Skip to content

Commit 3be9c08

Browse files
kfaseelakfaseela
authored
Document available cipher list for ServerTLSSettings (#2718)
* Document available cipher list for ServerTLSSettings Signed-off-by: Faseela K <faseela.k@est.tech> * address review comments Signed-off-by: Faseela K <faseela.k@est.tech> --------- Signed-off-by: Faseela K <faseela.k@est.tech>
1 parent 681fed9 commit 3be9c08

File tree

9 files changed

+96
-9
lines changed

9 files changed

+96
-9
lines changed

networking/v1alpha3/gateway.gen.json

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1alpha3/gateway.pb.go

Lines changed: 18 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1alpha3/gateway.pb.html

Lines changed: 20 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1alpha3/gateway.proto

Lines changed: 18 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -730,6 +730,23 @@ message ServerTLSSettings {
730730
TLSProtocol max_protocol_version = 8;
731731

732732
// Optional: If specified, only support the specified cipher list.
733-
// Otherwise default to the default cipher list supported by Envoy.
733+
// Otherwise default to the default cipher list supported by Envoy
734+
// as specified [here](https://www.envoyproxy.io/docs/envoy/latest/api-v3/extensions/transport_sockets/tls/v3/common.proto).
735+
// The supported list of ciphers are:
736+
// * `ECDHE-ECDSA-AES128-GCM-SHA256`
737+
// * `ECDHE-RSA-AES128-GCM-SHA256`
738+
// * `ECDHE-ECDSA-AES256-GCM-SHA384`
739+
// * `ECDHE-RSA-AES256-GCM-SHA384`
740+
// * `ECDHE-ECDSA-CHACHA20-POLY1305`
741+
// * `ECDHE-RSA-CHACHA20-POLY1305`
742+
// * `ECDHE-ECDSA-AES128-SHA`
743+
// * `ECDHE-RSA-AES128-SHA`
744+
// * `ECDHE-ECDSA-AES256-SHA`
745+
// * `ECDHE-RSA-AES256-SHA`
746+
// * `AES128-GCM-SHA256`
747+
// * `AES256-GCM-SHA384`
748+
// * `AES128-SHA`
749+
// * `AES256-SHA`
750+
// * `DES-CBC3-SHA`
734751
repeated string cipher_suites = 9;
735752
}

networking/v1alpha3/sidecar.gen.json

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1beta1/gateway.gen.json

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1beta1/gateway.pb.go

Lines changed: 18 additions & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

networking/v1beta1/gateway.proto

Lines changed: 18 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -730,6 +730,23 @@ message ServerTLSSettings {
730730
TLSProtocol max_protocol_version = 8;
731731

732732
// Optional: If specified, only support the specified cipher list.
733-
// Otherwise default to the default cipher list supported by Envoy.
733+
// Otherwise default to the default cipher list supported by Envoy
734+
// as specified [here](https://www.envoyproxy.io/docs/envoy/latest/api-v3/extensions/transport_sockets/tls/v3/common.proto).
735+
// The supported list of ciphers are:
736+
// * `ECDHE-ECDSA-AES128-GCM-SHA256`
737+
// * `ECDHE-RSA-AES128-GCM-SHA256`
738+
// * `ECDHE-ECDSA-AES256-GCM-SHA384`
739+
// * `ECDHE-RSA-AES256-GCM-SHA384`
740+
// * `ECDHE-ECDSA-CHACHA20-POLY1305`
741+
// * `ECDHE-RSA-CHACHA20-POLY1305`
742+
// * `ECDHE-ECDSA-AES128-SHA`
743+
// * `ECDHE-RSA-AES128-SHA`
744+
// * `ECDHE-ECDSA-AES256-SHA`
745+
// * `ECDHE-RSA-AES256-SHA`
746+
// * `AES128-GCM-SHA256`
747+
// * `AES256-GCM-SHA384`
748+
// * `AES128-SHA`
749+
// * `AES256-SHA`
750+
// * `DES-CBC3-SHA`
734751
repeated string cipher_suites = 9;
735752
}

networking/v1beta1/sidecar.gen.json

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)