`	`+ out.CACertificateValidityPeriodSeconds = clusterv1.ConvertToSeconds(in.CACertificateValidityPeriod)`
`70`	`71`	`return nil`
`71`	`72`	`}`
`72`	`73`
`@@ -230,5 +231,6 @@ func Convert_v1beta2_ClusterConfiguration_To_upstreamv1beta4_ClusterConfiguratio`
`230`	`231`	`return err`
`231`	`232`	`}`
`232`	`233`	`out.CertificateValidityPeriod = clusterv1.ConvertFromSeconds(in.CertificateValidityPeriodSeconds)`
	`234`	`+ out.CACertificateValidityPeriod = clusterv1.ConvertFromSeconds(in.CACertificateValidityPeriodSeconds)`
`233`	`235`	`return nil`
`234`	`236`	`}`