github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-15 06:43:54 +00:00
Code Issues Projects Releases Wiki Activity

Add warning about TLS 1.3 cipher suites

Browse Source
This commit is contained in:
Leonard Cohnen 2023-02-02 17:02:38 +01:00
parent 13354d3da4
commit fabf1cba94
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
cmd/kubelet/app/server.go
View File

@ -1060,6 +1060,12 @@ func InitializeTLS(kf *options.KubeletFlags, kc *kubeletconfiginternal.KubeletCo
return nil, err return nil, err
} }
if minTLSVersion == tls.VersionTLS13 {
if len(tlsCipherSuites) != 0 {
klog.Warning("TLS 1.3 cipher suites are not configurable, ignoring --tls-cipher-suites")
}
}
tlsOptions := &server.TLSOptions{ tlsOptions := &server.TLSOptions{
Config: &tls.Config{ Config: &tls.Config{
MinVersion: minTLSVersion, MinVersion: minTLSVersion,