Documentation

Overview

    Package encrypt represents the nodes current encryption state. It is used by the datapath to learn current encryption configuration and managed by golang linux datapath ./pkg/datapath/linux/ objects. This will reflect any key rotations/updates. +groupName=maps

    Index

    Constants

    View Source
    const (
    	// MapName name of map used to pin map for datapath
    	MapName = "cilium_encrypt_state"
    
    	// MaxEntries represents the maximum number of current encryption contexts
    	MaxEntries = 1
    )

    Variables

    This section is empty.

    Functions

    func MapCreate

    func MapCreate() error

      MapCreate will create an encrypt map

      func MapUpdateContext

      func MapUpdateContext(ctxID uint32, keyID uint8) error

        MapUpdateContext updates the encrypt state with ctxID to use the new keyID

        Types

        type EncryptKey

        type EncryptKey struct {
        	// contains filtered or unexported fields
        }

          EncryptKey is the context ID for the encryption session +k8s:deepcopy-gen=true +k8s:deepcopy-gen:interfaces=github.com/cilium/cilium/pkg/bpf.MapKey

          func (*EncryptKey) DeepCopy

          func (in *EncryptKey) DeepCopy() *EncryptKey

            DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EncryptKey.

            func (*EncryptKey) DeepCopyInto

            func (in *EncryptKey) DeepCopyInto(out *EncryptKey)

              DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

              func (*EncryptKey) DeepCopyMapKey

              func (in *EncryptKey) DeepCopyMapKey() bpf.MapKey

                DeepCopyMapKey is an autogenerated deepcopy function, copying the receiver, creating a new bpf.MapKey.

                func (*EncryptKey) GetKeyPtr

                func (k *EncryptKey) GetKeyPtr() unsafe.Pointer

                  GetKeyPtr returns the unsafe pointer to the BPF key

                  func (EncryptKey) NewValue

                  func (k EncryptKey) NewValue() bpf.MapValue

                    NewValue returns a new empty instance of the structure represeting the BPF map value

                    func (EncryptKey) String

                    func (k EncryptKey) String() string

                      String pretty print the EncryptKey

                      type EncryptValue

                      type EncryptValue struct {
                      	// contains filtered or unexported fields
                      }

                        EncryptValue is ID assigned to the keys +k8s:deepcopy-gen=true +k8s:deepcopy-gen:interfaces=github.com/cilium/cilium/pkg/bpf.MapValue

                        func (*EncryptValue) DeepCopy

                        func (in *EncryptValue) DeepCopy() *EncryptValue

                          DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EncryptValue.

                          func (*EncryptValue) DeepCopyInto

                          func (in *EncryptValue) DeepCopyInto(out *EncryptValue)

                            DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

                            func (*EncryptValue) DeepCopyMapValue

                            func (in *EncryptValue) DeepCopyMapValue() bpf.MapValue

                              DeepCopyMapValue is an autogenerated deepcopy function, copying the receiver, creating a new bpf.MapValue.

                              func (*EncryptValue) GetValuePtr

                              func (v *EncryptValue) GetValuePtr() unsafe.Pointer

                                GetValuePtr returns the unsafe pointer to the BPF value.

                                func (EncryptValue) String

                                func (v EncryptValue) String() string

                                  String pretty print the encryption key index.