status-im
/
consul
mirror of https://github.com/status-im/consul.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
consul/envoyextensions/extensioncommon
History
Michael Zalimeni b8d2640429
Disable remote proxy patching except AWS Lambda (#17415) 
To avoid unintended tampering with remote downstreams via service
config, refactor BasicEnvoyExtender and RuntimeConfig to disallow
typical Envoy extensions from being applied to non-local proxies.

Continue to allow this behavior for AWS Lambda and the read-only
Validate builtin extensions.

Addresses CVE-2023-2816.
 		2023-05-23 11:55:06 +00:00
..
basic_envoy_extender.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
envoy_extender.go Copyright headers for missing files/folders (#16708) 2023-03-28 18:48:58 -04:00
envoy_extender_test.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
list_envoy_extender.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
resources.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
runtime_config.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
runtime_config_test.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
upstream_envoy_extender.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00