Comments (8)
@szuecs yes, thats clear that ::
is not a valid IP but the reason why I created an issue is that, I would expect it to throw an error during the predicate creation saying that its not a valid IP rather than accepting it and then not being able to enforce it (in the test, the predicate gets created with ::
successfully without any errors).
from skipper.
I think, this is an error case that hasn't been covered by the library which is important when using skipper as a library but its not something that causes a huge problem, its more a usability issue than anything else (I see Sandor already created a patch for it).
from skipper.
similar to #2848
from skipper.
But ::
is not a valid client IP.
The input data is like here:
% go doc http.Request.RemoteAddr
package http // import "net/http"
type Request struct {
// RemoteAddr allows HTTP servers and other software to record the network address
// that sent the request, usually for logging. This field is not filled in by
// ReadRequest and has no defined format. The HTTP server in this package sets
// RemoteAddr to an "IP:port" address before invoking a handler. This field is
// ignored by the HTTP client.
RemoteAddr string
Of course in local tests you can define it different but you won't be able to create a call to http.Server, such that this will lead to ::
as RemoteAddr.
from skipper.
the fuzzer panics when the ip address is ::
Hm, is there a panic in skipper code?
from skipper.
@AlexanderYastrebov so, I wrote the fuzzer in a way that if it finds something that is not correct, it would panic, this is because the fuzzer only detects panics, so anything unexpected must panic to be able to detect it.
so no, there is no panic in skipper code.
from skipper.
I think we can trust RemoteAddr as it comes from the server. Do we need to fix this at all?
from skipper.
I think it's fine to fix it because it's a generic function in skipper's net package.
from skipper.
Related Issues (20)
- fadeIn filter support for powerOfRandomNChoices load balancer HOT 4
- flakytest TestLoopbackAndMatchPredicate
- FlakyTest by flaky findAddress() helper - TestServerShutdownHTTP
- Flaky TestServerShouldCloseWhenAllRequestsAreFulfilled HOT 2
- Failing Ingress path after updating to latest Skipper version HOT 20
- Conditional rate limiting. HOT 1
- TestBackendRatelimitScenarios HOT 1
- signed releases
- Does the oauthOidcAllClaims filter provide the possibility to lookup sensitive data from Kubernetes Secrets HOT 7
- Update Ingress status with Service LoadBalancer IP/Hostname HOT 9
- Secure RouteGroups with Kubernetes TLS Secrets HOT 1
- automatic drains based on http response code HOT 2
- Query predicate is giving inconsistent results HOT 3
- OAuth2CallbackPath using https when no TLS is defined HOT 3
- AWS sigv4 auth filter HOT 7
- Using Skipper for implementing webhooks HOT 6
- WASM extensions filter HOT 5
- Scratch image as base image of Skipper docker image HOT 5
- Flaky TestAuthorizeRequestFilter/Simple_Forbidden HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from skipper.