Chiebot-Mirror
/
data-plane-api
mirror of https://github.com/envoyproxy/data-plane-api.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

[fuzz] Added validation for secrets (#13543)

Browse Source 
Signed-off-by: Zach <zasweq@google.com>

Mirrored from https://github.com/envoyproxy/envoy @ bc5c44a1a842379daa6f810dc3841c71a513661b
pull/622/head
data-plane-api(CircleCI) 4 years ago
parent 485f70f947
commit f545e6be33
2 changed files with 7 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      envoy/extensions/transport_sockets/tls/v3/secret.proto
  2. 3
      envoy/extensions/transport_sockets/tls/v4alpha/secret.proto

6
envoy/extensions/transport_sockets/tls/v3/secret.proto
Unescape View File

@ -12,6 +12,7 @@ import "udpa/annotations/migrate.proto";
import "udpa/annotations/sensitive.proto";
import "udpa/annotations/status.proto";
import "udpa/annotations/versioning.proto";
import "validate/validate.proto";
option java_package = "io.envoyproxy.envoy.extensions.transport_sockets.tls.v3";
option java_outer_classname = "SecretProto";
@ -33,7 +34,10 @@ message SdsSecretConfig {
// Name (FQDN, UUID, SPKI, SHA256, etc.) by which the secret can be uniquely referred to.
// When both name and config are specified, then secret can be fetched and/or reloaded via
// SDS. When only name is specified, then secret will be loaded from static resources.
string name = 1 [(udpa.annotations.field_migrate).oneof_promotion = "name_specifier"];
string name = 1 [
(validate.rules).string = {min_len: 1},
(udpa.annotations.field_migrate).oneof_promotion = "name_specifier"
];
// Resource locator for SDS. This is mutually exclusive to *name*.
// [#not-implemented-hide:]

3
envoy/extensions/transport_sockets/tls/v4alpha/secret.proto
Unescape View File

@ -11,6 +11,7 @@ import "udpa/core/v1/resource_locator.proto";
import "udpa/annotations/sensitive.proto";
import "udpa/annotations/status.proto";
import "udpa/annotations/versioning.proto";
import "validate/validate.proto";
option java_package = "io.envoyproxy.envoy.extensions.transport_sockets.tls.v4alpha";
option java_outer_classname = "SecretProto";
@ -35,7 +36,7 @@ message SdsSecretConfig {
// Name (FQDN, UUID, SPKI, SHA256, etc.) by which the secret can be uniquely referred to.
// When both name and config are specified, then secret can be fetched and/or reloaded via
// SDS. When only name is specified, then secret will be loaded from static resources.
string name = 1;
string name = 1 [(validate.rules).string = {min_len: 1}];
// Resource locator for SDS. This is mutually exclusive to *name*.
// [#not-implemented-hide:]

Write Preview
Loading…
Cancel
Save