- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 30 for san (0.04 sec)
-
src/crypto/x509/parser.go
return errors.New("x509: invalid subject alternative names") } for !der.Empty() { var san cryptobyte.String var tag cryptobyte_asn1.Tag if !der.ReadAnyASN1(&san, &tag) { return errors.New("x509: invalid subject alternative name") } if err := callback(int(tag^0x80), san); err != nil { return err } } return nil }
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Wed May 22 21:00:16 UTC 2024 - 38.5K bytes - Viewed (0) -
cmd/kubeadm/app/phases/certs/renewal/manager_test.go
if len(cfg.AltNames.IPs) != 1 || cfg.AltNames.IPs[0].String() != expectedConfig.AltNames.IPs[0].String() { t.Errorf("expected SAN IPs %v, got %v", expectedConfig.AltNames.IPs, cfg.AltNames.IPs) } if len(cfg.AltNames.DNSNames) != 1 || cfg.AltNames.DNSNames[0] != expectedConfig.AltNames.DNSNames[0] { t.Errorf("expected SAN DNSNames %v, got %v", expectedConfig.AltNames.DNSNames, cfg.AltNames.DNSNames) } }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 01 16:01:49 UTC 2024 - 13.9K bytes - Viewed (0) -
security/pkg/server/ca/server_test.go
"Empty cert chain": { certChain: [][]*x509.Certificate{}, caller: nil, ipAddr: mockIPAddr, code: codes.Unauthenticated, }, // certificate misses the SAN field "Certificate has no SAN": { certChain: [][]*x509.Certificate{ { { Version: 1, }, }, }, ipAddr: mockIPAddr, code: codes.Unauthenticated, },
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Feb 28 16:41:38 UTC 2024 - 15.8K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_tls.go
} } // buildIstioMutualTLS returns a `TLSSettings` for ISTIO_MUTUAL mode. func (cb *ClusterBuilder) buildIstioMutualTLS(san []string, sni string) *networking.ClientTLSSettings { return &networking.ClientTLSSettings{ Mode: networking.ClientTLSSettings_ISTIO_MUTUAL, SubjectAltNames: san, Sni: sni, }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 18 19:09:43 UTC 2024 - 19.2K bytes - Viewed (0) -
pilot/pkg/security/model/authentication.go
ConstructSdsSecretConfigForCredential(tlsOpts.CredentialName, credentialSocketExist), } } // If the InsecureSkipVerify is true, there is no need to configure CA Cert and SAN. if tlsOpts.GetInsecureSkipVerify().GetValue() { return } // create SDS config for gateway to fetch certificate validation context // at gateway agent.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Mar 28 22:11:02 UTC 2024 - 9.9K bytes - Viewed (0) -
pkg/security/security.go
// Client interface defines the clients need to implement to talk to CA for CSR. // The Agent will create a key pair and a CSR, and use an implementation of this // interface to get back a signed certificate. There is no guarantee that the SAN // in the request will be returned - server may replace it. type Client interface { CSRSign(csrPEM []byte, certValidTTLInSec int64) ([]string, error) Close()
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 19.1K bytes - Viewed (0) -
pilot/pkg/security/model/authentication_test.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Feb 20 22:39:21 UTC 2024 - 18.9K bytes - Viewed (0) -
cmd/kubeadm/app/cmd/phases/init/certs.go
options.NetworkingDNSDomain, options.NetworkingServiceSubnet, ) } return flags } func getSANDescription(certSpec *certsphase.KubeadmCert) string { // Defaulted config we will use to get SAN certs defaultConfig := &kubeadmapiv1.InitConfiguration{ LocalAPIEndpoint: kubeadmapiv1.APIEndpoint{ // GetAPIServerAltNames errors without an AdvertiseAddress; this is as good as any. AdvertiseAddress: "127.0.0.1",
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Jun 08 06:35:45 UTC 2024 - 9.8K bytes - Viewed (0) -
pkg/istio-agent/agent.go
} func (a *Agent) generateNodeMetadata() (*model.Node, error) { var pilotSAN []string if a.proxyConfig.ControlPlaneAuthPolicy == mesh.AuthenticationPolicy_MUTUAL_TLS { // Obtain Pilot SAN, using DNS. pilotSAN = []string{config.GetPilotSan(a.proxyConfig.DiscoveryAddress)} } credentialSocketExists, err := checkSocket(context.TODO(), security.CredentialNameSocketPath) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 05 10:02:56 UTC 2024 - 26.7K bytes - Viewed (0) -
cmd/kubeadm/app/util/pkiutil/pki_helpers.go
return altNames, nil } // GetEtcdAltNames builds an AltNames object for generating the etcd server certificate. // `advertise address` and localhost are included in the SAN since this is the interfaces the etcd static pod listens on. // The user can override the listen address with `Etcd.ExtraArgs` and add SANs with `Etcd.ServerCertSANs`.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 01 16:01:49 UTC 2024 - 25.5K bytes - Viewed (0)