Backport of [Security] Secvuln 8633 Consul configuration allowed repeated keys into release/1.20.x by hc-github-team-consul-core · Pull Request #21943 · hashicorp/consul

hc-github-team-consul-core · 2024-11-14T15:58:35Z

Backport

This PR is auto-generated from #21908 to be assessed for backporting due to the inclusion of the label backport/1.20.

The below text is copied from the body of the original PR.

Description

Due to a known issue in hcl v1,
There is a potential for old unparsed rules to be in the cache, so I added an optional route to replicate the old behavior to maintain backwards compatibility when reading unparsed policies from the cache.

Testing & Reproduction steps

New tests pass

Links

hashicorp/hcl#704 Original HCL PR

PR Checklist

[ X] updated test coverage
external facing docs updated
appropriate backport labels added
not a security concern

Overview of commits

7673eae - b34f610 - 31de425 - 0299f95 - f816fcc - 64af496 - 637561f - 994716d - 0baa3c9 - 05eecce - 18e9efa - c7ab56a - ae6fe96 - 1cc3eb2

github-team-consul-core-pr-approver

Auto approved Consul Bot automated PR

hc-github-team-consul-core requested a review from a team as a code owner November 14, 2024 15:58

hc-github-team-consul-core force-pushed the backport/SECVULN-8633-TOB-CONSUL24-17-Consul-configuration-allows-repeated-keys/publicly-deciding-hookworm branch from fd5b3c3 to a23a6c0 Compare November 14, 2024 15:58

hc-github-team-consul-core assigned sarahalsmiller Nov 14, 2024

hc-github-team-consul-core requested a review from sarahalsmiller November 14, 2024 15:58

github-team-consul-core-pr-approver approved these changes Nov 14, 2024

View reviewed changes

github-actions Bot added theme/acls ACL and token generation pr/dependencies PR specifically updates dependencies of project labels Nov 14, 2024

sarahalsmiller approved these changes Nov 14, 2024

View reviewed changes

sarahalsmiller and others added 14 commits November 25, 2024 10:53

backport of commit 7673eae

e955d3a

backport of commit b34f610

6e15f9e

backport of commit 31de425

b112d7c

backport of commit 0299f95

855ec98

backport of commit f816fcc

37b375c

backport of commit 64af496

b1ce3a9

backport of commit 637561f

2592e4d

backport of commit 994716d

9b3bc65

backport of commit 0baa3c9

54727a0

backport of commit 05eecce

8cea466

backport of commit 18e9efa

36ad4fa

backport of commit c7ab56a

61e1299

backport of commit ae6fe96

10e3f98

backport of commit 1cc3eb2

4e21fa8

sarahalsmiller force-pushed the backport/SECVULN-8633-TOB-CONSUL24-17-Consul-configuration-allows-repeated-keys/publicly-deciding-hookworm branch from a23a6c0 to 4e21fa8 Compare November 25, 2024 16:54

go mod tidy

ddfb7b0

sarahalsmiller merged commit 297ca6b into release/1.20.x Nov 27, 2024

sarahalsmiller deleted the backport/SECVULN-8633-TOB-CONSUL24-17-Consul-configuration-allows-repeated-keys/publicly-deciding-hookworm branch November 27, 2024 23:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Backport of [Security] Secvuln 8633 Consul configuration allowed repeated keys into release/1.20.x#21943

Backport of [Security] Secvuln 8633 Consul configuration allowed repeated keys into release/1.20.x#21943
sarahalsmiller merged 15 commits into
release/1.20.xfrom
backport/SECVULN-8633-TOB-CONSUL24-17-Consul-configuration-allows-repeated-keys/publicly-deciding-hookworm

hc-github-team-consul-core commented Nov 14, 2024

Uh oh!

github-team-consul-core-pr-approver left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

hc-github-team-consul-core commented Nov 14, 2024

Backport

Description

Testing & Reproduction steps

Links

PR Checklist

Uh oh!

github-team-consul-core-pr-approver left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants