Skip to content
This repository has been archived by the owner on Feb 7, 2020. It is now read-only.

(#16) Validate before caching #17

Merged
merged 1 commit into from
Nov 12, 2018
Merged

(#16) Validate before caching #17

merged 1 commit into from
Nov 12, 2018

Conversation

vjanelle
Copy link
Contributor

  • If you change the allow list, a cached cert will be allowed for non-privileged actions. This is not intuitive.

  • Fixed a typo, and making tests pass locally.

Fixes #16

@ripienaar
Copy link
Contributor

looks good, I think this is quite a significant bug so we should add tests to specifically ensure this does not happen again in future.

Once added please squash and change first line to (#16) blah blah

@vjanelle
(choria-legacy#16) Validate certificate before attempting to cache it
274360e 
* If you change the allow list, a cached cert will be allowed for non-privileged actions.  This is not intuitive.
* Make tests pass

```
filesec/file_security.go:404: Entry.Errorf format %s arg s.caPath is a func value, not called
```

* Allow list tests to ensure this doesn't happen again
@vjanelle vjanelle force-pushed the validate_before_caching branch from 94b045a to 274360e Compare November 12, 2018 16:24
@vjanelle
Copy link
Contributor Author

@ripienaar done.

@ripienaar ripienaar changed the title Validate before caching (#16) Validate before caching Nov 12, 2018
@ripienaar ripienaar merged commit 54bd44c into choria-legacy:master Nov 12, 2018
@vjanelle vjanelle deleted the validate_before_caching branch November 12, 2018 16:59
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@vjanelle @ripienaar