Chiebot-Mirror
/
data-plane-api
mirror of https://github.com/envoyproxy/data-plane-api.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

[fuzz] fix server test fuzz bugs (#9486)

Browse Source 
Fixes server_fuzz_test fuzz bugs:

* QUIC upstream not implemented in prod, so the fuzzer removes the HTTP3 codec types for http health checks

* PGV validate throws a not yet implemented error on URIs. I removed this check for now and replaced with a TODO. If I catch the std::exception that is thrown and bypass it with a warning statement in the logs, we skip over other validations, which means that any fuzz test or user using this uri field will be in danger of failing because of other invalid fields @JimmyCYJ. PGV issue tracked: envoyproxy/protoc-gen-validate#303

Fixes OSS-Fuzz Issues:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19614
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19689

Signed-off-by: Asra Ali <asraa@google.com>

Mirrored from https://github.com/envoyproxy/envoy @ b7dcf083876f5d34d0dde5df535989a81dfa8023
master-ci-test
data-plane-api(CircleCI) 5 years ago
parent c4545ace4b
commit 1e09b55860
2 changed files with 6 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      envoy/api/v2/core/grpc_service.proto
  2. 4
      envoy/api/v3alpha/core/grpc_service.proto

4
envoy/api/v2/core/grpc_service.proto
Unescape View File

@ -93,7 +93,9 @@ message GrpcService {
// [#next-free-field: 10]
message StsService {
// URI of the token exchange service that handles token exchange requests.
string token_exchange_service_uri = 1 [(validate.rules).string = {uri: true}];
// [#comment:TODO(asraa): Add URI validation when implemented. Tracked by
// https://github.com/envoyproxy/protoc-gen-validate/issues/303]
string token_exchange_service_uri = 1;
// Location of the target service or resource where the client
// intends to use the requested security token.

4
envoy/api/v3alpha/core/grpc_service.proto
Unescape View File

@ -130,7 +130,9 @@ message GrpcService {
"envoy.api.v2.core.GrpcService.GoogleGrpc.CallCredentials.StsService";
// URI of the token exchange service that handles token exchange requests.
string token_exchange_service_uri = 1 [(validate.rules).string = {uri: true}];
// [#comment:TODO(asraa): Add URI validation when implemented. Tracked by
// https://github.com/envoyproxy/protoc-gen-validate/issues/303]
string token_exchange_service_uri = 1;
// Location of the target service or resource where the client
// intends to use the requested security token.

Write Preview
Loading…
Cancel
Save