- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 34 for crl (0.02 sec)
-
pilot/pkg/security/model/authentication.go
if validateClient { defaultValidationContext := &tls.CertificateValidationContext{ MatchSubjectAltNames: matchSAN, } if crl != "" { defaultValidationContext.Crl = &core.DataSource{ Specifier: &core.DataSource_Filename{ Filename: crl, }, } } tlsContext.ValidationContextType = &tls.CommonTlsContext_CombinedValidationContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Mar 28 22:11:02 UTC 2024 - 9.9K bytes - Viewed (0) -
src/crypto/x509/x509_test.go
if err != nil { t.Fatalf("failed to parse certificate: %s", err) } want := []string{ "http://epscd.catcert.net/crl/ec-acc.crl", "http://epscd2.catcert.net/crl/ec-acc.crl", } if got := cert.CRLDistributionPoints; !reflect.DeepEqual(got, want) { t.Errorf("CRL distribution points = %#v, want #%v", got, want) } }
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Wed May 22 21:00:16 UTC 2024 - 163.4K bytes - Viewed (0) -
pilot/pkg/credentials/model.go
type CertInfo struct { // The certificate chain Cert []byte // The private key Key []byte // The oscp staple Staple []byte // Certificate Revocation List information CRL []byte } type Controller interface { GetCertInfo(name, namespace string) (certInfo *CertInfo, err error) GetCaCert(name, namespace string) (certInfo *CertInfo, err error)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 19:18:21 UTC 2024 - 1.3K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_tls_test.go
{ name: "tls mode SIMPLE, with certs specified in tls, with crl", opts: &buildClusterOpts{ mutable: newTestCluster(), }, tls: &networking.ClientTLSSettings{ Mode: networking.ClientTLSSettings_SIMPLE, CaCertificates: rootCert, SubjectAltNames: []string{"SAN"}, Sni: "some-sni.com", CaCrl: "path/to/crl", }, result: expectedResult{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 03:53:05 UTC 2024 - 60.9K bytes - Viewed (0) -
pilot/pkg/xds/sds.go
TrustedCa: &core.DataSource{ Specifier: &core.DataSource_InlineBytes{ InlineBytes: certInfo.Cert, }, }, } if certInfo.CRL != nil { validationContext.Crl = &core.DataSource{ Specifier: &core.DataSource_InlineBytes{ InlineBytes: certInfo.CRL, }, } } res := protoconv.MessageToAny(&envoytls.Secret{ Name: name, Type: &envoytls.Secret_ValidationContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 23:04:36 UTC 2024 - 15.8K bytes - Viewed (0) -
pilot/pkg/security/authn/utils/utils.go
TlsMinimumProtocolVersion: minTLSVersion, TlsMaximumProtocolVersion: tls.TlsParameters_TLSv1_3, } authn_model.ApplyToCommonTLSContext(ctx.CommonTlsContext, node, []string{}, /*subjectAltNames*/ "", /*crl*/ trustDomainAliases, ctx.RequireClientCertificate.Value) // Compliance for downstream mesh mTLS. authn_model.EnforceCompliance(ctx.CommonTlsContext) return ctx }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 00:16:21 UTC 2024 - 3.8K bytes - Viewed (0) -
staging/src/k8s.io/api/certificates/v1beta1/generated.proto
// // Valid values are: // "signing", // "digital signature", // "content commitment", // "key encipherment", // "key agreement", // "data encipherment", // "cert sign", // "crl sign", // "encipher only", // "decipher only", // "any", // "server auth", // "client auth", // "code signing", // "email protection", // "s/mime", // "ipsec end system",
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Mar 28 15:34:11 UTC 2024 - 6.7K bytes - Viewed (0) -
pilot/pkg/networking/core/gateway_test.go
}, }, { name: "mesh SDS enabled, tls mode ISTIO_MUTUAL, CRL specified", server: &networking.Server{ Hosts: []string{"httpbin.example.com"}, Port: &networking.Port{ Protocol: string(protocol.HTTPS), }, Tls: &networking.ServerTLSSettings{ Mode: networking.ServerTLSSettings_ISTIO_MUTUAL, CaCrl: "/custom/path/to/crl.pem", }, }, result: &auth.DownstreamTlsContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 04:44:06 UTC 2024 - 144K bytes - Viewed (0) -
staging/src/k8s.io/api/certificates/v1/types.go
// // Valid values are: // "signing", "digital signature", "content commitment", // "key encipherment", "key agreement", "data encipherment", // "cert sign", "crl sign", "encipher only", "decipher only", "any", // "server auth", "client auth", // "code signing", "email protection", "s/mime", // "ipsec end system", "ipsec tunnel", "ipsec user",
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 23 17:42:49 UTC 2024 - 15.6K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_tls.go
} else { defaultValidationContext := &tlsv3.CertificateValidationContext{MatchSubjectAltNames: util.StringToExactMatch(tls.SubjectAltNames)} if tls.GetCaCrl() != "" { defaultValidationContext.Crl = &core.DataSource{ Specifier: &core.DataSource_Filename{ Filename: tls.GetCaCrl(), }, } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 18 19:09:43 UTC 2024 - 19.2K bytes - Viewed (0)