linkerd
/
linkerd2-proxy
mirror of https://github.com/linkerd/linkerd2-proxy.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
A purpose-built proxy for the Linkerd service mesh. Written in Rust.
230 Commits 118 Branches 378 Tags 37 MiB
Rust 99.4%
Just 0.4%
Go to file
Brian Smith 2750ddb77f Proxy: Make TLS server aware of its own identity. (#1148) 
* Proxy: Make TLS server aware of its own identity.

When validating the TLS configuration, make sure the certificate is
valid for the current pod. Make the pod's identity available at that
point in time so it can do so. Since the identity is available now,
simplify the validation of our own certificate by using Rustls's API
instead of dropping down to the lower-level webpli API.

This is a step towards the server differentiating between TLS
handshakes it is supposed to terminate vs. TLS handshakes it is
supposed to pass through.

This is also a step toward the client side (connect) of TLS, which will
reuse much of the configuration logic.

Signed-off-by: Brian Smith <brian@briansmith.org>
 		2018-06-18 12:53:10 -10:00
.github Add a newline to dco.yml (#254) 2018-02-01 15:16:02 -08:00
proxy Proxy: Make TLS server aware of its own identity. (#1148) 2018-06-18 12:53:10 -10:00
CONTRIBUTING.md Add contributing doc and DCO file (#88) 2017-12-22 14:54:27 -08:00
Cargo.lock proxy: Upgrade h2 to 0.1.10 (#1149) 2018-06-18 14:56:54 -07:00
Cargo.toml Update Rustls to the latest Git version to fix a bug. (#1143) 2018-06-16 08:09:42 -10:00
DCO Add contributing doc and DCO file (#88) 2017-12-22 14:54:27 -08:00
LICENSE Introducing Conduit, the ultralight service mesh 2017-12-05 00:24:55 +00:00