Skip to content

Commit

Permalink
[fuzz] Added validation for secrets (#13543)
Browse files Browse the repository at this point in the history 
Signed-off-by: Zach <zasweq@google.com>
  • Loading branch information
@zasweq
zasweq authored Oct 14, 2020
1 parent a1a9b5f commit bc5c44a
Show file tree
Hide file tree
Showing 5 changed files with 21 additions and 4 deletions.
6 changes: 5 additions & 1 deletion api/envoy/extensions/transport_sockets/tls/v3/secret.proto
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ import "udpa/annotations/migrate.proto";
import "udpa/annotations/sensitive.proto";
import "udpa/annotations/status.proto";
import "udpa/annotations/versioning.proto";
import "validate/validate.proto";

option java_package = "io.envoyproxy.envoy.extensions.transport_sockets.tls.v3";
option java_outer_classname = "SecretProto";
Expand All @@ -33,7 +34,10 @@ message SdsSecretConfig {
// Name (FQDN, UUID, SPKI, SHA256, etc.) by which the secret can be uniquely referred to.
// When both name and config are specified, then secret can be fetched and/or reloaded via
// SDS. When only name is specified, then secret will be loaded from static resources.
string name = 1 [(udpa.annotations.field_migrate).oneof_promotion = "name_specifier"];
string name = 1 [
(validate.rules).string = {min_len: 1},
(udpa.annotations.field_migrate).oneof_promotion = "name_specifier"
];

// Resource locator for SDS. This is mutually exclusive to *name*.
// [#not-implemented-hide:]
Expand Down
3 changes: 2 additions & 1 deletion api/envoy/extensions/transport_sockets/tls/v4alpha/secret.proto
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 5 additions & 1 deletion generated_api_shadow/envoy/extensions/transport_sockets/tls/v3/secret.proto
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 2 additions & 1 deletion generated_api_shadow/envoy/extensions/transport_sockets/tls/v4alpha/secret.proto
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

7 changes: 7 additions & 0 deletions ...ers/http/common/fuzz/filter_corpus/clusterfuzz-testcase-filter_fuzz_test-5681522444861440
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit bc5c44a

Please sign in to comment.