Skip to content

Commit

Permalink
Enhance L7 NetworkPolicy to support TLS protocol
Browse files Browse the repository at this point in the history 
Signed-off-by: Hongliang Liu <[email protected]>
  • Loading branch information
@hongliangl
hongliangl committed Jul 19, 2023
1 parent ae6f269 commit fc32b93
Show file tree
Hide file tree
Showing 27 changed files with 1,031 additions and 182 deletions.
12 changes: 12 additions & 0 deletions build/charts/antrea/crds/clusternetworkpolicy.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -267,6 +267,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -278,6 +279,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -522,6 +528,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -533,6 +540,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
12 changes: 12 additions & 0 deletions build/charts/antrea/crds/networkpolicy.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -203,6 +203,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -214,6 +215,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -431,6 +437,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -442,6 +449,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-aks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1858,6 +1870,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1869,6 +1882,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2086,6 +2104,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2097,6 +2116,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-crds.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -639,6 +639,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -650,6 +651,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -894,6 +900,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -905,6 +912,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1839,6 +1851,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1850,6 +1863,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2067,6 +2085,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2078,6 +2097,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-eks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1858,6 +1870,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1869,6 +1882,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2086,6 +2104,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2097,6 +2116,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-gke.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1858,6 +1870,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1869,6 +1882,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2086,6 +2104,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2097,6 +2116,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
Loading

0 comments on commit fc32b93

Please sign in to comment.