- Sort Score
- Result 10 results
- Languages All
Results 1 - 9 of 9 for GetCAKeyCertBundle (0.33 sec)
-
security/pkg/pki/ca/mock/fakeca.go
} _, _, _, rootCertBytes := ca.GetCAKeyCertBundle().GetAll() if len(rootCertBytes) != 0 { respCertChain = append(respCertChain, string(rootCertBytes)) } return respCertChain, nil } // GetCAKeyCertBundle returns KeyCertBundle if KeyCertBundle is not nil, otherwise, it returns an empty // FakeKeyCertBundle. func (ca *FakeCA) GetCAKeyCertBundle() *util.KeyCertBundle { if ca.KeyCertBundle == nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 03 18:57:19 UTC 2021 - 2.1K bytes - Viewed (0) -
security/pkg/pki/ra/k8s_ra.go
if err != nil { return nil, err } chainPem := r.GetCAKeyCertBundle().GetCertChainPem() if len(chainPem) > 0 { cert = append(cert, chainPem...) } respCertChain := []string{string(cert)} var possibleRootCert, rootCertFromMeshConfig, rootCertFromCertChain []byte certSigner := r.certSignerDomain + "/" + certOpts.CertSigner if len(r.GetCAKeyCertBundle().GetRootCertPem()) == 0 {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Aug 02 14:34:38 UTC 2023 - 7.2K bytes - Viewed (0) -
security/pkg/server/ca/server.go
// SignWithCertChain is similar to Sign but returns the leaf cert and the entire cert chain. SignWithCertChain(csrPEM []byte, opts ca.CertOpts) ([]string, error) // GetCAKeyCertBundle returns the KeyCertBundle used by CA. GetCAKeyCertBundle() *util.KeyCertBundle } // Server implements IstioCAService and IstioCertificateService and provides the services on the // specified port. type Server struct {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 28 17:35:26 UTC 2024 - 8K bytes - Viewed (0) -
security/pkg/pki/ca/selfsignedcarootcertrotator.go
if err == nil && waitTime > 0 { rootCertRotatorLog.Info("Root cert is not about to expire, skipping root cert rotation.") caCertInMem, _, _, _ := rotator.ca.GetCAKeyCertBundle().GetAllPem() // If CA certificate is different from the CA certificate in local key // cert bundle, it implies that other Citadels have updated istio-ca-secret or cacerts.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 30 19:33:26 UTC 2023 - 10.4K bytes - Viewed (0) -
pilot/pkg/bootstrap/certcontroller.go
func (s *Server) watchRootCertAndGenKeyCert(stop <-chan struct{}) { caBundle := s.CA.GetCAKeyCertBundle().GetRootCertPem() for { if !sleep.Until(stop, rootCertPollingInterval) { return } newRootCert := s.CA.GetCAKeyCertBundle().GetRootCertPem() if !bytes.Equal(caBundle, newRootCert) { caBundle = newRootCert
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 11.3K bytes - Viewed (0) -
security/pkg/pki/ca/ca_test.go
if err != nil { t.Errorf("Got error while creating self-signed CA: %v", err) } if ca == nil { t.Fatalf("Failed to create a self-signed CA.") } signingCert, _, certChainBytes, rootCertBytes := ca.GetCAKeyCertBundle().GetAll() rootCert, err := util.ParsePemEncodedCertificate(rootCertBytes) if err != nil { t.Error(err) } // Root cert and siging cert are the same for self-signed CA. if !rootCert.Equal(signingCert) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 31 08:51:27 UTC 2023 - 29.1K bytes - Viewed (0) -
security/pkg/pki/ca/ca.go
if err != nil { return nil, err } return []string{string(cert)}, nil } // GetCAKeyCertBundle returns the KeyCertBundle for the CA. func (ca *IstioCA) GetCAKeyCertBundle() *util.KeyCertBundle { return ca.keyCertBundle } // GenKeyCert generates a certificate signed by the CA, // returns the certificate chain and the private key.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 30 19:33:26 UTC 2023 - 17.2K bytes - Viewed (0) -
pilot/pkg/bootstrap/server.go
rootCertBytes = append(rootCertBytes, caBundle...) } else { rootCertBytes = append(rootCertBytes, s.RA.GetCAKeyCertBundle().GetRootCertPem()...) } } if s.CA != nil { rootCertBytes = append(rootCertBytes, s.CA.GetCAKeyCertBundle().GetRootCertPem()...) } } if len(rootCertBytes) != 0 {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 46.3K bytes - Viewed (0) -
pilot/pkg/bootstrap/istio_ca.go
// and generates new dns certs. func handleEvent(s *Server) { log.Info("Update Istiod cacerts") var newCABundle []byte var err error currentCABundle := s.CA.GetCAKeyCertBundle().GetRootCertPem() fileBundle, err := detectSigningCABundle() if err != nil { log.Errorf("unable to determine signing file format %v", err) return }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 20.6K bytes - Viewed (0)