- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 14 for CipherSuites (0.19 sec)
-
pilot/pkg/bootstrap/webhook.go
return } tlsConfig := &tls.Config{ GetCertificate: s.getIstiodCertificate, MinVersion: tls.VersionTLS12, CipherSuites: args.ServerOptions.TLSOptions.CipherSuits, } // Compliance for control plane validation and injection webhook server. sec_model.EnforceGoCompliance(tlsConfig)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Jun 11 17:37:53 UTC 2024 - 2.7K bytes - Viewed (0) -
pilot/pkg/bootstrap/options.go
return nil } func allCiphers() map[string]uint16 { acceptedCiphers := make(map[string]uint16, len(tls.CipherSuites())+len(tls.InsecureCipherSuites())) for _, cipher := range tls.InsecureCipherSuites() { acceptedCiphers[cipher.Name] = cipher.ID } for _, cipher := range tls.CipherSuites() { acceptedCiphers[cipher.Name] = cipher.ID } return acceptedCiphers }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 6.1K bytes - Viewed (0) -
cmd/utils.go
tlsConfig.ClientAuth = tls.RequestClientCert } if secureCiphers := env.Get(api.EnvAPISecureCiphers, config.EnableOn) == config.EnableOn; secureCiphers { tlsConfig.CipherSuites = fips.TLSCiphers() } else { tlsConfig.CipherSuites = fips.TLSCiphersBackwardCompatible() } tlsConfig.CurvePreferences = fips.TLSCurveIDs() return tlsConfig } /////////// Types and functions for OpenID IAM testing
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Wed Jun 05 22:00:34 UTC 2024 - 31.9K bytes - Viewed (0) -
cmd/encryption-v1.go
if err != nil { return nil, crypto.ObjectKey{}, err } reader, err := sio.EncryptReader(content, sio.Config{Key: objectEncryptionKey[:], MinVersion: sio.Version20, CipherSuites: fips.DARECiphers()}) if err != nil { return nil, crypto.ObjectKey{}, crypto.ErrInvalidCustomerKey } return reader, objectEncryptionKey, nil }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Jun 13 06:56:12 UTC 2024 - 37.1K bytes - Viewed (0) -
pkg/config/security/security.go
return nil } return fmt.Errorf("bad key (%s): should have format a[b]", key) } // ValidCipherSuites contains a list of all ciphers supported in Gateway.server.tls.cipherSuites // Extracted from: `bssl ciphers -openssl-name ALL | rg -v PSK` var ValidCipherSuites = sets.New( "ECDHE-ECDSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "ECDHE-ECDSA-AES256-GCM-SHA384",
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 07 04:43:34 UTC 2024 - 9.4K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_inbound.go
continue } if i.Tls != nil && features.EnableTLSOnSidecarIngress { // User provided custom TLS settings cc.tlsSettings = i.Tls.DeepCopy() cc.tlsSettings.CipherSuites = security.FilterCipherSuites(cc.tlsSettings.CipherSuites) cc.port.Protocol = cc.port.Protocol.AfterTLSTermination() } chainsByPort[port.TargetPort] = cc } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 35.1K bytes - Viewed (0) -
cmd/object-multipart-handlers.go
return } copy(objectEncryptionKey[:], key) partEncryptionKey := objectEncryptionKey.DerivePartKey(uint32(partID)) encReader, err := sio.EncryptReader(reader, sio.Config{Key: partEncryptionKey[:], CipherSuites: fips.DARECiphers()}) if err != nil { writeErrorResponse(ctx, w, toAPIError(ctx, err), r.URL) return } reader = etag.Wrap(encReader, reader) wantSize := int64(-1) if length >= 0 {
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri Jun 14 13:28:35 UTC 2024 - 38.8K bytes - Viewed (0) -
pilot/pkg/bootstrap/server.go
err := peerCertVerifier.VerifyPeerCert(rawCerts, verifiedChains) if err != nil { log.Infof("Could not verify certificate: %v", err) } return err }, MinVersion: tls.VersionTLS12, CipherSuites: args.ServerOptions.TLSOptions.CipherSuits, } // Compliance for xDS server TLS. sec_model.EnforceGoCompliance(cfg) tlsCreds := credentials.NewTLS(cfg)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 46.3K bytes - Viewed (0) -
pkg/config/validation/validation.go
if len(tls.CipherSuites) == 0 { v = AppendWarningf(v, "TLS version below TLSV1_2 require setting compatible ciphers as by default they no longer include compatible ciphers.") } } invalidCiphers := sets.New[string]() validCiphers := sets.New[string]() duplicateCiphers := sets.New[string]() for _, cs := range tls.CipherSuites { if !security.IsValidCipherSuite(cs) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 04:03:33 UTC 2024 - 107.2K bytes - Viewed (0) -
cmd/kubelet/app/server.go
klog.InfoS("Warning: TLS 1.3 cipher suites are not configurable, ignoring --tls-cipher-suites") } } tlsOptions := &server.TLSOptions{ Config: &tls.Config{ MinVersion: minTLSVersion, CipherSuites: tlsCipherSuites, }, CertFile: kc.TLSCertFile, KeyFile: kc.TLSPrivateKeyFile, } if len(kc.Authentication.X509.ClientCAFile) > 0 {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jun 07 00:05:34 UTC 2024 - 53.9K bytes - Viewed (0)