1
0
Fork 0
mirror of https://github.com/kubernetes-sigs/node-feature-discovery.git synced 2025-03-14 20:56:42 +00:00

Merge pull request #781 from marquiz/devel/tls-1.3

tls: require min TLS version 1.3
This commit is contained in:
Kubernetes Prow Robot 2022-02-25 07:37:51 -08:00 committed by GitHub
commit d848ee9733
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 0 deletions

View file

@ -118,6 +118,7 @@ func (w *NfdBaseClient) Connect() error {
Certificates: []tls.Certificate{cert},
RootCAs: caPool,
ServerName: w.args.ServerNameOverride,
MinVersion: tls.VersionTLS13,
}
dialOpts = append(dialOpts, grpc.WithTransportCredentials(credentials.NewTLS(tlsConfig)))
} else {

View file

@ -65,6 +65,7 @@ func (c *TlsConfig) UpdateConfig(certFile, keyFile, caFile string) error {
ClientCAs: caPool,
ClientAuth: tls.RequireAndVerifyClientCert,
GetConfigForClient: c.GetConfig,
MinVersion: tls.VersionTLS13,
}
return nil
}