event

Jul 14, 2023 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Jun 9, 2023 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ func CloudEventFromBuf(t testing.TB, b []byte) *cloudevents.Event

+ func CloudEventFromFile(t testing.TB, fileName string) *cloudevents.Event

type EventerConfig

+ ErrorEventsDisabled bool

type HclogLoggerAdapter

+ func (h *HclogLoggerAdapter) GetLevel() hclog.Level

type Option

+ func TestWithStderrSink(t testing.TB) Option

type Request

+ DetailsUpstreamMessage *UpstreamMessage

type Response

+ DetailsUpstreamMessage *UpstreamMessage

+ type UpstreamMessage struct

+ Message proto.Message

+ Type string

Apr 4, 2023 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Mar 9, 2023 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Feb 8, 2023 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Dec 8, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Nov 23, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Sep 27, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Sep 14, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Sep 12, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Aug 30, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Aug 22, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Aug 11, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Aug 9, 2022 GO-2023-1898 +2 more

  GO-2023-1898: HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured in github.com/hashicorp/boundary

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ func InitFallbackLogger(l hclog.Logger) error

Jul 6, 2022 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Jun 20, 2022 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

type Eventer

+ func TestWithoutEventing(t testing.TB) *Eventer

May 16, 2022 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

May 3, 2022 GO-2024-2532 +1 more

  GO-2024-2532: Boundary vulnerable to session hijacking through TLS certificate tampering in github.com/hashicorp/boundary

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ func NewHclogLogger(ctx context.Context, e *Eventer, opt ...Option) (hclog.Logger, error)

type AuditConfig

+ FilterOverridesHCL map[string]string

type Eventer

+ func (e *Eventer) ReleaseGate() error

+ type HclogLoggerAdapter struct

+ func (h *HclogLoggerAdapter) Debug(msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) Error(msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) ImpliedArgs() []interface{}

+ func (h *HclogLoggerAdapter) Info(msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) IsDebug() bool

+ func (h *HclogLoggerAdapter) IsError() bool

+ func (h *HclogLoggerAdapter) IsInfo() bool

+ func (h *HclogLoggerAdapter) IsTrace() bool

+ func (h *HclogLoggerAdapter) IsWarn() bool

+ func (h *HclogLoggerAdapter) Log(level hclog.Level, msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) Name() string

+ func (h *HclogLoggerAdapter) Named(name string) hclog.Logger

+ func (h *HclogLoggerAdapter) ResetNamed(name string) hclog.Logger

+ func (h *HclogLoggerAdapter) SetLevel(_ hclog.Level)

+ func (h *HclogLoggerAdapter) StandardLogger(opts *hclog.StandardLoggerOptions) *log.Logger

+ func (h *HclogLoggerAdapter) StandardWriter(opts *hclog.StandardLoggerOptions) io.Writer

+ func (h *HclogLoggerAdapter) Trace(msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) Warn(msg string, args ...interface{})

+ func (h *HclogLoggerAdapter) With(args ...interface{}) hclog.Logger

type Option

+ func WithGating(with bool) Option

+ func WithHclogLevel(with hclog.Level) Option

+ func WithNoGateLocking(with bool) Option

type SinkConfig

+ WriterConfig *WriterSinkTypeConfig

type SinkType

+ const WriterSink

+ type WriterSinkTypeConfig struct

+ Writer io.Writer

Mar 15, 2022 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Feb 17, 2022 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Jan 13, 2022 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

type RequestInfo

+ ClientIp string

Dec 16, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Dec 15, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Nov 19, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Nov 17, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ func NewAuditEncryptFilter(opt ...Option) (*encrypt.Filter, error)

type Auth

+ DisabledAuthEntirely *bool

type Eventer

+ func (e *Eventer) RotateAuditWrapper(ctx context.Context, newWrapper wrapping.Wrapper) error

+ type Grant struct

+ Grant string

+ RoleId string

+ ScopeId string

type Option

+ func TestWithSysSink(t *testing.T) Option

Sep 27, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Sep 15, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Sep 8, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ type AuditConfig struct

+ FilterOverrides AuditFilterOperations

+ func DefaultAuditConfig() *AuditConfig

+ func NewAuditConfig(opt ...Option) (*AuditConfig, error)

+ func (ac *AuditConfig) Validate() error

+ type AuditFilterOperations map[DataClassification]FilterOperation

+ func DefaultAuditFilterOperations() AuditFilterOperations

+ func (af AuditFilterOperations) Validate() error

type Auth

+ AuthTokenId string

+ type DataClassification string

+ const PublicClassification

+ const SecretClassification

+ const SensitiveClassification

+ const UnknownClassification

+ func (dc DataClassification) Validate() error

+ type FilterOperation string

+ const EncryptOperation

+ const HmacSha256Operation

+ const NoOperation

+ const RedactOperation

+ const UnknownOperation

+ func (fop FilterOperation) Validate() error

type Option

+ func WithAuditWrapper(w wrapping.Wrapper) Option

+ func WithFilterOperations(fop AuditFilterOperations) Option

type SinkConfig

+ AuditConfig *AuditConfig

Aug 19, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Aug 5, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ const ApiRequest

+ const IdPrefix

+ const MissingKey

+ func ConvertArgs(args ...interface{}) map[string]interface

+ func NewId(prefix string) (string, error)

+ func TestEnableEventing(t *testing.T, enable bool)

type Eventer

+ func (e *Eventer) StandardLogger(ctx context.Context, loggerName string, typ Type) (*log.Logger, error)

+ func (e *Eventer) StandardWriter(ctx context.Context, typ Type) (io.Writer, error)

type EventerConfig

+ func DefaultEventerConfig() *EventerConfig

+ func TestGetEventerConfig(t *testing.T, e *Eventer) EventerConfig

+ func (c *EventerConfig) Validate() error

+ type FileSinkTypeConfig struct

+ FileName string

+ Path string

+ RotateBytes int

+ RotateDuration time.Duration

+ RotateDurationHCL string

+ RotateMaxFiles int

+ type FilterType string

+ const AllowFilter

+ const DenyFilter

type Option

+ func TestWithAuditSink(t *testing.T) Option

+ func TestWithBroker(t *testing.T, b broker) Option

+ func TestWithObservationSink(t *testing.T) Option

+ func WithAllow(f ...string) Option

+ func WithDeny(f ...string) Option

+ func WithEventer(e *Eventer) Option

+ func WithEventerConfig(c *EventerConfig) Option

+ func WithInfo(args ...interface{}) Option

+ func WithInfoMsg(msg string, args ...interface{}) Option

+ func WithSchema(url *url.URL) Option

type RequestInfo

+ EventId string

type SinkConfig

+ AllowFilters []string

+ DenyFilters []string

+ Description string

+ EventSourceUrl string

+ FileConfig *FileSinkTypeConfig

+ StderrConfig *StderrSinkTypeConfig

+ Type SinkType

+ func DefaultSink() SinkConfig

+ func (sc *SinkConfig) Validate() error

+ type SinkFilter struct

+ Filter string

+ Type FilterType

+ func (s SinkFilter) Validate() error

type SinkFormat

+ const JSONHclogSinkFormat

+ const TextHclogSinkFormat

+ const TextSinkFormat

+ func (f SinkFormat) Validate() error

type SinkType

+ const StderrSink

+ func (t SinkType) Validate() error

+ type StderrSinkTypeConfig struct

type Type

+ func (et Type) Validate() error

Jun 30, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ const ServerAddress

+ const ServerName

+ var ErrInvalidParameter = errors.New("invalid parameter")

+ var ErrIo = errors.New("error during io operation")

+ var ErrMaxRetries = errors.New("too many retries")

+ var ErrRecordNotFound = errors.New("record not found")

+ func WriteSysEvent(ctx context.Context, caller Op, data map[string]interface{})

type EventerConfig

+ SysEventsDelivery DeliveryGuarantee

+ SysEventsEnabled bool

type Type

+ const SystemType

Jun 8, 2021 GO-2024-3335

  GO-2024-3335: Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service in github.com/hashicorp/boundary

Changes in this version

+ const CreatedAtField

+ const DetailsField

+ const HeaderField

+ const IdField

+ const OpField

+ const RequestInfoField

+ const TypeField

+ const VersionField

+ func InitSysEventer(log hclog.Logger, c EventerConfig) error

+ func NewEventerContext(ctx context.Context, eventer *Eventer) (context.Context, error)

+ func NewRequestInfoContext(ctx context.Context, info *RequestInfo) (context.Context, error)

+ func TestResetSystEventer(t *testing.T)

+ func WriteAudit(ctx context.Context, caller Op, opt ...Option) error

+ func WriteError(ctx context.Context, caller Op, e error, opt ...Option)

+ func WriteObservation(ctx context.Context, caller Op, opt ...Option) error

+ type Auth struct

+ AccessorId string

+ GrantsInfo *GrantsInfo

+ UserEmail string

+ UserInfo *UserInfo

+ UserName string

+ type DeliveryGuarantee string

+ const BestEffort

+ const DefaultDeliveryGuarantee

+ const Enforced

+ type Eventer struct

+ func EventerFromContext(ctx context.Context) (*Eventer, bool)

+ func NewEventer(log hclog.Logger, c EventerConfig, opt ...Option) (*Eventer, error)

+ func SysEventer() *Eventer

+ func (e *Eventer) FlushNodes(ctx context.Context) error

+ func (e *Eventer) Reopen() error

+ type EventerConfig struct

+ AuditDelivery DeliveryGuarantee

+ AuditEnabled bool

+ ObservationDelivery DeliveryGuarantee

+ ObservationsEnabled bool

+ Sinks []SinkConfig

+ type GrantsInfo struct

+ Grants []GrantsPair

+ type GrantsPair struct

+ Grant string

+ ScopeId string

+ type Id string

+ type Op string

+ type Option func(*options)

+ func WithAuth(a *Auth) Option

+ func WithDetails(d map[string]interface{}) Option

+ func WithFlush() Option

+ func WithHeader(d map[string]interface{}) Option

+ func WithId(id string) Option

+ func WithNow(now time.Time) Option

+ func WithRequest(r *Request) Option

+ func WithRequestInfo(i *RequestInfo) Option

+ func WithResponse(r *Response) Option

+ type Request struct

+ Details proto.Message

+ Endpoint string

+ Operation string

+ type RequestInfo struct

+ Id string

+ Method string

+ Path string

+ PublicId string

+ func RequestInfoFromContext(ctx context.Context) (*RequestInfo, bool)

+ func TestRequestInfo(t *testing.T) *RequestInfo

+ type Response struct

+ Details proto.Message

+ StatusCode int

+ type SinkConfig struct

+ EventTypes []Type

+ FileName string

+ Format SinkFormat

+ Name string

+ Path string

+ RotateBytes int

+ RotateDuration time.Duration

+ RotateMaxFiles int

+ SinkType SinkType

+ type SinkFormat string

+ const JSONSinkFormat

+ type SinkType string

+ const FileSink

+ const StdoutSink

+ type TestConfig struct

+ AllEvents *os.File

+ AuditEvents *os.File

+ ErrorEvents *os.File

+ EventerConfig EventerConfig

+ ObservationEvents *os.File

+ func TestEventerConfig(t *testing.T, testName string, opt ...Option) TestConfig

+ type Type string

+ const AuditType

+ const ErrorType

+ const EveryType

+ const ObservationType

+ type UserInfo struct

+ AuthAccountId string

+ UserId string