SYMBOL INDEX (456 symbols across 57 files) FILE: cmd/controller/main.go constant flagEnvPrefix (line 23) | flagEnvPrefix = "SEALED_SECRETS" constant defaultKeyRenewPeriod (line 24) | defaultKeyRenewPeriod = 30 * 24 * time.Hour constant defaultKeyOrderPriority (line 25) | defaultKeyOrderPriority = "CertNotBefore" function bindControllerFlags (line 33) | func bindControllerFlags(f *controller.Flags, fs *flag.FlagSet) { function bindFlags (line 71) | func bindFlags(f *controller.Flags, fs *flag.FlagSet, gofs *goflag.FlagS... function mainE (line 85) | func mainE(w io.Writer, fs *flag.FlagSet, gofs *goflag.FlagSet, args []s... function main (line 125) | func main() { FILE: cmd/controller/main_test.go function TestVersion (line 11) | func TestVersion(t *testing.T) { FILE: cmd/kubeseal/main.go constant flagEnvPrefix (line 31) | flagEnvPrefix = "SEALED_SECRETS" type cliFlags (line 39) | type cliFlags struct type config (line 61) | type config struct function newConfig (line 67) | func newConfig(clientConfig clientcmd.ClientConfig, flags *cliFlags) *co... function initClient (line 75) | func initClient(kubeConfigPath string, cfgOverrides *clientcmd.ConfigOve... function bindFlags (line 82) | func bindFlags(f *cliFlags, fs *flag.FlagSet) { function bindClientFlags (line 111) | func bindClientFlags(fs *flag.FlagSet, gofs *goflag.FlagSet, overrides *... function initUsualKubectlFlags (line 124) | func initUsualKubectlFlags(overrides *clientcmd.ConfigOverrides, fs *fla... function runCLI (line 129) | func runCLI(w io.Writer, cfg *config) (err error) { function mainE (line 265) | func mainE(w io.Writer, fs *flag.FlagSet, gofs *goflag.FlagSet, args []s... function main (line 291) | func main() { FILE: cmd/kubeseal/main_test.go type mockClientConfig (line 31) | type mockClientConfig struct method Namespace (line 36) | func (m *mockClientConfig) Namespace() (string, bool, error) { method ClientConfig (line 40) | func (m *mockClientConfig) ClientConfig() (*rest.Config, error) { method ConfigAccess (line 44) | func (m *mockClientConfig) ConfigAccess() clientcmd.ConfigAccess { method RawConfig (line 48) | func (m *mockClientConfig) RawConfig() (clientcmdapi.Config, error) { function TestVersion (line 52) | func TestVersion(t *testing.T) { function testClientConfig (line 66) | func testClientConfig() clientcmd.ClientConfig { function testConfig (line 70) | func testConfig(flags *cliFlags) *config { function TestMainError (line 79) | func TestMainError(t *testing.T) { function writeTempFile (line 90) | func writeTempFile(b []byte) (string, error) { function newTestKeyPairSingle (line 105) | func newTestKeyPairSingle(t *testing.T) (*rsa.PublicKey, *rsa.PrivateKey) { function testingKeypairFiles (line 115) | func testingKeypairFiles(t *testing.T) (string, string, func()) { function TestWriteToFile (line 143) | func TestWriteToFile(t *testing.T) { function TestFailToWriteToFile (line 193) | func TestFailToWriteToFile(t *testing.T) { function Test_runCLI (line 246) | func Test_runCLI(t *testing.T) { type tweakedClientConfig (line 272) | type tweakedClientConfig struct method Namespace (line 277) | func (tcc *tweakedClientConfig) Namespace() (string, bool, error) { method ClientConfig (line 281) | func (tcc *tweakedClientConfig) ClientConfig() (*rest.Config, error) { function trySealTestItem (line 285) | func trySealTestItem(certFilename, secretNS, secretName, secretValue str... function TestRawSealErrors (line 311) | func TestRawSealErrors(t *testing.T) { FILE: integration/controller_test.go constant Timeout (line 39) | Timeout = 15 * time.Second constant PollingInterval (line 40) | PollingInterval = "100ms" function getData (line 43) | func getData(s *v1.Secret) map[string][]byte { function getAnnotations (line 47) | func getAnnotations(s *v1.Secret) map[string]string { function getLabels (line 51) | func getLabels(s *v1.Secret) map[string]string { function getStatus (line 55) | func getStatus(ss *ssv1alpha1.SealedSecret) *ssv1alpha1.SealedSecretStat... function getObservedGeneration (line 59) | func getObservedGeneration(ss *ssv1alpha1.SealedSecret) int64 { function getFirstOwnerName (line 64) | func getFirstOwnerName(s *v1.Secret) string { function getNumberOfOwners (line 68) | func getNumberOfOwners(s *v1.Secret) int { function getSecretType (line 72) | func getSecretType(s *v1.Secret) v1.SecretType { function getSecretImmutable (line 76) | func getSecretImmutable(s *v1.Secret) bool { function compareLastTimes (line 80) | func compareLastTimes(ss *ssv1alpha1.SealedSecret) bool { function fetchKeys (line 89) | func fetchKeys(ctx context.Context, c corev1.SecretsGetter) (map[string]... function containEventWithReason (line 127) | func containEventWithReason(matcher types.GomegaMatcher) types.GomegaMat... function containEventWithMessage (line 137) | func containEventWithMessage(matcher types.GomegaMatcher) types.GomegaMa... FILE: integration/integration_suite_test.go function clusterConfigOrDie (line 38) | func clusterConfigOrDie() *rest.Config { function createNsOrDie (line 54) | func createNsOrDie(ctx context.Context, c corev1.NamespacesGetter, ns st... function deleteNsOrDie (line 70) | func deleteNsOrDie(ctx context.Context, c corev1.NamespacesGetter, ns st... function containsString (line 77) | func containsString(haystack []string, needle string) bool { function runKubeseal (line 86) | func runKubeseal(flags []string, input io.Reader, output io.Writer, opts... type interruptableReader (line 96) | type interruptableReader struct method Read (line 101) | func (r interruptableReader) Read(p []byte) (int, error) { function streamLog (line 112) | func streamLog(ctx context.Context, c corev1.PodsGetter, namespace, name... function runController (line 131) | func runController(flags []string, input io.Reader, output io.Writer) er... type runAppOpt (line 135) | type runAppOpt type runAppOpts (line 137) | type runAppOpts struct function runAppWithStderr (line 141) | func runAppWithStderr(w io.Writer) runAppOpt { function runApp (line 145) | func runApp(app string, flags []string, input io.Reader, output io.Write... function runKubesealWith (line 162) | func runKubesealWith(flags []string, input runtime.Object, opts ...runAp... function TestE2e (line 187) | func TestE2e(t *testing.T) { FILE: pkg/apis/sealedsecrets/v1alpha1/register.go constant GroupName (line 12) | GroupName = "bitnami.com" function init (line 24) | func init() { function Resource (line 29) | func Resource(resource string) schema.GroupResource { function addKnownTypes (line 33) | func addKnownTypes(scheme *runtime.Scheme) error { FILE: pkg/apis/sealedsecrets/v1alpha1/sealedsecret_expansion.go constant StrictScope (line 25) | StrictScope SealingScope = iota constant NamespaceWideScope (line 27) | NamespaceWideScope constant ClusterWideScope (line 29) | ClusterWideScope constant DefaultScope (line 32) | DefaultScope = StrictScope function init (line 42) | func init() { type SealedSecretExpansion (line 50) | type SealedSecretExpansion interface type SealingScope (line 56) | type SealingScope method String (line 58) | func (s *SealingScope) String() string { method Set (line 71) | func (s *SealingScope) Set(v string) error { method Type (line 88) | func (s *SealingScope) Type() string { return "string" } function EncryptionLabel (line 91) | func EncryptionLabel(namespace, name string, scope SealingScope) []byte { function labelFor (line 107) | func labelFor(o metav1.Object) []byte { function SecretScope (line 112) | func SecretScope(o metav1.Object) SealingScope { method Scope (line 123) | func (s *SealedSecret) Scope() SealingScope { function NewSealedSecretV1 (line 131) | func NewSealedSecretV1(codecs runtimeserializer.CodecFactory, pubKey *rs... function UpdateScopeAnnotations (line 173) | func UpdateScopeAnnotations(anno map[string]string, scope SealingScope) ... function StripLastAppliedAnnotations (line 193) | func StripLastAppliedAnnotations(annotations map[string]string) { function NewSealedSecret (line 209) | func NewSealedSecret(codecs runtimeserializer.CodecFactory, pubKey *rsa.... method Unseal (line 266) | func (s *SealedSecret) Unseal(codecs runtimeserializer.CodecFactory, pri... FILE: pkg/apis/sealedsecrets/v1alpha1/sealedsecret_test.go function TestSealingScope (line 32) | func TestSealingScope(t *testing.T) { function TestEncryptionLabel (line 67) | func TestEncryptionLabel(t *testing.T) { function TestLabel (line 87) | func TestLabel(t *testing.T) { function TestClusterWide (line 100) | func TestClusterWide(t *testing.T) { function TestNamespaceWide (line 116) | func TestNamespaceWide(t *testing.T) { function TestClusterAndNamespaceWide (line 132) | func TestClusterAndNamespaceWide(t *testing.T) { function TestSerialize (line 149) | func TestSerialize(t *testing.T) { function testRand (line 178) | func testRand() io.Reader { function generateTestKey (line 182) | func generateTestKey(t *testing.T, rand io.Reader, bits int) (*rsa.Priva... function TestSealRoundTrip (line 195) | func TestSealRoundTrip(t *testing.T) { function TestSealRoundTripStringDataConversion (line 218) | func TestSealRoundTripStringDataConversion(t *testing.T) { function TestSealRoundTripWithClusterWide (line 256) | func TestSealRoundTripWithClusterWide(t *testing.T) { function TestSealRoundTripWithMisMatchClusterWide (line 282) | func TestSealRoundTripWithMisMatchClusterWide(t *testing.T) { function TestSealRoundTripWithNamespaceWide (line 306) | func TestSealRoundTripWithNamespaceWide(t *testing.T) { function TestSealRoundTripWithMisMatchNamespaceWide (line 332) | func TestSealRoundTripWithMisMatchNamespaceWide(t *testing.T) { function TestSealRoundTripTemplateData (line 356) | func TestSealRoundTripTemplateData(t *testing.T) { function TestTemplateWithoutEncryptedData (line 394) | func TestTemplateWithoutEncryptedData(t *testing.T) { function TestSkipSetOwnerReference (line 413) | func TestSkipSetOwnerReference(t *testing.T) { function TestSealMetadataPreservation (line 470) | func TestSealMetadataPreservation(t *testing.T) { function TestUnsealingV1Format (line 524) | func TestUnsealingV1Format(t *testing.T) { function TestRejectBothEncryptedDataAndDeprecatedV1Data (line 560) | func TestRejectBothEncryptedDataAndDeprecatedV1Data(t *testing.T) { function TestInvalidBase64 (line 587) | func TestInvalidBase64(t *testing.T) { function sealSecret (line 618) | func sealSecret(t *testing.T, secret *v1.Secret, newSealedSecret func(se... function testWithAcceptDeprecatedV1Data (line 635) | func testWithAcceptDeprecatedV1Data(acceptDeprecated bool, inner func(t ... FILE: pkg/apis/sealedsecrets/v1alpha1/types.go constant SealedSecretName (line 12) | SealedSecretName = "sealed-secret." + GroupName constant SealedSecretPlural (line 14) | SealedSecretPlural = "sealedsecrets" constant annoNs (line 17) | annoNs = "sealedsecrets." + GroupName + "/" constant SealedSecretClusterWideAnnotation (line 21) | SealedSecretClusterWideAnnotation = annoNs + "cluster-wide" constant SealedSecretNamespaceWideAnnotation (line 25) | SealedSecretNamespaceWideAnnotation = annoNs + "namespace-wide" constant SealedSecretManagedAnnotation (line 29) | SealedSecretManagedAnnotation = annoNs + "managed" constant SealedSecretPatchAnnotation (line 33) | SealedSecretPatchAnnotation = annoNs + "patch" constant SealedSecretSkipSetOwnerReferencesAnnotation (line 37) | SealedSecretSkipSetOwnerReferencesAnnotation = annoNs + "skip-set-owner-... type SecretTemplateSpec (line 42) | type SecretTemplateSpec struct type SealedSecretSpec (line 68) | type SealedSecretSpec struct type SealedSecretEncryptedData (line 80) | type SealedSecretEncryptedData method UnmarshalJSON (line 82) | func (s *SealedSecretEncryptedData) UnmarshalJSON(data []byte) error { type SealedSecretConditionType (line 92) | type SealedSecretConditionType constant SealedSecretSynced (line 96) | SealedSecretSynced SealedSecretConditionType = "Synced" type SealedSecretCondition (line 100) | type SealedSecretCondition struct type SealedSecretStatus (line 118) | type SealedSecretStatus struct type SealedSecret (line 140) | type SealedSecret struct type SealedSecretList (line 152) | type SealedSecretList struct type ByCreationTimestamp (line 160) | type ByCreationTimestamp method Len (line 162) | func (s ByCreationTimestamp) Len() int { method Swap (line 166) | func (s ByCreationTimestamp) Swap(i, j int) { method Less (line 170) | func (s ByCreationTimestamp) Less(i, j int) bool { FILE: pkg/apis/sealedsecrets/v1alpha1/zz_generated.deepcopy.go method DeepCopyInto (line 13) | func (in ByCreationTimestamp) DeepCopyInto(out *ByCreationTimestamp) { method DeepCopy (line 25) | func (in ByCreationTimestamp) DeepCopy() ByCreationTimestamp { method DeepCopyInto (line 35) | func (in *SealedSecret) DeepCopyInto(out *SealedSecret) { method DeepCopy (line 49) | func (in *SealedSecret) DeepCopy() *SealedSecret { method DeepCopyObject (line 59) | func (in *SealedSecret) DeepCopyObject() runtime.Object { method DeepCopyInto (line 67) | func (in *SealedSecretCondition) DeepCopyInto(out *SealedSecretCondition) { method DeepCopy (line 75) | func (in *SealedSecretCondition) DeepCopy() *SealedSecretCondition { method DeepCopyInto (line 85) | func (in SealedSecretEncryptedData) DeepCopyInto(out *SealedSecretEncryp... method DeepCopy (line 97) | func (in SealedSecretEncryptedData) DeepCopy() SealedSecretEncryptedData { method DeepCopyInto (line 107) | func (in *SealedSecretList) DeepCopyInto(out *SealedSecretList) { method DeepCopy (line 122) | func (in *SealedSecretList) DeepCopy() *SealedSecretList { method DeepCopyObject (line 132) | func (in *SealedSecretList) DeepCopyObject() runtime.Object { method DeepCopyInto (line 140) | func (in *SealedSecretSpec) DeepCopyInto(out *SealedSecretSpec) { method DeepCopy (line 159) | func (in *SealedSecretSpec) DeepCopy() *SealedSecretSpec { method DeepCopyInto (line 169) | func (in *SealedSecretStatus) DeepCopyInto(out *SealedSecretStatus) { method DeepCopy (line 182) | func (in *SealedSecretStatus) DeepCopy() *SealedSecretStatus { method DeepCopyInto (line 192) | func (in *SecretTemplateSpec) DeepCopyInto(out *SecretTemplateSpec) { method DeepCopy (line 211) | func (in *SecretTemplateSpec) DeepCopy() *SecretTemplateSpec { FILE: pkg/buildinfo/version.go constant DefaultVersion (line 6) | DefaultVersion = "UNKNOWN" function FallbackVersion (line 9) | func FallbackVersion(v *string, unchanged string) { FILE: pkg/client/clientset/versioned/clientset.go type Interface (line 15) | type Interface interface type Clientset (line 21) | type Clientset struct method BitnamiV1alpha1 (line 27) | func (c *Clientset) BitnamiV1alpha1() bitnamiv1alpha1.BitnamiV1alpha1I... method Discovery (line 32) | func (c *Clientset) Discovery() discovery.DiscoveryInterface { function NewForConfig (line 44) | func NewForConfig(c *rest.Config) (*Clientset, error) { function NewForConfigAndClient (line 64) | func NewForConfigAndClient(c *rest.Config, httpClient *http.Client) (*Cl... function NewForConfigOrDie (line 89) | func NewForConfigOrDie(c *rest.Config) *Clientset { function New (line 98) | func New(c rest.Interface) *Clientset { FILE: pkg/client/clientset/versioned/fake/clientset_generated.go function NewSimpleClientset (line 20) | func NewSimpleClientset(objects ...runtime.Object) *Clientset { type Clientset (line 47) | type Clientset struct method Discovery (line 53) | func (c *Clientset) Discovery() discovery.DiscoveryInterface { method Tracker (line 57) | func (c *Clientset) Tracker() testing.ObjectTracker { method BitnamiV1alpha1 (line 67) | func (c *Clientset) BitnamiV1alpha1() bitnamiv1alpha1.BitnamiV1alpha1I... FILE: pkg/client/clientset/versioned/fake/register.go function init (line 37) | func init() { FILE: pkg/client/clientset/versioned/scheme/register.go function init (line 37) | func init() { FILE: pkg/client/clientset/versioned/typed/sealedsecrets/v1alpha1/fake/fake_sealedsecret.go type FakeSealedSecrets (line 17) | type FakeSealedSecrets struct method Get (line 27) | func (c *FakeSealedSecrets) Get(ctx context.Context, name string, opti... method List (line 38) | func (c *FakeSealedSecrets) List(ctx context.Context, opts v1.ListOpti... method Watch (line 60) | func (c *FakeSealedSecrets) Watch(ctx context.Context, opts v1.ListOpt... method Create (line 67) | func (c *FakeSealedSecrets) Create(ctx context.Context, sealedSecret *... method Update (line 78) | func (c *FakeSealedSecrets) Update(ctx context.Context, sealedSecret *... method UpdateStatus (line 90) | func (c *FakeSealedSecrets) UpdateStatus(ctx context.Context, sealedSe... method Delete (line 101) | func (c *FakeSealedSecrets) Delete(ctx context.Context, name string, o... method DeleteCollection (line 109) | func (c *FakeSealedSecrets) DeleteCollection(ctx context.Context, opts... method Patch (line 117) | func (c *FakeSealedSecrets) Patch(ctx context.Context, name string, pt... FILE: pkg/client/clientset/versioned/typed/sealedsecrets/v1alpha1/fake/fake_sealedsecrets_client.go type FakeBitnamiV1alpha1 (line 11) | type FakeBitnamiV1alpha1 struct method SealedSecrets (line 15) | func (c *FakeBitnamiV1alpha1) SealedSecrets(namespace string) v1alpha1... method RESTClient (line 21) | func (c *FakeBitnamiV1alpha1) RESTClient() rest.Interface { FILE: pkg/client/clientset/versioned/typed/sealedsecrets/v1alpha1/generated_expansion.go type SealedSecretExpansion (line 5) | type SealedSecretExpansion interface FILE: pkg/client/clientset/versioned/typed/sealedsecrets/v1alpha1/sealedsecret.go type SealedSecretsGetter (line 19) | type SealedSecretsGetter interface type SealedSecretInterface (line 24) | type SealedSecretInterface interface type sealedSecrets (line 38) | type sealedSecrets struct method Get (line 52) | func (c *sealedSecrets) Get(ctx context.Context, name string, options ... method List (line 65) | func (c *sealedSecrets) List(ctx context.Context, opts v1.ListOptions)... method Watch (line 82) | func (c *sealedSecrets) Watch(ctx context.Context, opts v1.ListOptions... method Create (line 97) | func (c *sealedSecrets) Create(ctx context.Context, sealedSecret *v1al... method Update (line 110) | func (c *sealedSecrets) Update(ctx context.Context, sealedSecret *v1al... method UpdateStatus (line 125) | func (c *sealedSecrets) UpdateStatus(ctx context.Context, sealedSecret... method Delete (line 140) | func (c *sealedSecrets) Delete(ctx context.Context, name string, opts ... method DeleteCollection (line 151) | func (c *sealedSecrets) DeleteCollection(ctx context.Context, opts v1.... method Patch (line 167) | func (c *sealedSecrets) Patch(ctx context.Context, name string, pt typ... function newSealedSecrets (line 44) | func newSealedSecrets(c *BitnamiV1alpha1Client, namespace string) *seale... FILE: pkg/client/clientset/versioned/typed/sealedsecrets/v1alpha1/sealedsecrets_client.go type BitnamiV1alpha1Interface (line 13) | type BitnamiV1alpha1Interface interface type BitnamiV1alpha1Client (line 19) | type BitnamiV1alpha1Client struct method SealedSecrets (line 23) | func (c *BitnamiV1alpha1Client) SealedSecrets(namespace string) Sealed... method RESTClient (line 86) | func (c *BitnamiV1alpha1Client) RESTClient() rest.Interface { function NewForConfig (line 30) | func NewForConfig(c *rest.Config) (*BitnamiV1alpha1Client, error) { function NewForConfigAndClient (line 44) | func NewForConfigAndClient(c *rest.Config, h *http.Client) (*BitnamiV1al... function NewForConfigOrDie (line 58) | func NewForConfigOrDie(c *rest.Config) *BitnamiV1alpha1Client { function New (line 67) | func New(c rest.Interface) *BitnamiV1alpha1Client { function setConfigDefaults (line 71) | func setConfigDefaults(config *rest.Config) error { FILE: pkg/client/informers/externalversions/factory.go type SharedInformerOption (line 20) | type SharedInformerOption type sharedInformerFactory (line 22) | type sharedInformerFactory struct method Start (line 108) | func (f *sharedInformerFactory) Start(stopCh <-chan struct{}) { method Shutdown (line 132) | func (f *sharedInformerFactory) Shutdown() { method WaitForCacheSync (line 141) | func (f *sharedInformerFactory) WaitForCacheSync(stopCh <-chan struct{... method InformerFor (line 164) | func (f *sharedInformerFactory) InformerFor(obj runtime.Object, newFun... method Bitnami (line 243) | func (f *sharedInformerFactory) Bitnami() sealedsecrets.Interface { function WithCustomResyncConfig (line 43) | func WithCustomResyncConfig(resyncConfig map[v1.Object]time.Duration) Sh... function WithTweakListOptions (line 53) | func WithTweakListOptions(tweakListOptions internalinterfaces.TweakListO... function WithNamespace (line 61) | func WithNamespace(namespace string) SharedInformerOption { function WithTransform (line 69) | func WithTransform(transform cache.TransformFunc) SharedInformerOption { function NewSharedInformerFactory (line 77) | func NewSharedInformerFactory(client versioned.Interface, defaultResync ... function NewFilteredSharedInformerFactory (line 85) | func NewFilteredSharedInformerFactory(client versioned.Interface, defaul... function NewSharedInformerFactoryWithOptions (line 90) | func NewSharedInformerFactoryWithOptions(client versioned.Interface, def... type SharedInformerFactory (line 210) | type SharedInformerFactory interface FILE: pkg/client/informers/externalversions/generic.go type GenericInformer (line 15) | type GenericInformer interface type genericInformer (line 20) | type genericInformer struct method Informer (line 26) | func (f *genericInformer) Informer() cache.SharedIndexInformer { method Lister (line 31) | func (f *genericInformer) Lister() cache.GenericLister { method ForResource (line 37) | func (f *sharedInformerFactory) ForResource(resource schema.GroupVersion... FILE: pkg/client/informers/externalversions/internalinterfaces/factory_interfaces.go type NewInformerFunc (line 15) | type NewInformerFunc type SharedInformerFactory (line 18) | type SharedInformerFactory interface type TweakListOptionsFunc (line 24) | type TweakListOptionsFunc FILE: pkg/client/informers/externalversions/sealedsecrets/interface.go type Interface (line 11) | type Interface interface type group (line 16) | type group struct method V1alpha1 (line 28) | func (g *group) V1alpha1() v1alpha1.Interface { function New (line 23) | func New(f internalinterfaces.SharedInformerFactory, namespace string, t... FILE: pkg/client/informers/externalversions/sealedsecrets/v1alpha1/interface.go type Interface (line 10) | type Interface interface type version (line 15) | type version struct method SealedSecrets (line 27) | func (v *version) SealedSecrets() SealedSecretInformer { function New (line 22) | func New(f internalinterfaces.SharedInformerFactory, namespace string, t... FILE: pkg/client/informers/externalversions/sealedsecrets/v1alpha1/sealedsecret.go type SealedSecretInformer (line 21) | type SealedSecretInformer interface type sealedSecretInformer (line 26) | type sealedSecretInformer struct method defaultInformer (line 64) | func (f *sealedSecretInformer) defaultInformer(client versioned.Interf... method Informer (line 68) | func (f *sealedSecretInformer) Informer() cache.SharedIndexInformer { method Lister (line 72) | func (f *sealedSecretInformer) Lister() v1alpha1.SealedSecretLister { function NewSealedSecretInformer (line 35) | func NewSealedSecretInformer(client versioned.Interface, namespace strin... function NewFilteredSealedSecretInformer (line 42) | func NewFilteredSealedSecretInformer(client versioned.Interface, namespa... FILE: pkg/client/listers/sealedsecrets/v1alpha1/expansion_generated.go type SealedSecretListerExpansion (line 7) | type SealedSecretListerExpansion interface type SealedSecretNamespaceListerExpansion (line 11) | type SealedSecretNamespaceListerExpansion interface FILE: pkg/client/listers/sealedsecrets/v1alpha1/sealedsecret.go type SealedSecretLister (line 14) | type SealedSecretLister interface type sealedSecretLister (line 24) | type sealedSecretLister struct method List (line 34) | func (s *sealedSecretLister) List(selector labels.Selector) (ret []*v1... method SealedSecrets (line 42) | func (s *sealedSecretLister) SealedSecrets(namespace string) SealedSec... function NewSealedSecretLister (line 29) | func NewSealedSecretLister(indexer cache.Indexer) SealedSecretLister { type SealedSecretNamespaceLister (line 48) | type SealedSecretNamespaceLister interface type sealedSecretNamespaceLister (line 60) | type sealedSecretNamespaceLister struct method List (line 66) | func (s sealedSecretNamespaceLister) List(selector labels.Selector) (r... method Get (line 74) | func (s sealedSecretNamespaceLister) Get(name string) (*v1alpha1.Seale... FILE: pkg/controller/controller.go constant SuccessUnsealed (line 43) | SuccessUnsealed = "Unsealed" constant ErrUpdateFailed (line 49) | ErrUpdateFailed = "ErrUpdateFailed" constant ErrUnsealFailed (line 55) | ErrUnsealFailed = "ErrUnsealFailed" type Controller (line 66) | type Controller struct method HasSynced (line 246) | func (c *Controller) HasSynced() bool { method LastSyncResourceVersion (line 260) | func (c *Controller) LastSyncResourceVersion() string { method Run (line 267) | func (c *Controller) Run(stopCh <-chan struct{}) { method runWorker (line 292) | func (c *Controller) runWorker(ctx context.Context) { method processNextItem (line 298) | func (c *Controller) processNextItem(ctx context.Context) bool { method unseal (line 327) | func (c *Controller) unseal(ctx context.Context, key string) (unsealEr... method updateSealedSecretStatus (line 468) | func (c *Controller) updateSealedSecretStatus(ctx context.Context, sse... method AttemptUnseal (line 539) | func (c *Controller) AttemptUnseal(content []byte) (bool, error) { method Rotate (line 563) | func (c *Controller) Rotate(content []byte) ([]byte, error) { method attemptUnseal (line 597) | func (c *Controller) attemptUnseal(ss *ssv1alpha1.SealedSecret) (*core... function NewController (line 81) | func NewController( function watchKeySecrets (line 137) | func watchKeySecrets(kinformer informers.SharedInformerFactory, registry... function watchSealedSecrets (line 154) | func watchSealedSecrets(ssinformer ssinformer.SharedInformerFactory, que... function sealedSecretChanged (line 189) | func sealedSecretChanged(oldObj, newObj interface{}) bool { function watchSecrets (line 201) | func watchSecrets(sinformer informers.SharedInformerFactory, ssclientset... function convertSealedSecret (line 453) | func convertSealedSecret(obj any) (*ssv1alpha1.SealedSecret, error) { function updateSealedSecretsStatusConditions (line 488) | func updateSealedSecretsStatusConditions(st *ssv1alpha1.SealedSecretStat... function isAnnotatedToBeManaged (line 522) | func isAnnotatedToBeManaged(secret *corev1.Secret) bool { function isAnnotatedToBePatched (line 526) | func isAnnotatedToBePatched(secret *corev1.Secret) bool { function isImmutableError (line 530) | func isImmutableError(err error) bool { function formatImmutableError (line 534) | func formatImmutableError(key string) string { function attemptUnseal (line 601) | func attemptUnseal(ss *ssv1alpha1.SealedSecret, keyRegistry *KeyRegistry... FILE: pkg/controller/controller_test.go function TestIsAnnotatedToBePatched (line 26) | func TestIsAnnotatedToBePatched(t *testing.T) { function TestIsAnnotatedToBeManaged (line 58) | func TestIsAnnotatedToBeManaged(t *testing.T) { function TestConvert2SealedSecretBadType (line 90) | func TestConvert2SealedSecretBadType(t *testing.T) { function TestConvert2SealedSecretFills (line 99) | func TestConvert2SealedSecretFills(t *testing.T) { function TestConvert2SealedSecretPassThrough (line 113) | func TestConvert2SealedSecretPassThrough(t *testing.T) { function TestDefaultConfigDoesNotSkipRecreate (line 128) | func TestDefaultConfigDoesNotSkipRecreate(t *testing.T) { function TestSkipRecreateConfigDoesSkipIt (line 148) | func TestSkipRecreateConfigDoesSkipIt(t *testing.T) { function TestEmptyStatusSendsUpdate (line 168) | func TestEmptyStatusSendsUpdate(t *testing.T) { function TestStatusUpdateSendsUpdate (line 176) | func TestStatusUpdateSendsUpdate(t *testing.T) { function TestSameStatusNoUpdate (line 199) | func TestSameStatusNoUpdate(t *testing.T) { function TestSyncedSecretWithErrorSendsUpdate (line 212) | func TestSyncedSecretWithErrorSendsUpdate(t *testing.T) { function testKeyRegister (line 225) | func testKeyRegister(t *testing.T, ctx context.Context, clientset kubern... function prettyEncoder (line 238) | func prettyEncoder(codecs runtimeserializer.CodecFactory, mediaType stri... function TestRotate (line 253) | func TestRotate(t *testing.T) { function TestRotateKeepScope (line 324) | func TestRotateKeepScope(t *testing.T) { FILE: pkg/controller/funcs.go function ScheduleJobWithTrigger (line 12) | func ScheduleJobWithTrigger(initialDelay, period time.Duration, job func... constant kubeChars (line 33) | kubeChars = "abcdefghijklmnopqrstuvwxyz0123456789-" constant maxNameLength (line 34) | maxNameLength = 245 function validateKeyPrefix (line 37) | func validateKeyPrefix(name string) (string, error) { function removeDuplicates (line 49) | func removeDuplicates(strSlice []string) []string { FILE: pkg/controller/keyregistry.go type Key (line 19) | type Key struct type KeyRegistry (line 27) | type KeyRegistry struct method generateKey (line 50) | func (kr *KeyRegistry) generateKey(ctx context.Context, validFor time.... method registerNewKey (line 69) | func (kr *KeyRegistry) registerNewKey(keyName string, privKey *rsa.Pri... method latestPrivateKey (line 90) | func (kr *KeyRegistry) latestPrivateKey() *rsa.PrivateKey { method getCert (line 95) | func (kr *KeyRegistry) getCert() (*x509.Certificate, error) { function NewKeyRegistry (line 39) | func NewKeyRegistry(client kubernetes.Interface, namespace, keyPrefix, k... FILE: pkg/controller/keyregistry_test.go function TestRegisterNewKey (line 8) | func TestRegisterNewKey(t *testing.T) { FILE: pkg/controller/keys.go constant SealedSecretsKeyLabel (line 21) | SealedSecretsKeyLabel = "sealedsecrets.bitnami.com/sealed-secrets-key" function generatePrivateKeyAndCert (line 28) | func generatePrivateKeyAndCert(keySize int, validFor time.Duration, cn s... function readKey (line 32) | func readKey(secret *v1.Secret) (*rsa.PrivateKey, []*x509.Certificate, e... type writeKeyOpt (line 49) | type writeKeyOpt type writeKeyOpts (line 50) | type writeKeyOpts struct function writeKeyWithCreationTime (line 52) | func writeKeyWithCreationTime(t metav1.Time) writeKeyOpt { function writeKey (line 56) | func writeKey(ctx context.Context, client kubernetes.Interface, key *rsa... FILE: pkg/controller/keys_test.go function testRand (line 26) | func testRand() io.Reader { function signKey (line 30) | func signKey(r io.Reader, key *rsa.PrivateKey) (*x509.Certificate, error) { function signKeyWithNotBefore (line 34) | func signKeyWithNotBefore(r io.Reader, key *rsa.PrivateKey, notBefore ti... function TestReadKey (line 38) | func TestReadKey(t *testing.T) { function TestWriteKey (line 77) | func TestWriteKey(t *testing.T) { FILE: pkg/controller/main.go type Flags (line 37) | type Flags struct function initKeyPrefix (line 65) | func initKeyPrefix(keyPrefix string) (string, error) { function initKeyRegistry (line 69) | func initKeyRegistry(ctx context.Context, client kubernetes.Interface, r... function registryNewKeyWithSecret (line 99) | func registryNewKeyWithSecret(secret *v1.Secret, keyRegistry *KeyRegistr... function getKeyOrderPriority (line 115) | func getKeyOrderPriority(keyOrderPriority string, cert *x509.Certificate... function myNamespace (line 127) | func myNamespace() string { function initKeyRenewal (line 145) | func initKeyRenewal(ctx context.Context, registry *KeyRegistry, period, ... function Main (line 174) | func Main(f *Flags, version string) error { function prepareController (line 299) | func prepareController( function initSecretInformerFactory (line 317) | func initSecretInformerFactory(clientset kubernetes.Interface, ns string... FILE: pkg/controller/main_test.go function findAction (line 23) | func findAction(fake *fake.Clientset, verb, resource string) ktesting.Ac... function hasAction (line 32) | func hasAction(fake *fake.Clientset, verb, resource string) bool { function generateNameReactor (line 38) | func generateNameReactor(action ktesting.Action) (handled bool, ret runt... function TestInitKeyRegistry (line 46) | func TestInitKeyRegistry(t *testing.T) { function TestInitKeyRotation (line 81) | func TestInitKeyRotation(t *testing.T) { function TestInitKeyRotationTick (line 122) | func TestInitKeyRotationTick(t *testing.T) { function TestReuseKey (line 160) | func TestReuseKey(t *testing.T) { function TestRenewStaleKey (line 199) | func TestRenewStaleKey(t *testing.T) { function TestKeyCutoff (line 259) | func TestKeyCutoff(t *testing.T) { function writeLegacyKey (line 307) | func writeLegacyKey(ctx context.Context, client kubernetes.Interface, ke... function TestLegacySecret (line 331) | func TestLegacySecret(t *testing.T) { FILE: pkg/controller/metrics.go constant metricNamespace (line 14) | metricNamespace string = "sealed_secrets_controller" constant labelNamespace (line 17) | labelNamespace = "namespace" constant labelName (line 18) | labelName = "name" constant labelCondition (line 19) | labelCondition = "condition" constant labelInstance (line 20) | labelInstance = "ss_app_kubernetes_io_instance" function registerMetrics (line 80) | func registerMetrics(version string) { function ObserveCondition (line 100) | func ObserveCondition(ssecret *v1alpha1.SealedSecret) { function UnregisterCondition (line 115) | func UnregisterCondition(ssecret *v1alpha1.SealedSecret) { function Instrument (line 125) | func Instrument(path string, h http.Handler) http.Handler { FILE: pkg/controller/metrics_test.go function setupTestMetrics (line 14) | func setupTestMetrics() *prometheus.Registry { function TestObserveCondition (line 35) | func TestObserveCondition(t *testing.T) { function TestUnregisterCondition (line 87) | func TestUnregisterCondition(t *testing.T) { function TestUnregisterConditionWithNilStatus (line 152) | func TestUnregisterConditionWithNilStatus(t *testing.T) { function TestObserveConditionWithNilStatus (line 165) | func TestObserveConditionWithNilStatus(t *testing.T) { function TestUnregisterConditionWithMissingLabel (line 178) | func TestUnregisterConditionWithMissingLabel(t *testing.T) { function getLabel (line 225) | func getLabel(labels []*dto.LabelPair, name string) string { FILE: pkg/controller/server.go type certProvider (line 28) | type certProvider type secretChecker (line 29) | type secretChecker type secretRotator (line 30) | type secretRotator function httpserver (line 36) | func httpserver(cp certProvider, sc secretChecker, sr secretRotator, bur... function httpserverMetrics (line 122) | func httpserverMetrics() *http.Server { function rateLimiter (line 142) | func rateLimiter(burst int, rate int) throttled.HTTPRateLimiter { FILE: pkg/controller/server_test.go type testCertStore (line 17) | type testCertStore struct method getCert (line 22) | func (c *testCertStore) getCert() ([]*x509.Certificate, error) { method setCert (line 28) | func (c *testCertStore) setCert(cert *x509.Certificate) { function shutdownServer (line 34) | func shutdownServer(server *http.Server, t *testing.T) { function TestHttpCert (line 41) | func TestHttpCert(t *testing.T) { FILE: pkg/controller/signal_notwin.go function initKeyGenSignalListener (line 12) | func initKeyGenSignalListener(trigger func()) { FILE: pkg/controller/signal_windows.go function initKeyGenSignalListener (line 3) | func initKeyGenSignalListener(trigger func()) {} FILE: pkg/crypto/crypto.go constant sessionKeyBytes (line 17) | sessionKeyBytes = 32 function PublicKeyFingerprint (line 24) | func PublicKeyFingerprint(rp *rsa.PublicKey) (string, error) { function HybridEncrypt (line 36) | func HybridEncrypt(rnd io.Reader, pubKey *rsa.PublicKey, plaintext, labe... function HybridDecrypt (line 77) | func HybridDecrypt(rnd io.Reader, privKeys map[string]*rsa.PrivateKey, c... function singleDecrypt (line 88) | func singleDecrypt(rnd io.Reader, privKey *rsa.PrivateKey, ciphertext, l... FILE: pkg/crypto/keys.go function GeneratePrivateKeyAndCert (line 14) | func GeneratePrivateKeyAndCert(keySize int, validFor time.Duration, cn s... function SignKey (line 28) | func SignKey(r io.Reader, key *rsa.PrivateKey, validFor time.Duration, c... function SignKeyWithNotBefore (line 36) | func SignKeyWithNotBefore(r io.Reader, key *rsa.PrivateKey, notBefore ti... FILE: pkg/crypto/keys_test.go function testRand (line 13) | func testRand() io.Reader { function TestSignKey (line 17) | func TestSignKey(t *testing.T) { FILE: pkg/flagenv/flagenv.go function SetFlagsFromEnv (line 33) | func SetFlagsFromEnv(prefix string, fs *flag.FlagSet) { FILE: pkg/flagenv/flagenv_test.go function TestFlagenv (line 12) | func TestFlagenv(t *testing.T) { FILE: pkg/kubeseal/kubeseal.go type ClientConfig (line 37) | type ClientConfig interface function ParseKey (line 42) | func ParseKey(r io.Reader) (*rsa.PublicKey, error) { function prettyEncoder (line 70) | func prettyEncoder(codecs runtimeserializer.CodecFactory, mediaType stri... function isFilename (line 85) | func isFilename(name string) (bool, error) { function getServicePortName (line 98) | func getServicePortName(ctx context.Context, client corev1.CoreV1Interfa... function openCertLocal (line 108) | func openCertLocal(filenameOrURI string) (io.ReadCloser, error) { function openCertURI (line 119) | func openCertURI(uri string) (io.ReadCloser, error) { function openCertCluster (line 141) | func openCertCluster(ctx context.Context, c corev1.CoreV1Interface, name... function OpenCert (line 153) | func OpenCert(ctx context.Context, clientConfig ClientConfig, controller... function readSecrets (line 170) | func readSecrets(r io.Reader) ([]*v1.Secret, error) { function readSealedSecrets (line 195) | func readSealedSecrets(r io.Reader) ([]*ssv1alpha1.SealedSecret, error) { function Seal (line 223) | func Seal(clientConfig ClientConfig, outputFormat string, in io.Reader, ... function ValidateSealedSecret (line 287) | func ValidateSealedSecret(ctx context.Context, clientConfig ClientConfig... function ReEncryptSealedSecret (line 330) | func ReEncryptSealedSecret(ctx context.Context, clientConfig ClientConfi... function resourceOutput (line 391) | func resourceOutput(out io.Writer, outputFormat string, codecs runtimese... function sealedSecretOutput (line 418) | func sealedSecretOutput(out io.Writer, outputFormat string, codecs runti... function decodeSealedSecret (line 422) | func decodeSealedSecret(codecs runtimeserializer.CodecFactory, b []byte)... function SealMergingInto (line 430) | func SealMergingInto(clientConfig ClientConfig, outputFormat string, in ... function EncryptSecretItem (line 495) | func EncryptSecretItem(w io.Writer, secretName, ns string, data []byte, ... function ParseFromFile (line 509) | func ParseFromFile(s string) (string, string) { function readPrivKeysFromFile (line 517) | func readPrivKeysFromFile(filename string) ([]*rsa.PrivateKey, error) { function readPrivKey (line 566) | func readPrivKey(filename string) (*rsa.PrivateKey, error) { function parsePrivKey (line 574) | func parsePrivKey(b []byte) (*rsa.PrivateKey, error) { function readPrivKeys (line 587) | func readPrivKeys(filenames []string) (map[string]*rsa.PrivateKey, error) { function UnsealSealedSecret (line 606) | func UnsealSealedSecret(w io.Writer, in io.Reader, privKeysFilenames []s... FILE: pkg/kubeseal/kubeseal_test.go constant testCert (line 40) | testCert = ` function init (line 76) | func init() { function tmpfile (line 84) | func tmpfile(t *testing.T, contents []byte) string { function TestParseKey (line 98) | func TestParseKey(t *testing.T) { function testClientConfig (line 115) | func testClientConfig() clientcmd.ClientConfig { function TestOpenCertFile (line 121) | func TestOpenCertFile(t *testing.T) { function TestSealWithMultiDocSecrets (line 158) | func TestSealWithMultiDocSecrets(t *testing.T) { function TestSeal (line 248) | func TestSeal(t *testing.T) { type mkTestSecretOpt (line 467) | type mkTestSecretOpt type mkTestSecretOpts (line 468) | type mkTestSecretOpts struct function withSecretName (line 474) | func withSecretName(n string) mkTestSecretOpt { function withSecretNamespace (line 480) | func withSecretNamespace(n string) mkTestSecretOpt { function asYAML (line 486) | func asYAML(y bool) mkTestSecretOpt { function mkTestSecret (line 492) | func mkTestSecret(t *testing.T, key, value string, opts ...mkTestSecretO... function mkTestSealedSecret (line 534) | func mkTestSealedSecret(t *testing.T, pubKey *rsa.PublicKey, key, value ... function newTestKeyPair (line 547) | func newTestKeyPair(t *testing.T) (*rsa.PublicKey, map[string]*rsa.Priva... function TestUnseal (line 563) | func TestUnseal(t *testing.T) { function TestUnsealList (line 607) | func TestUnsealList(t *testing.T) { function TestMergeInto (line 668) | func TestMergeInto(t *testing.T) { function writeTempFile (line 770) | func writeTempFile(b []byte) (string, error) { function testingKeypairFiles (line 787) | func testingKeypairFiles(t *testing.T) (string, string, func()) { function sealTestItem (line 815) | func sealTestItem(certFilename, secretNS, secretName, secretValue string... function TestRaw (line 838) | func TestRaw(t *testing.T) { function newTestKeyPairSingle (line 922) | func newTestKeyPairSingle(t *testing.T) (*rsa.PublicKey, *rsa.PrivateKey) { function TestReadPrivKeySecret (line 930) | func TestReadPrivKeySecret(t *testing.T) { function TestReadPrivKeyPEM (line 966) | func TestReadPrivKeyPEM(t *testing.T) { function TestNamespaceMismatchValidation (line 994) | func TestNamespaceMismatchValidation(t *testing.T) { type mockClientConfig (line 1108) | type mockClientConfig struct method Namespace (line 1113) | func (m *mockClientConfig) Namespace() (string, bool, error) { method ClientConfig (line 1117) | func (m *mockClientConfig) ClientConfig() (*rest.Config, error) { method ConfigAccess (line 1121) | func (m *mockClientConfig) ConfigAccess() clientcmd.ConfigAccess { method RawConfig (line 1125) | func (m *mockClientConfig) RawConfig() (clientcmdapi.Config, error) { FILE: pkg/log/log.go type MultiStreamHandler (line 10) | type MultiStreamHandler struct method Enabled (line 33) | func (m *MultiStreamHandler) Enabled(ctx context.Context, level slog.L... method Handle (line 38) | func (m *MultiStreamHandler) Handle(ctx context.Context, r slog.Record... method WithAttrs (line 45) | func (m *MultiStreamHandler) WithAttrs(attrs []slog.Attr) slog.Handler { method WithGroup (line 50) | func (m *MultiStreamHandler) WithGroup(string) slog.Handler { function New (line 17) | func New(outLow, outHigh io.Writer, format string, opts *slog.HandlerOpt... FILE: pkg/multidocyaml/multidocyaml.go function isMultiDocumentYAML (line 10) | func isMultiDocumentYAML(src []byte) bool { function EnsureNotMultiDoc (line 18) | func EnsureNotMultiDoc(src []byte) error { FILE: pkg/multidocyaml/multidocyaml_test.go function TestIsMultiDocumentYAML (line 5) | func TestIsMultiDocumentYAML(t *testing.T) { FILE: pkg/pflagenv/flagenv.go function SetFlagsFromEnv (line 34) | func SetFlagsFromEnv(prefix string, fs *flag.FlagSet) { FILE: pkg/pflagenv/flagenv_test.go function TestPflagenv (line 12) | func TestPflagenv(t *testing.T) { FILE: site/themes/template/static/js/main.js function mobileNavToggle (line 3) | function mobileNavToggle() { function docsVersionToggle (line 8) | function docsVersionToggle() {