- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 10 for CertOptions (0.2 sec)
-
security/pkg/pki/util/generate_cert_test.go
t.Run(id, func(t *testing.T) { certOptions := c.certOptions certPem, privPem, err := GenCertKeyFromOptions(certOptions) if err != nil { t.Errorf("[%s] cert/key generation error: %v", id, err) } for _, host := range strings.Split(certOptions.Host, ",") { c.verifyFields.Host = host root := rsaCaCertPem if c.certOptions.ECSigAlg != "" { root = ecCaCertPem }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Nov 06 12:48:53 UTC 2023 - 29.4K bytes - Viewed (0) -
security/pkg/pki/util/keycertbundle_test.go
certOptions: &CertOptions{ Host: "watt", TTL: 100 * 365 * 24 * time.Hour, Org: "Juju org", IsCA: false, RSAKeySize: 2048, }, expectedErr: "", }, "No SAN EC": { caCertFile: ecRootCertFile, caKeyFile: ecRootKeyFile, certChainFile: nil, rootCertFile: ecRootCertFile, certOptions: &CertOptions{ Host: "watt",
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sun Jan 21 06:07:50 UTC 2024 - 15.8K bytes - Viewed (0) -
security/pkg/pki/util/generate_cert.go
return opts, nil } // MergeCertOptions merges deltaOpts into defaultOpts and returns the merged // CertOptions. Only called by a self-signed Citadel. func MergeCertOptions(defaultOpts, deltaOpts CertOptions) CertOptions { if len(deltaOpts.Org) > 0 { defaultOpts.Org = deltaOpts.Org } // TODO(JimmyCYJ): merge other fields, e.g. Host, IsDualUse, etc. return defaultOpts }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Aug 02 14:34:38 UTC 2023 - 14.2K bytes - Viewed (0) -
security/pkg/pki/ca/ca_test.go
cases := map[string]struct { forCA bool certOpts util.CertOptions maxTTL time.Duration requestedTTL time.Duration verifyFields util.VerifyFields expectedError string }{ "Workload uses RSA": { forCA: false, certOpts: util.CertOptions{ // This value is not used, instead, subjectID should be used in certificate.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 31 08:51:27 UTC 2023 - 29.1K bytes - Viewed (0) -
security/pkg/pki/util/keycertbundle.go
b.cert, _ = ParsePemEncodedCertificate(certBytes) privKey, _ := ParsePemEncodedKey(privKeyBytes) b.privKey = &privKey b.mutex.Unlock() } // CertOptions returns the certificate config based on currently stored cert. func (b *KeyCertBundle) CertOptions() (*CertOptions, error) { b.mutex.RLock() defer b.mutex.RUnlock() ids, err := ExtractIDs(b.cert.Extensions) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sun Jan 21 06:07:50 UTC 2024 - 10.5K bytes - Viewed (0) -
security/pkg/pki/ca/selfsignedcarootcertrotator_test.go
// cert options differ from default cert options used by rotator. oldCertOrg := "old cert org" oldCertRSAKeySize := 2048 customCertOptions := util.CertOptions{ TTL: rotator.config.caCertTTL, Org: oldCertOrg, IsCA: true, IsSelfSigned: true, RSAKeySize: oldCertRSAKeySize, }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Oct 11 23:33:41 UTC 2023 - 14.1K bytes - Viewed (0) -
security/pkg/pki/ca/ca.go
return err } } // 3. if use cacerts disabled, create `istio-ca-secret`, otherwise create `cacerts`. pkiCaLog.Infof("CASecret %s not found, will create one", caCertName) options := util.CertOptions{ TTL: caCertTTL, Org: org, IsCA: true, IsSelfSigned: true, RSAKeySize: caRSAKeySize, IsDualUse: dualUse, }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 30 19:33:26 UTC 2023 - 17.2K bytes - Viewed (0) -
security/pkg/pki/ca/selfsignedcarootcertrotator.go
if err != nil { rootCertRotatorLog.Warnf("Failed to generate cert options from existing root certificate (%v), "+ "new root certificate may not match old root certificate", err) } options := util.CertOptions{ TTL: rotator.config.caCertTTL, SignerPrivPem: caSecret.Data[CAPrivateKeyFile], Org: rotator.config.org, IsCA: true, IsSelfSigned: true,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 30 19:33:26 UTC 2023 - 10.4K bytes - Viewed (0) -
security/pkg/k8s/chiron/utils_test.go
} } else if err != nil { t.Fatalf("failed at updateMutatingWebhookConfig: %v", err) } }) } } func createFakeCsr(t *testing.T) []byte { options := pkiutil.CertOptions{ Host: "fake.com", RSAKeySize: 2048, PKCS8Key: false, ECSigAlg: pkiutil.SupportedECSignatureAlgorithms("ECDSA"), } csrPEM, _, err := pkiutil.GenCSR(options) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 03:58:11 UTC 2024 - 13K bytes - Viewed (0) -
security/pkg/nodeagent/cache/secretcache.go
Namespace: sc.configOptions.WorkloadNamespace, ServiceAccount: sc.configOptions.ServiceAccount, } cacheLog.Debugf("constructed host name for CSR: %s", csrHostName.String()) options := pkiutil.CertOptions{ Host: csrHostName.String(), RSAKeySize: sc.configOptions.WorkloadRSAKeySize, PKCS8Key: sc.configOptions.Pkcs8Keys, ECSigAlg: pkiutil.SupportedECSignatureAlgorithms(sc.configOptions.ECCSigAlg),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 04 08:29:46 UTC 2024 - 28.2K bytes - Viewed (0)