canonical/bundle-kubeflow

Explore the Istio and tls-operators cryptographic information

Opened this issue · 1 comments

orfeas-k commented

Context

SSDL - Cryptography epic

What needs to get done

Pods in user-namespaces have Istio sidecars. There’s mTLS between Pods in user namespaces (between them, and IngressGateway). Questions we need to answer:

  • For mTLS what libraries are used by sidecars?
  • Is istiod distributing certificates to the sidecar charms?
  • Has the Service Mesh team information about this?
  • Is Istio-pilot charm.py using any crypto libraries?

Definition of Done

We have enough information in order to document istio work with cryptographic libraries.

syncronize-issues-to-jira commented

Thank you for reporting us your feedback!

The internal ticket has been created: https://warthogs.atlassian.net/browse/KF-6115.

This message was autogenerated