* Relaxed test condition.
* Independence of `socat` image entrypoint.
* The `socat` image is configurable via environment variable.
Signed-off-by: Matej Vasek <mvasek@redhat.com>
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fix: in cluster dialer sec.ctx. is non-privileged
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: drop all capabilities
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: seccomp
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: unset seccomp profile type
the seccomp profile type must be empty for osh 4.10
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: suppress warnings
Signed-off-by: Matej Vasek <mvasek@redhat.com>
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* src: refactor
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* src: Allow usage of custom CA for
Allows TLS verify against custom CA for chosen server names.
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: style
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: lint
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: cleanup
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* src: dialer pod auto-exit
The pod should exit (be Completed) when func exits.
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* feat: use in cluster dialer by default
This sets http.DefaultTransport to our specialized RoundTripper.
The RoundTripper first tries dial in standard way.
If dial operation fails due to hostname resolution error
in cluster dialer will be used.
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* src: in cluster dialer
Added code that will proxy TCP connections via in cluster pod.
This is useful for accessing k8s services that are not exposed.
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: increase timeouts
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* fixup: decrease test iterations
Signed-off-by: Matej Vasek <mvasek@redhat.com>
* Use official image
Signed-off-by: Matej Vasek <mvasek@redhat.com>
Matej Vasek