Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

catalogd should use certpoolwatcher #1647

Open
tmshort opened this issue Jan 23, 2025 · 3 comments
Open

catalogd should use certpoolwatcher #1647

tmshort opened this issue Jan 23, 2025 · 3 comments

Comments

@tmshort
Copy link
Contributor

tmshort commented Jan 23, 2025

operator-controller uses certpoolwatcher to watch for changes to the CAs on disk, and subsequently update a certificate pool for TLS connections.

The catalogd code does not currently use the certpoolwatcher for it's CAs, and it should be incorporated.

It might be desirable to pull the certpoolwatcher into its own package.
@azych
Copy link
Contributor

azych commented Jan 27, 2025

/assign

@azych
Copy link
Contributor

azych commented Jan 28, 2025

/unassign

This is interconnected with other work and needs additional prep to be ready for pickup

@tmshort
Copy link
Contributor Author

tmshort commented Feb 11, 2025

Cert pool watcher is only useful for connections via net.HTTPS, and not those via containers/images.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@azych @tmshort