Documentation
¶
Index ¶
- func APIServerDefaultTLSCipherSuites() []string
- func DefaultTLSCipherSuites() []string
- func NewKubeProxyConfiguration(cluster *kubeoneapi.KubeOneCluster) (runtime.Object, error)
- func NewKubeletConfiguration(cluster *kubeoneapi.KubeOneCluster, featureGates map[string]bool) (runtime.Object, error)
- func TLSCipherSuites(cipherSuites []*tls.CipherSuite) []string
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func APIServerDefaultTLSCipherSuites ¶ added in v1.8.0
func APIServerDefaultTLSCipherSuites() []string
This list is produces according to CIS 1.8 / 1.2.30
See more: https://github.com/aquasecurity/kube-bench/blob/v0.7.2/cfg/cis-1.8/master.yaml#L768-L788
func DefaultTLSCipherSuites ¶ added in v1.8.0
func DefaultTLSCipherSuites() []string
This list is produces according to CIS 1.8 / 4.2.12
TLS_RSA_WITH_AES_256_GCM_SHA384 and TLS_RSA_WITH_AES_128_GCM_SHA256 excluded from the list as insecure. See more: https://github.com/aquasecurity/kube-bench/blob/v0.7.2/cfg/cis-1.8/node.yaml#L420-L442
func NewKubeProxyConfiguration ¶
func NewKubeProxyConfiguration(cluster *kubeoneapi.KubeOneCluster) (runtime.Object, error)
func NewKubeletConfiguration ¶
func NewKubeletConfiguration(cluster *kubeoneapi.KubeOneCluster, featureGates map[string]bool) (runtime.Object, error)
func TLSCipherSuites ¶ added in v1.8.0
func TLSCipherSuites(cipherSuites []*tls.CipherSuite) []string
Types ¶
This section is empty.
Source Files
Click to show internal directories.
Click to hide internal directories.