- Sort Score
- Result 10 results
- Languages All
Results 41 - 50 of 60 for rootCert (0.15 sec)
-
istioctl/pkg/workload/workload.go
// TODO: Make the following accurate when using the Kubernetes certificate signer func createCertsTokens(kubeClient kube.CLIClient, wg *clientv1alpha3.WorkloadGroup, dir string, out io.Writer) error { rootCert, err := kubeClient.Kube().CoreV1().ConfigMaps(wg.Namespace).Get(context.Background(), controller.CACertNamespaceConfigMap, metav1.GetOptions{}) // errors if the requested configmap does not exist in the given namespace
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 20:06:41 UTC 2024 - 25.5K bytes - Viewed (0) -
security/pkg/nodeagent/sds/sdsservice.go
secret.Type = &tls.Secret_ValidationContext{ ValidationContext: &tls.CertificateValidationContext{ TrustedCa: &core.DataSource{ Specifier: &core.DataSource_InlineBytes{ InlineBytes: s.RootCert, }, }, }, } } else { switch pkpConf.GetProvider().(type) { case *mesh.PrivateKeyProvider_Cryptomb: crypto := pkpConf.GetCryptomb()
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat May 25 00:20:04 UTC 2024 - 10.9K bytes - Viewed (0) -
pkg/istio-agent/agent_test.go
rootCert := filepath.Join(env.IstioSrc, "./tests/testdata/certs/pilot/root-cert.pem") resp.AgentConfig = AgentOptions{ ProxyXDSDebugViaAgent: true, CARootCerts: rootCert, XDSRootCerts: rootCert, XdsUdsPath: filepath.Join(d, "XDS"), ServiceNode: proxy.ServiceNode(),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 33.4K bytes - Viewed (0) -
pkg/security/security.go
GenerateSecret(resourceName string) (*SecretItem, error) } // SecretItem is the cached item in in-memory secret store. type SecretItem struct { CertificateChain []byte PrivateKey []byte RootCert []byte // ResourceName passed from envoy SDS discovery request. // "ROOTCA" for root cert request, "default" for key/cert request. ResourceName string CreatedTime time.Time ExpireTime time.Time
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 19.1K bytes - Viewed (0) -
pkg/istio-agent/xds_proxy.go
xdsCACertPath, err := agent.FindRootCAForXDS() if err != nil { return nil, fmt.Errorf("failed to find root CA cert for XDS: %v", err) } key, cert := agent.GetKeyCertsForXDS() return &istiogrpc.TLSOptions{ RootCert: xdsCACertPath, Key: key, Cert: cert, ServerAddress: agent.proxyConfig.DiscoveryAddress, SAN: p.istiodSAN, }, nil }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 27.9K bytes - Viewed (0) -
tests/integration/ambient/baseline_test.go
CaCert: string(cert.RootCert), InsecureSkipVerify: true, } hbsvc := echo.HBONE{ Address: apps.WaypointProxies[apps.ServiceAddressedWaypoint.Config().ServiceWaypointProxy].Inbound(), Headers: nil, Cert: string(cert.ClientCert), Key: string(cert.Key), CaCert: string(cert.RootCert), InsecureSkipVerify: true, }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 00:07:28 UTC 2024 - 78.4K bytes - Viewed (0) -
security/pkg/server/ca/server_test.go
SignedCert: []byte("cert"), KeyCertBundle: util.NewKeyCertBundleFromPem(nil, nil, []byte("cert_chain"), []byte("root_cert")), }, Authenticators: []security.Authenticator{auth}, monitoring: newMonitoringMetrics(), } mockCertChain := []string{"cert", "cert_chain", "root_cert"} mockIPAddr := &net.IPAddr{IP: net.IPv4(192, 168, 1, 1)} testCerts := map[string]struct { certChain [][]*x509.Certificate
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Feb 28 16:41:38 UTC 2024 - 15.8K bytes - Viewed (0) -
pkg/test/csrctrl/signer/signer.go
if err != nil { return nil, fmt.Errorf("failed to append intermediate certificates (%v)", err) } if appendRootCert { rootCerts, err := util.AppendRootCerts(intermediateCerts, s.caProvider.caLoader.CertFile) if err != nil { return nil, fmt.Errorf("failed to append root certificates (%v)", err) } return rootCerts, nil } return intermediateCerts, nil } func (s *Signer) GetRootCerts() string {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 03 18:57:19 UTC 2021 - 2.5K bytes - Viewed (0) -
src/crypto/x509/hybrid_pool_test.go
if err != nil { t.Fatalf("failed to generate test key: %s", err) } rootDER, err := x509.CreateCertificate(rand.Reader, rootTmpl, rootTmpl, k.Public(), k) if err != nil { t.Fatalf("failed to create test cert: %s", err) } root, err := x509.ParseCertificate(rootDER) if err != nil { t.Fatalf("failed to parse test cert: %s", err) } pool, err := x509.SystemCertPool()
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Mon Feb 26 20:48:11 UTC 2024 - 3.7K bytes - Viewed (0) -
src/crypto/x509/root.go
"sync" _ "unsafe" // for linkname ) // systemRoots should be an internal detail, // but widely used packages access it using linkname. // Notable members of the hall of shame include: // - github.com/breml/rootcerts // // Do not remove or change the type signature. // See go.dev/issue/67401. // //go:linkname systemRoots var ( once sync.Once systemRootsMu sync.RWMutex systemRoots *CertPool
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Wed May 29 17:58:53 UTC 2024 - 2.3K bytes - Viewed (0)