Skip to content

Commit

Permalink
Enhance L7 NetworkPolicy to support TLS protocol (#4932)
Browse files Browse the repository at this point in the history 
Signed-off-by: Hongliang Liu <[email protected]>
  • Loading branch information
@hongliangl
hongliangl authored Jul 21, 2023
1 parent 33878a8 commit 9c09f7c
Show file tree
Hide file tree
Showing 27 changed files with 1,015 additions and 187 deletions.
12 changes: 12 additions & 0 deletions build/charts/antrea/crds/clusternetworkpolicy.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -267,6 +267,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -278,6 +279,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -522,6 +528,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -533,6 +540,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
12 changes: 12 additions & 0 deletions build/charts/antrea/crds/networkpolicy.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -203,6 +203,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -214,6 +215,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -431,6 +437,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -442,6 +449,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-aks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1859,6 +1871,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1870,6 +1883,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2087,6 +2105,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2098,6 +2117,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-crds.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -639,6 +639,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -650,6 +651,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -894,6 +900,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -905,6 +912,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1840,6 +1852,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1851,6 +1864,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2068,6 +2086,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2079,6 +2098,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-eks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1859,6 +1871,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1870,6 +1883,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2087,6 +2105,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2098,6 +2117,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
24 changes: 24 additions & 0 deletions build/yamls/antrea-gke.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -646,6 +646,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -657,6 +658,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -901,6 +907,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -912,6 +919,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down Expand Up @@ -1859,6 +1871,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -1870,6 +1883,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
from:
type: array
items:
Expand Down Expand Up @@ -2087,6 +2105,7 @@ spec:
type: object
oneOf:
- required: [http]
- required: [tls]
properties:
http:
type: object
Expand All @@ -2098,6 +2117,11 @@ spec:
enum: ['GET', 'POST', 'PUT', 'HEAD', 'DELETE', 'TRACE', 'OPTIONS', 'CONNECT', 'PATCH']
path:
type: string
tls:
type: object
properties:
sni:
type: string
to:
type: array
items:
Expand Down
Loading

0 comments on commit 9c09f7c

Please sign in to comment.