github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
k3s/pkg/server
History
Brad Davidson ddbe499d9a Add FilterCN function to prevent SAN Stuffing 
Wire up a node watch to collect addresses of server nodes, to prevent adding unauthorized SANs to the dynamiclistener cert.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit aa76942d0f)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 		2023-08-04 16:08:16 -07:00
..
auth.go Make supervisor errors parsable by Kubernetes client libs 2022-04-29 09:23:37 -07:00
cert.go Add support for cross-signing new certs during ca rotation 2023-03-13 20:04:11 -07:00
context.go Soft-fail on node password verification if the secret cannot be created 2023-06-12 10:53:26 -07:00
router.go Fix rootless node password (#7900) 2023-07-07 11:03:14 -07:00
secrets-encrypt.go Add FilterCN function to prevent SAN Stuffing 2023-08-04 16:08:16 -07:00
server.go Add FilterCN function to prevent SAN Stuffing 2023-08-04 16:08:16 -07:00
types.go Move DisableServiceLB/Rootless/ServiceLBNamespace into config.Control 2022-09-30 08:17:20 -07:00