structs

Dec 12, 2023

Changes in this version

type JWTProviderConfigEntry

+ Hash uint64

+ func (e *JWTProviderConfigEntry) GetHash() uint64

+ func (e *JWTProviderConfigEntry) SetHash(h uint64)

type SamenessGroupConfigEntry

+ Hash uint64

+ func (s *SamenessGroupConfigEntry) GetHash() uint64

+ func (s *SamenessGroupConfigEntry) SetHash(h uint64)

Sep 19, 2023

Changes in this version

type CheckDefinition

+ TCPUseTLS bool

type CheckType

+ TCPUseTLS bool

type HealthCheckDefinition

+ TCPUseTLS bool

Aug 5, 2023

Changes in this version

+ const MetaConsulVersion

+ const MinKeyLength

+ type ClusterDiscoveryType string

+ const DiscoveryTypeEDS

+ const DiscoveryTypeLogicalDNS

+ const DiscoveryTypeOriginalDST

+ const DiscoveryTypeStatic

+ const DiscoveryTypeStrictDNS

+ func (d ClusterDiscoveryType) Validate() error

+ type JWKSCluster struct

+ ConnectTimeout time.Duration

+ DiscoveryType ClusterDiscoveryType

+ TLSCertificates *JWKSTLSCertificate

+ func (c *JWKSCluster) Validate() error

+ type JWKSTLSCertProviderInstance struct

+ CertificateName string

+ InstanceName string

+ type JWKSTLSCertTrustedCA struct

+ EnvironmentVariable string

+ Filename string

+ InlineBytes []byte

+ InlineString string

+ func (c *JWKSTLSCertTrustedCA) Validate() error

+ type JWKSTLSCertificate struct

+ CaCertificateProviderInstance *JWKSTLSCertProviderInstance

+ TrustedCA *JWKSTLSCertTrustedCA

+ func (c *JWKSTLSCertificate) Validate() error

type RemoteJWKS

+ JWKSCluster *JWKSCluster

type ServiceUsage

+ Nodes int

Jun 26, 2023 GO-2024-2704

  GO-2024-2704: Consul JWT Auth in L7 Intentions Allow for Mismatched Service Identity and JWT Providers in github.com/hashicorp/consul

Changes in this version

+ const DefaultClockSkewSeconds

+ const JWTProvider

+ const RateLimitIPConfig

+ const ResourceOperationType

+ const SamenessGroup

+ const UpdateVirtualIPRequestType

type APIGatewayTLSConfiguration

+ func (a *APIGatewayTLSConfiguration) IsEmpty() bool

+ type AssignServiceManualVIPsRequest struct

+ ManualVIPs []string

+ Service string

+ type AssignServiceManualVIPsResponse struct

+ Found bool

+ UnassignedFrom []PeeredServiceName

type CompiledDiscoveryChain

+ AutoVirtualIPs []string

+ ManualVirtualIPs []string

type ConnectProxyConfig

+ MutualTLSMode MutualTLSMode

type DiscoveryFailover

+ Policy *ServiceResolverFailoverPolicy

+ Regions []string

+ type DiscoveryPrioritizeByLocality struct

+ Mode string

type DiscoveryTarget

+ Locality *Locality

+ PrioritizeByLocality *DiscoveryPrioritizeByLocality

type DiscoveryTargetOpts

+ PrioritizeByLocality *DiscoveryPrioritizeByLocality

type EnvoyExtension

+ ConsulVersion string

+ EnvoyVersion string

type ExportedServicesConfigEntry

+ func (o *ExportedServicesConfigEntry) DeepCopy() *ExportedServicesConfigEntry

type Intention

+ JWT *IntentionJWTRequirement

+ SourceSamenessGroup string

+ func (ixn *Intention) SourcePartitionOrDefault() string

+ type IntentionJWTClaimVerification struct

+ Path []string

+ Value string

+ func (e *IntentionJWTClaimVerification) Clone() *IntentionJWTClaimVerification

+ type IntentionJWTProvider struct

+ Name string

+ VerifyClaims []*IntentionJWTClaimVerification

+ func (e *IntentionJWTProvider) Clone() *IntentionJWTProvider

+ func (p *IntentionJWTProvider) Validate() error

+ type IntentionJWTRequirement struct

+ Providers []*IntentionJWTProvider

+ func (e *IntentionJWTRequirement) Clone() *IntentionJWTRequirement

+ func (e *IntentionJWTRequirement) Validate() error

type IntentionPermission

+ JWT *IntentionJWTRequirement

+ func (p *IntentionPermission) Validate() error

type IntentionQueryExact

+ SourceSamenessGroup string

type IntentionQueryMatch

+ WithSamenessGroups bool

+ type JSONWebKeySet struct

+ Local *LocalJWKS

+ Remote *RemoteJWKS

+ func (jwks *JSONWebKeySet) Validate() error

+ type JWKSRetryPolicy struct

+ NumRetries int

+ RetryPolicyBackOff *RetryPolicyBackOff

+ type JWTCacheConfig struct

+ Size int

+ type JWTForwardingConfig struct

+ HeaderName string

+ PadForwardPayloadHeader bool

+ func (fc *JWTForwardingConfig) Validate() error

+ type JWTLocation struct

+ Cookie *JWTLocationCookie

+ Header *JWTLocationHeader

+ QueryParam *JWTLocationQueryParam

+ func (location *JWTLocation) Validate() error

+ type JWTLocationCookie struct

+ Name string

+ func (lc *JWTLocationCookie) Validate() error

+ type JWTLocationHeader struct

+ Forward bool

+ Name string

+ ValuePrefix string

+ func (lh *JWTLocationHeader) Validate() error

+ type JWTLocationQueryParam struct

+ Name string

+ func (qp *JWTLocationQueryParam) Validate() error

+ type JWTProviderConfigEntry struct

+ Audiences []string

+ CacheConfig *JWTCacheConfig

+ ClockSkewSeconds int

+ Forwarding *JWTForwardingConfig

+ Issuer string

+ JSONWebKeySet *JSONWebKeySet

+ Kind string

+ Locations []*JWTLocation

+ Meta map[string]string

+ Name string

+ func (e *JWTProviderConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *JWTProviderConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (e *JWTProviderConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *JWTProviderConfigEntry) GetKind() string

+ func (e *JWTProviderConfigEntry) GetMeta() map[string]string

+ func (e *JWTProviderConfigEntry) GetName() string

+ func (e *JWTProviderConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *JWTProviderConfigEntry) Normalize() error

+ func (e *JWTProviderConfigEntry) Validate() error

+ type LocalJWKS struct

+ Filename string

+ JWKS string

+ func (ks *LocalJWKS) Validate() error

+ type Locality struct

+ Region string

+ Zone string

+ func (l *Locality) GetRegion() string

+ func (l *Locality) ToAPI() *api.Locality

type MeshConfigEntry

+ AllowEnablingPermissiveMutualTLS bool

+ type MutualTLSMode string

+ const MutualTLSModeDefault

+ const MutualTLSModePermissive

+ const MutualTLSModeStrict

type Node

+ Locality *Locality

type NodeService

+ Locality *Locality

type PeeringTokenRemote

+ Locality *Locality

type ProxyConfigEntry

+ FailoverPolicy *ServiceResolverFailoverPolicy

+ MutualTLSMode MutualTLSMode

+ PrioritizeByLocality *ServiceResolverPrioritizeByLocality

type QueryFailoverOptions

+ func (f *QueryFailoverOptions) IsEmpty() bool

type RegisterRequest

+ Locality *Locality

+ type RemoteJWKS struct

+ CacheDuration time.Duration

+ FetchAsynchronously bool

+ RequestTimeoutMs int

+ RetryPolicy *JWKSRetryPolicy

+ URI string

+ func (ks *RemoteJWKS) Validate() error

+ type RetryPolicyBackOff struct

+ BaseInterval time.Duration

+ MaxInterval time.Duration

+ func (r *RetryPolicyBackOff) Validate() error

+ type SamenessGroupConfigEntry struct

+ DefaultForFailover bool

+ IncludeLocal bool

+ Members []SamenessGroupMember

+ Meta map[string]string

+ Name string

+ func (s *SamenessGroupConfigEntry) AllMembers() []SamenessGroupMember

+ func (s *SamenessGroupConfigEntry) CanRead(authz acl.Authorizer) error

+ func (s *SamenessGroupConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (s *SamenessGroupConfigEntry) GetCreateIndex() uint64

+ func (s *SamenessGroupConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (s *SamenessGroupConfigEntry) GetKind() string

+ func (s *SamenessGroupConfigEntry) GetMeta() map[string]string

+ func (s *SamenessGroupConfigEntry) GetModifyIndex() uint64

+ func (s *SamenessGroupConfigEntry) GetName() string

+ func (s *SamenessGroupConfigEntry) GetRaftIndex() *RaftIndex

+ func (s *SamenessGroupConfigEntry) MarshalJSON() ([]byte, error)

+ func (s *SamenessGroupConfigEntry) Normalize() error

+ func (s *SamenessGroupConfigEntry) RelatedPeers() []string

+ func (s *SamenessGroupConfigEntry) ToQueryFailoverTargets(namespace string) []QueryFailoverTarget

+ func (s *SamenessGroupConfigEntry) ToServiceResolverFailoverTargets() []ServiceResolverFailoverTarget

+ func (s *SamenessGroupConfigEntry) Validate() error

+ type SamenessGroupMember struct

+ Partition string

+ Peer string

type ServiceConfigEntry

+ MutualTLSMode MutualTLSMode

type ServiceConfigResponse

+ MutualTLSMode MutualTLSMode

type ServiceConsumer

+ SamenessGroup string

type ServiceDefinition

+ Locality *Locality

type ServiceIntentionsConfigEntry

+ JWT *IntentionJWTRequirement

+ type ServiceNameWithSamenessGroup struct

+ SamenessGroup string

type ServiceNode

+ ServiceLocality *Locality

type ServiceQuery

+ SamenessGroup string

type ServiceResolverConfigEntry

+ PrioritizeByLocality *ServiceResolverPrioritizeByLocality

+ func (e *ServiceResolverConfigEntry) RelatedPeers() []string

+ func (e *ServiceResolverConfigEntry) RelatedSamenessGroups() []string

+ func (r *ServiceResolverConfigEntry) ToSamenessDiscoveryTargetOpts() DiscoveryTargetOpts

type ServiceResolverFailover

+ Policy *ServiceResolverFailoverPolicy

+ SamenessGroup string

+ type ServiceResolverFailoverPolicy struct

+ Mode string

+ Regions []string

+ func (f *ServiceResolverFailoverPolicy) ValidateEnterprise() error

+ type ServiceResolverPrioritizeByLocality struct

+ Mode string

+ func (pbl *ServiceResolverPrioritizeByLocality) ToDiscovery() *DiscoveryPrioritizeByLocality

type ServiceResolverRedirect

+ SamenessGroup string

+ type SimplifiedIntentions Intentions

type SourceIntention

+ SamenessGroup string

Dec 12, 2023

Changes in this version

+ func HashConfigEntry(conf ConfigEntry) (uint64, error)

type APIGatewayConfigEntry

+ Hash uint64

+ func (e *APIGatewayConfigEntry) GetHash() uint64

+ func (e *APIGatewayConfigEntry) SetHash(h uint64)

type BoundAPIGatewayConfigEntry

+ Hash uint64

+ Services ServiceRouteReferences

+ func (e *BoundAPIGatewayConfigEntry) GetHash() uint64

+ func (e *BoundAPIGatewayConfigEntry) ListRelatedServices() []ServiceID

+ func (e *BoundAPIGatewayConfigEntry) SetHash(h uint64)

type ConfigEntry

+ GetHash func() uint64

+ SetHash func(h uint64)

type ExportedServicesConfigEntry

+ Hash uint64

+ func (e *ExportedServicesConfigEntry) GetHash() uint64

+ func (e *ExportedServicesConfigEntry) SetHash(h uint64)

type HTTPRouteConfigEntry

+ Hash uint64

+ func (e *HTTPRouteConfigEntry) GetHash() uint64

+ func (e *HTTPRouteConfigEntry) SetHash(h uint64)

type IngressGatewayConfigEntry

+ Hash uint64

+ func (e *IngressGatewayConfigEntry) GetHash() uint64

+ func (e *IngressGatewayConfigEntry) SetHash(h uint64)

type InlineCertificateConfigEntry

+ Hash uint64

+ func (e *InlineCertificateConfigEntry) GetHash() uint64

+ func (e *InlineCertificateConfigEntry) SetHash(h uint64)

type MeshConfigEntry

+ Hash uint64

+ func (e *MeshConfigEntry) GetHash() uint64

+ func (e *MeshConfigEntry) SetHash(h uint64)

type ProxyConfigEntry

+ Hash uint64

+ Protocol string

+ func (e *ProxyConfigEntry) GetHash() uint64

+ func (e *ProxyConfigEntry) SetHash(h uint64)

type ServiceConfigEntry

+ Hash uint64

+ func (e *ServiceConfigEntry) GetHash() uint64

+ func (e *ServiceConfigEntry) SetHash(h uint64)

type ServiceIntentionsConfigEntry

+ Hash uint64

+ func (e *ServiceIntentionsConfigEntry) GetHash() uint64

+ func (e *ServiceIntentionsConfigEntry) SetHash(h uint64)

type ServiceResolverConfigEntry

+ Hash uint64

+ func (e *ServiceResolverConfigEntry) GetHash() uint64

+ func (e *ServiceResolverConfigEntry) SetHash(h uint64)

+ type ServiceRouteReferences map[ServiceName][]ResourceReference

+ func (s ServiceRouteReferences) AddService(key ServiceName, routeRef ResourceReference)

+ func (s ServiceRouteReferences) MarshalJSON() ([]byte, error)

+ func (s ServiceRouteReferences) RemoveRouteRef(routeRef ResourceReference)

type ServiceRouterConfigEntry

+ Hash uint64

+ func (e *ServiceRouterConfigEntry) GetHash() uint64

+ func (e *ServiceRouterConfigEntry) SetHash(h uint64)

type ServiceSplitterConfigEntry

+ Hash uint64

+ func (e *ServiceSplitterConfigEntry) GetHash() uint64

+ func (e *ServiceSplitterConfigEntry) SetHash(h uint64)

type TCPRouteConfigEntry

+ Hash uint64

+ func (e *TCPRouteConfigEntry) GetHash() uint64

+ func (e *TCPRouteConfigEntry) SetHash(h uint64)

type TerminatingGatewayConfigEntry

+ Hash uint64

+ func (e *TerminatingGatewayConfigEntry) GetHash() uint64

+ func (e *TerminatingGatewayConfigEntry) SetHash(h uint64)

Jun 23, 2023

Changes in this version

type Condition

+ func NewGatewayCondition(name api.GatewayConditionType, status api.ConditionStatus, ...) Condition

+ func NewRouteCondition(name api.RouteConditionType, status api.ConditionStatus, ...) Condition

type NodeService

+ func TestNodeServiceAPIGateway(t testing.T) *NodeService

Mar 30, 2023 GO-2023-1827 +1 more

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1828: Hashicorp Consul allows user with service:write permissions to patch remote proxy instances in github.com/hashicorp/consul

Changes in this version

+ func ChainID(opts DiscoveryTargetOpts) string

type DiscoveryTargetOpts

+ func MergeDiscoveryTargetOpts(o1 DiscoveryTargetOpts, o2 DiscoveryTargetOpts) DiscoveryTargetOpts

Mar 7, 2023 GO-2023-1827 +1 more

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1828: Hashicorp Consul allows user with service:write permissions to patch remote proxy instances in github.com/hashicorp/consul

Feb 24, 2023 GO-2023-1827 +1 more

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1828: Hashicorp Consul allows user with service:write permissions to patch remote proxy instances in github.com/hashicorp/consul

Changes in this version

+ const APIGateway

+ const BoundAPIGateway

+ const HTTPRoute

+ const InlineCertificate

+ const RaftLogVerifierCheckpoint

+ const TCPRoute

+ type ACLInitialTokenBootstrapRequest struct

+ BootstrapSecret string

+ Datacenter string

+ func (r *ACLInitialTokenBootstrapRequest) RequestDatacenter() string

+ type APIGatewayConfigEntry struct

+ Kind string

+ Listeners []APIGatewayListener

+ Meta map[string]string

+ Name string

+ Status Status

+ func (e *APIGatewayConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *APIGatewayConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (e *APIGatewayConfigEntry) DefaultStatus() Status

+ func (e *APIGatewayConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *APIGatewayConfigEntry) GetKind() string

+ func (e *APIGatewayConfigEntry) GetMeta() map[string]string

+ func (e *APIGatewayConfigEntry) GetName() string

+ func (e *APIGatewayConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *APIGatewayConfigEntry) GetStatus() Status

+ func (e *APIGatewayConfigEntry) ListenerIsReady(name string) bool

+ func (e *APIGatewayConfigEntry) Normalize() error

+ func (e *APIGatewayConfigEntry) SetStatus(status Status)

+ func (e *APIGatewayConfigEntry) Validate() error

+ type APIGatewayListener struct

+ Hostname string

+ Name string

+ Port int

+ Protocol APIGatewayListenerProtocol

+ TLS APIGatewayTLSConfiguration

+ func (l APIGatewayListener) GetHostname() string

+ func (o *APIGatewayListener) DeepCopy() *APIGatewayListener

+ type APIGatewayListenerProtocol string

+ const ListenerProtocolHTTP

+ const ListenerProtocolTCP

+ type APIGatewayTLSConfiguration struct

+ Certificates []ResourceReference

+ CipherSuites []types.TLSCipherSuite

+ MaxVersion types.TLSVersion

+ MinVersion types.TLSVersion

+ type AccessLogsConfig struct

+ DisableListenerLogs bool

+ Enabled bool

+ JSONFormat string

+ Path string

+ TextFormat string

+ Type LogSinkType

+ func (c *AccessLogsConfig) IsZero() bool

+ func (c *AccessLogsConfig) ToAPI() *api.AccessLogsConfig

+ func (c *AccessLogsConfig) Validate() error

+ type BoundAPIGatewayConfigEntry struct

+ Kind string

+ Listeners []BoundAPIGatewayListener

+ Meta map[string]string

+ Name string

+ func (e *BoundAPIGatewayConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *BoundAPIGatewayConfigEntry) CanWrite(_ acl.Authorizer) error

+ func (e *BoundAPIGatewayConfigEntry) DefaultStatus() Status

+ func (e *BoundAPIGatewayConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *BoundAPIGatewayConfigEntry) GetKind() string

+ func (e *BoundAPIGatewayConfigEntry) GetMeta() map[string]string

+ func (e *BoundAPIGatewayConfigEntry) GetName() string

+ func (e *BoundAPIGatewayConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *BoundAPIGatewayConfigEntry) GetStatus() Status

+ func (e *BoundAPIGatewayConfigEntry) IsInitializedForGateway(gateway *APIGatewayConfigEntry) bool

+ func (e *BoundAPIGatewayConfigEntry) IsSame(other *BoundAPIGatewayConfigEntry) bool

+ func (e *BoundAPIGatewayConfigEntry) Normalize() error

+ func (e *BoundAPIGatewayConfigEntry) SetStatus(status Status)

+ func (e *BoundAPIGatewayConfigEntry) Validate() error

+ func (o *BoundAPIGatewayConfigEntry) DeepCopy() *BoundAPIGatewayConfigEntry

+ type BoundAPIGatewayListener struct

+ Certificates []ResourceReference

+ Name string

+ Routes []ResourceReference

+ func (l *BoundAPIGatewayListener) BindRoute(routeRef ResourceReference) bool

+ func (l *BoundAPIGatewayListener) UnbindRoute(route ResourceReference) bool

+ func (l BoundAPIGatewayListener) IsSame(other BoundAPIGatewayListener) bool

+ func (o *BoundAPIGatewayListener) DeepCopy() *BoundAPIGatewayListener

+ type BoundRoute interface

+ GetParents func() []ResourceReference

+ GetProtocol func() APIGatewayListenerProtocol

+ GetServiceNames func() []ServiceName

type CompiledDiscoveryChain

+ EnvoyExtensions []EnvoyExtension

+ type Condition struct

+ LastTransitionTime *time.Time

+ Message string

+ Reason string

+ Resource *ResourceReference

+ Status string

+ Type string

+ func (c *Condition) IsCondition(other *Condition) bool

+ func (c *Condition) IsSame(other *Condition) bool

type ConfigEntryOp

+ const ConfigEntryUpsertWithStatusCAS

type ConnectProxyConfig

+ AccessLogs AccessLogsConfig

+ EnvoyExtensions []EnvoyExtension

+ type ControlledConfigEntry interface

+ DefaultStatus func() Status

+ GetStatus func() Status

+ SetStatus func(status Status)

+ type EnvoyExtension struct

+ Arguments map[string]interface{}

+ Name string

+ Required bool

+ type EnvoyExtensions []EnvoyExtension

+ func (es EnvoyExtensions) ToAPI() []api.EnvoyExtension

+ type HTTPFilters struct

+ Headers []HTTPHeaderFilter

+ URLRewrite *URLRewrite

+ type HTTPHeaderFilter struct

+ Add map[string]string

+ Remove []string

+ Set map[string]string

+ type HTTPHeaderMatch struct

+ Match HTTPHeaderMatchType

+ Name string

+ Value string

+ type HTTPHeaderMatchType string

+ const HTTPHeaderMatchExact

+ const HTTPHeaderMatchPrefix

+ const HTTPHeaderMatchPresent

+ const HTTPHeaderMatchRegularExpression

+ const HTTPHeaderMatchSuffix

+ type HTTPMatch struct

+ Headers []HTTPHeaderMatch

+ Method HTTPMatchMethod

+ Path HTTPPathMatch

+ Query []HTTPQueryMatch

+ type HTTPMatchMethod string

+ const HTTPMatchMethodAll

+ const HTTPMatchMethodConnect

+ const HTTPMatchMethodDelete

+ const HTTPMatchMethodGet

+ const HTTPMatchMethodHead

+ const HTTPMatchMethodOptions

+ const HTTPMatchMethodPatch

+ const HTTPMatchMethodPost

+ const HTTPMatchMethodPut

+ const HTTPMatchMethodTrace

+ type HTTPPathMatch struct

+ Match HTTPPathMatchType

+ Value string

+ type HTTPPathMatchType string

+ const HTTPPathMatchExact

+ const HTTPPathMatchPrefix

+ const HTTPPathMatchRegularExpression

+ type HTTPQueryMatch struct

+ Match HTTPQueryMatchType

+ Name string

+ Value string

+ type HTTPQueryMatchType string

+ const HTTPQueryMatchExact

+ const HTTPQueryMatchPresent

+ const HTTPQueryMatchRegularExpression

+ type HTTPRouteConfigEntry struct

+ Hostnames []string

+ Kind string

+ Meta map[string]string

+ Name string

+ Parents []ResourceReference

+ Rules []HTTPRouteRule

+ Status Status

+ func (e *HTTPRouteConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *HTTPRouteConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (e *HTTPRouteConfigEntry) DefaultStatus() Status

+ func (e *HTTPRouteConfigEntry) FilteredHostnames(listenerHostname string) []string

+ func (e *HTTPRouteConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *HTTPRouteConfigEntry) GetKind() string

+ func (e *HTTPRouteConfigEntry) GetMeta() map[string]string

+ func (e *HTTPRouteConfigEntry) GetName() string

+ func (e *HTTPRouteConfigEntry) GetParents() []ResourceReference

+ func (e *HTTPRouteConfigEntry) GetProtocol() APIGatewayListenerProtocol

+ func (e *HTTPRouteConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *HTTPRouteConfigEntry) GetServiceNames() []ServiceName

+ func (e *HTTPRouteConfigEntry) GetServices() []HTTPService

+ func (e *HTTPRouteConfigEntry) GetStatus() Status

+ func (e *HTTPRouteConfigEntry) Normalize() error

+ func (e *HTTPRouteConfigEntry) SetStatus(status Status)

+ func (e *HTTPRouteConfigEntry) Validate() error

+ func (o *HTTPRouteConfigEntry) DeepCopy() *HTTPRouteConfigEntry

+ type HTTPRouteRule struct

+ Filters HTTPFilters

+ Matches []HTTPMatch

+ Services []HTTPService

+ type HTTPService struct

+ Filters HTTPFilters

+ Name string

+ Weight int

+ func (s HTTPService) ServiceName() ServiceName

type IngressService

+ PassiveHealthCheck *PassiveHealthCheck

type IngressServiceConfig

+ PassiveHealthCheck *PassiveHealthCheck

+ type InlineCertificateConfigEntry struct

+ Certificate string

+ Kind string

+ Meta map[string]string

+ Name string

+ PrivateKey string

+ func (e *InlineCertificateConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *InlineCertificateConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (e *InlineCertificateConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *InlineCertificateConfigEntry) GetKind() string

+ func (e *InlineCertificateConfigEntry) GetMeta() map[string]string

+ func (e *InlineCertificateConfigEntry) GetName() string

+ func (e *InlineCertificateConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *InlineCertificateConfigEntry) Hosts() ([]string, error)

+ func (e *InlineCertificateConfigEntry) Normalize() error

+ func (e *InlineCertificateConfigEntry) Validate() error

+ func (o *InlineCertificateConfigEntry) DeepCopy() *InlineCertificateConfigEntry

+ type LogSinkType string

+ const DefaultLogSinkType

+ const FileLogSinkType

+ const StdErrLogSinkType

+ const StdOutLogSinkType

+ type OpaqueUpstreamConfigDeprecated struct

+ Config map[string]interface{}

+ Upstream ServiceID

+ type OpaqueUpstreamConfigsDeprecated []OpaqueUpstreamConfigDeprecated

+ type OperatorUsageRequest struct

+ Global bool

type ProxyConfigEntry

+ AccessLogs AccessLogsConfig

+ EnvoyExtensions EnvoyExtensions

+ type ResourceReference struct

+ Kind string

+ Name string

+ SectionName string

+ func (r *ResourceReference) IsSame(other *ResourceReference) bool

+ func (r *ResourceReference) String() string

type ServiceConfigEntry

+ EnvoyExtensions EnvoyExtensions

type ServiceConfigRequest

+ UpstreamServiceNames []PeeredServiceName

+ func (s *ServiceConfigRequest) GetLocalUpstreamIDs() []ServiceID

type ServiceConfigResponse

+ AccessLogs AccessLogsConfig

+ EnvoyExtensions []EnvoyExtension

type ServiceKind

+ const ServiceKindAPIGateway

+ type Status struct

+ Conditions []Condition

+ func (o *Status) DeepCopy() *Status

+ func (s *Status) MatchesConditionStatus(condition Condition) bool

+ func (s Status) SameConditions(other Status) bool

+ type StatusUpdater struct

+ func NewStatusUpdater(entry ControlledConfigEntry) *StatusUpdater

+ func (u *StatusUpdater) ClearConditions()

+ func (u *StatusUpdater) RemoveCondition(condition Condition)

+ func (u *StatusUpdater) SetCondition(condition Condition)

+ func (u *StatusUpdater) UpdateEntry() (ControlledConfigEntry, bool)

+ type TCPRouteConfigEntry struct

+ Kind string

+ Meta map[string]string

+ Name string

+ Parents []ResourceReference

+ Services []TCPService

+ Status Status

+ func (e *TCPRouteConfigEntry) CanRead(authz acl.Authorizer) error

+ func (e *TCPRouteConfigEntry) CanWrite(authz acl.Authorizer) error

+ func (e *TCPRouteConfigEntry) DefaultStatus() Status

+ func (e *TCPRouteConfigEntry) GetEnterpriseMeta() *acl.EnterpriseMeta

+ func (e *TCPRouteConfigEntry) GetKind() string

+ func (e *TCPRouteConfigEntry) GetMeta() map[string]string

+ func (e *TCPRouteConfigEntry) GetName() string

+ func (e *TCPRouteConfigEntry) GetParents() []ResourceReference

+ func (e *TCPRouteConfigEntry) GetProtocol() APIGatewayListenerProtocol

+ func (e *TCPRouteConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *TCPRouteConfigEntry) GetServiceNames() []ServiceName

+ func (e *TCPRouteConfigEntry) GetServices() []TCPService

+ func (e *TCPRouteConfigEntry) GetStatus() Status

+ func (e *TCPRouteConfigEntry) Normalize() error

+ func (e *TCPRouteConfigEntry) SetStatus(status Status)

+ func (e *TCPRouteConfigEntry) Validate() error

+ func (o *TCPRouteConfigEntry) DeepCopy() *TCPRouteConfigEntry

+ type TCPService struct

+ Name string

+ func (s TCPService) ServiceName() ServiceName

+ type URLRewrite struct

+ Path string

type UpstreamConfig

+ Peer string

+ func (cfg *UpstreamConfig) PeeredServiceName() PeeredServiceName

Sep 19, 2023

Changes in this version

type ACLTokenListRequest

+ ServiceName string

Aug 5, 2023

Changes in this version

+ const ACLPolicyGlobalManagementDesc

+ const ACLPolicyGlobalManagementName

+ const ACLPolicyGlobalReadOnlyDesc

+ const ACLPolicyGlobalReadOnlyID

+ const ACLPolicyGlobalReadOnlyName

+ const ACLReservedIDPrefix

+ const EnterpriseACLPolicyGlobalReadOnly

+ var ACLBuiltinPolicies = map[string]ACLPolicy

+ var ACLPolicyGlobalManagementRules = fmt.Sprintf(aclPolicyGlobalRulesTemplate, "write") + EnterpriseACLPolicyGlobalManagement

+ var ACLPolicyGlobalReadOnlyRules = fmt.Sprintf(aclPolicyGlobalRulesTemplate, "read") + EnterpriseACLPolicyGlobalReadOnly

Jun 23, 2023

Changes in this version

type QueryBackend

+ func QueryBackendFromString(s string) QueryBackend

type RaftServer

+ LastIndex uint64

May 16, 2023

Changes in this version

+ const SidecarProxySuffix

+ func DurationPointer(d time.Duration) *time.Duration

+ func DurationPointerFromProto(d *durationpb.Duration) *time.Duration

+ func DurationPointerToProto(d *time.Duration) *durationpb.Duration

type PassiveHealthCheck

+ BaseEjectionTime *time.Duration

+ MaxEjectionPercent *uint32

Mar 7, 2023

Changes in this version

type ServiceKind

+ const ServiceKindConnectEnabled

Jan 26, 2023 GO-2023-1639 +1 more

  GO-2023-1639: Consul Server Panic when Ingress and API Gateways Configured with Peering Connections in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Dec 13, 2022 GO-2023-1639 +1 more

  GO-2023-1639: Consul Server Panic when Ingress and API Gateways Configured with Peering Connections in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type DiscoveryTarget

+ TransparentProxy TransparentProxyConfig

Nov 30, 2022 GO-2023-1639 +1 more

  GO-2023-1639: Consul Server Panic when Ingress and API Gateways Configured with Peering Connections in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type ServiceRouteDestination

+ IdleTimeout time.Duration

Nov 21, 2022 GO-2023-1639 +1 more

  GO-2023-1639: Consul Server Panic when Ingress and API Gateways Configured with Peering Connections in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Nov 15, 2022 GO-2023-1639 +1 more

  GO-2023-1639: Consul Server Panic when Ingress and API Gateways Configured with Peering Connections in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

+ const ConnectionExactBalance

+ const ServerManagementTokenAccessorID

+ type ACLServerIdentity struct

+ func NewACLServerIdentity(secretID string) *ACLServerIdentity

+ func (i *ACLServerIdentity) EnterpriseMetadata() *acl.EnterpriseMeta

+ func (i *ACLServerIdentity) ID() string

+ func (i *ACLServerIdentity) IsExpired(asOf time.Time) bool

+ func (i *ACLServerIdentity) IsLocal() bool

+ func (i *ACLServerIdentity) NodeIdentityList() []*ACLNodeIdentity

+ func (i *ACLServerIdentity) PolicyIDs() []string

+ func (i *ACLServerIdentity) RoleIDs() []string

+ func (i *ACLServerIdentity) SecretToken() string

+ func (i *ACLServerIdentity) ServiceIdentityList() []*ACLServiceIdentity

type CheckDefinition

+ OSService string

type CheckServiceNode

+ func TestCheckNodeServiceWithNameInPeer(t testing.T, name, peer, ip string, useHostname bool) CheckServiceNode

type CheckType

+ OSService string

+ func (c *CheckType) IsOSService() bool

type DiscoveryTarget

+ Peer string

+ func (t *DiscoveryTarget) ToDiscoveryTargetOpts() DiscoveryTargetOpts

+ type DiscoveryTargetOpts struct

+ Datacenter string

+ Namespace string

+ Partition string

+ Peer string

+ Service string

+ ServiceSubset string

type HealthCheck

+ func (hc *HealthCheck) FillAuthzContext(ctx *acl.AuthorizerContext)

type HealthCheckDefinition

+ OSService string

type IssuedCert

+ ServerURI string

type MeshConfigEntry

+ Peering *PeeringMeshConfig

+ func (e *MeshConfigEntry) PeerThroughMeshGateways() bool

type NodeService

+ func (ns *NodeService) FillAuthzContext(ctx *acl.AuthorizerContext)

+ type PeeringMeshConfig struct

+ PeerThroughMeshGateways bool

type PeeringToken

+ ManualServerAddresses []string

+ Remote PeeringTokenRemote

+ type PeeringTokenRemote struct

+ Datacenter string

+ Partition string

type QueryFailoverTarget

+ Peer string

type ServiceConfigEntry

+ BalanceInboundConnections string

type ServiceConsumer

+ Peer string

type ServiceNode

+ func (s *ServiceNode) FillAuthzContext(ctx *acl.AuthorizerContext)

type ServiceQuery

+ Peer string

type ServiceResolverFailover

+ Targets []ServiceResolverFailoverTarget

+ func (failover *ServiceResolverFailover) ValidateEnterprise() error

+ func (t *ServiceResolverFailover) ToDiscoveryTargetOpts() DiscoveryTargetOpts

+ type ServiceResolverFailoverTarget struct

+ Datacenter string

+ Namespace string

+ Partition string

+ Peer string

+ Service string

+ ServiceSubset string

+ func (redir *ServiceResolverFailoverTarget) ValidateEnterprise() error

+ func (t *ServiceResolverFailoverTarget) ToDiscoveryTargetOpts() DiscoveryTargetOpts

+ func (target *ServiceResolverFailoverTarget) GetEnterpriseMeta(_ *acl.EnterpriseMeta) *acl.EnterpriseMeta

type ServiceResolverRedirect

+ Peer string

+ func (r *ServiceResolverRedirect) ToDiscoveryTargetOpts() DiscoveryTargetOpts

+ func (redir *ServiceResolverRedirect) ValidateEnterprise() error

type ServiceRouteDestination

+ RetryOn []string

type UpstreamConfig

+ BalanceOutboundConnections string

Sep 29, 2022 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Jun 23, 2023 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

May 15, 2023 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

+ type EnterpriseServiceUsage struct

type PeeredServiceName

+ func (psn PeeredServiceName) String() string

+ type ServiceUsage struct

+ BillableServiceInstances int

+ ConnectServiceInstances map[string]int

+ ServiceInstances int

+ Services int

+ type Usage struct

+ Usage map[string]ServiceUsage

Mar 7, 2023 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type CARoot

+ func (o *CARoot) DeepCopy() *CARoot

type CheckServiceNode

+ func (o *CheckServiceNode) DeepCopy() *CheckServiceNode

type CheckServiceNodes

+ func (csns CheckServiceNodes) DeepCopy() CheckServiceNodes

type CheckType

+ func (o *CheckType) DeepCopy() *CheckType

type CompiledDiscoveryChain

+ func (o *CompiledDiscoveryChain) DeepCopy() *CompiledDiscoveryChain

type ConnectProxyConfig

+ func (o *ConnectProxyConfig) DeepCopy() *ConnectProxyConfig

type DiscoveryFailover

+ func (o *DiscoveryFailover) DeepCopy() *DiscoveryFailover

type DiscoveryGraphNode

+ func (o *DiscoveryGraphNode) DeepCopy() *DiscoveryGraphNode

type DiscoveryResolver

+ RequestTimeout time.Duration

+ func (o *DiscoveryResolver) DeepCopy() *DiscoveryResolver

type DiscoveryRoute

+ func (o *DiscoveryRoute) DeepCopy() *DiscoveryRoute

type DiscoverySplit

+ func (o *DiscoverySplit) DeepCopy() *DiscoverySplit

type ExposeConfig

+ func (o *ExposeConfig) DeepCopy() *ExposeConfig

type GatewayService

+ func (o *GatewayService) DeepCopy() *GatewayService

type GatewayServiceTLSConfig

+ func (o *GatewayServiceTLSConfig) DeepCopy() *GatewayServiceTLSConfig

type HTTPHeaderModifiers

+ func (o *HTTPHeaderModifiers) DeepCopy() *HTTPHeaderModifiers

type HashPolicy

+ func (o *HashPolicy) DeepCopy() *HashPolicy

type HealthCheck

+ func (o *HealthCheck) DeepCopy() *HealthCheck

type IndexedCARoots

+ func (o *IndexedCARoots) DeepCopy() *IndexedCARoots

type IngressListener

+ func (o *IngressListener) DeepCopy() *IngressListener

type Intention

+ func (o *Intention) DeepCopy() *Intention

type IntentionPermission

+ func (o *IntentionPermission) DeepCopy() *IntentionPermission

type LoadBalancer

+ func (o *LoadBalancer) DeepCopy() *LoadBalancer

type MeshConfigEntry

+ func (o *MeshConfigEntry) DeepCopy() *MeshConfigEntry

type MeshDirectionalTLSConfig

+ func (o *MeshDirectionalTLSConfig) DeepCopy() *MeshDirectionalTLSConfig

type MeshTLSConfig

+ func (o *MeshTLSConfig) DeepCopy() *MeshTLSConfig

type Node

+ func (o *Node) DeepCopy() *Node

type NodeService

+ func (o *NodeService) DeepCopy() *NodeService

type PeeringServiceMeta

+ func (o *PeeringServiceMeta) DeepCopy() *PeeringServiceMeta

type ServiceConfigEntry

+ func (o *ServiceConfigEntry) DeepCopy() *ServiceConfigEntry

type ServiceConfigResponse

+ func (o *ServiceConfigResponse) DeepCopy() *ServiceConfigResponse

type ServiceConnect

+ func (o *ServiceConnect) DeepCopy() *ServiceConnect

type ServiceDefinition

+ func (o *ServiceDefinition) DeepCopy() *ServiceDefinition

type ServiceResolverConfigEntry

+ RequestTimeout time.Duration

+ func (o *ServiceResolverConfigEntry) DeepCopy() *ServiceResolverConfigEntry

type ServiceResolverFailover

+ func (o *ServiceResolverFailover) DeepCopy() *ServiceResolverFailover

type ServiceRoute

+ func (o *ServiceRoute) DeepCopy() *ServiceRoute

type ServiceRouteDestination

+ func (o *ServiceRouteDestination) DeepCopy() *ServiceRouteDestination

type ServiceRouteMatch

+ func (o *ServiceRouteMatch) DeepCopy() *ServiceRouteMatch

type Upstream

+ func (o *Upstream) DeepCopy() *Upstream

type UpstreamConfiguration

+ func (o *UpstreamConfiguration) DeepCopy() *UpstreamConfiguration

Jan 26, 2023 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Dec 13, 2022 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Nov 30, 2022 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Oct 19, 2022 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Sep 20, 2022 GO-2022-1121 +1 more

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type ServiceConfigEntry

+ LocalConnectTimeoutMs int

+ LocalRequestTimeoutMs int

Aug 11, 2022 GO-2022-1029 +3 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Aug 9, 2022 GO-2022-1029 +3 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2022-1121: Missing Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const DefaultPeerKeyword

+ const LocalPeerKeyword

+ const PeeringDeleteType

+ const PeeringSecretsWriteType

+ const PeeringTerminateByIDType

+ const PeeringTrustBundleDeleteType

+ const PeeringTrustBundleWriteType

+ const PeeringWriteType

+ const TODOPeerKeyword

+ func IsHostname(address string) bool

+ func IsIP(address string) bool

+ func ValidateMetaTags(metaTags map[string]string) error

type ACLCaches

+ func (c *ACLCaches) GetIdentityWithSecretToken(secretToken string) *IdentityCacheEntry

+ func (c *ACLCaches) PutIdentityWithSecretToken(secretToken string, identity ACLIdentity)

+ func (c *ACLCaches) RemoveIdentityWithSecretToken(secretToken string)

+ type ACLNodeIdentities []*ACLNodeIdentity

+ func (ids ACLNodeIdentities) Deduplicate() ACLNodeIdentities

+ type ACLServiceIdentities []*ACLServiceIdentity

+ func (ids ACLServiceIdentities) Deduplicate() ACLServiceIdentities

type CheckDefinition

+ UDP string

type CheckType

+ UDP string

+ func (c *CheckType) IsUDP() bool

type ChecksInStateRequest

+ PeerName string

type DCSpecificRequest

+ PeerName string

type DeregisterRequest

+ PeerName string

+ type DestinationConfig struct

+ Addresses []string

+ Port int

type DiscoveryTarget

+ func (t *DiscoveryTarget) ServiceName() ServiceName

+ type ExportedDiscoveryChainInfo struct

+ Protocol string

+ TCPTargets []*DiscoveryTarget

+ func (i ExportedDiscoveryChainInfo) Equal(o ExportedDiscoveryChainInfo) bool

+ type ExportedServiceList struct

+ DiscoChains map[ServiceName]ExportedDiscoveryChainInfo

+ Services []ServiceName

+ func (list *ExportedServiceList) ListAllDiscoveryChains() map[ServiceName]ExportedDiscoveryChainInfo

type GatewayService

+ ServiceKind GatewayServiceKind

+ type GatewayServiceKind string

+ const GatewayServiceKindDestination

+ const GatewayServiceKindService

+ const GatewayServiceKindUnknown

type HealthCheck

+ PeerName string

+ func (hc *HealthCheck) PeerOrEmpty() string

type HealthCheckDefinition

+ UDP string

+ type IndexedExportedServiceList struct

+ Services map[string]ServiceList

type IndexedNodeDump

+ ImportedDump NodeDump

type IndexedNodesWithGateways

+ ImportedNodes CheckServiceNodes

+ type IndexedPeeredServiceList struct

+ Services []PeeredServiceName

type Intention

+ SourcePeer string

type IntentionQueryExact

+ SourcePeer string

+ type IntentionTargetType string

+ const IntentionTargetDestination

+ const IntentionTargetService

type IssuedCert

+ Kind ServiceKind

+ KindURI string

type Node

+ PeerName string

+ func (n *Node) OverridePartition(_ string)

+ func (n *Node) PeerOrEmpty() string

+ func (n *Node) ToRegisterRequest() RegisterRequest

type NodeInfo

+ PeerName string

type NodeService

+ PeerName string

+ func (s *NodeService) ValidateForAgent() error

type NodeSpecificRequest

+ MergeCentralConfig bool

+ PeerName string

+ type PartitionSpecificRequest struct

+ Datacenter string

+ func (r *PartitionSpecificRequest) CacheInfo() cache.RequestInfo

+ func (r *PartitionSpecificRequest) RequestDatacenter() string

+ type PeeredServiceName struct

+ Peer string

+ ServiceName ServiceName

+ type PeeringServiceMeta struct

+ Protocol string

+ SNI []string

+ SpiffeID []string

+ func (m *PeeringServiceMeta) PrimarySNI() string

+ type PeeringToken struct

+ CA []string

+ EstablishmentSecret string

+ PeerID string

+ ServerAddresses []string

+ ServerName string

type PreparedQueryExecuteResponse

+ PeerName string

+ type QueryFailoverOptions struct

+ Datacenters []string

+ NearestN int

+ Targets []QueryFailoverTarget

+ func (f *QueryFailoverOptions) AsTargets() []QueryFailoverTarget

+ type QueryFailoverTarget struct

+ Datacenter string

+ PeerName string

type RegisterRequest

+ PeerName string

type ServiceConfigEntry

+ Destination *DestinationConfig

+ MaxInboundConnections int

type ServiceConfigResponse

+ Destination DestinationConfig

type ServiceConnect

+ PeerMeta *PeeringServiceMeta

type ServiceConsumer

+ PeerName string

type ServiceDumpRequest

+ PeerName string

type ServiceKind

+ const ServiceKindDestination

+ func (k ServiceKind) IsProxy() bool

type ServiceList

+ func (s ServiceList) Len() int

+ func (s ServiceList) Less(i, j int) bool

+ func (s ServiceList) Sort()

+ func (s ServiceList) Swap(i, j int)

type ServiceNode

+ PeerName string

+ func (s *ServiceNode) PeerOrEmpty() string

type ServiceQuery

+ PeerName string

type ServiceSpecificRequest

+ MergeCentralConfig bool

+ PeerName string

type SourceIntention

+ Peer string

type Upstream

+ DestinationPeer string

type UpstreamKey

+ DestinationPeer string

Jun 21, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Jun 15, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Jan 26, 2023 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Dec 13, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Nov 30, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Oct 19, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Sep 20, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type PassiveHealthCheck

+ EnforcingConsecutive5xx *uint32

Aug 11, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jul 13, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type VaultCAProviderConfig

+ IntermediatePKINamespace string

+ RootPKINamespace string

Jun 3, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 25, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type MeshConfigEntry

+ HTTP *MeshHTTPConfig

+ type MeshHTTPConfig struct

+ SanitizeXForwardedClientCert bool

Apr 19, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ func DurationFromProto(d *duration.Duration) time.Duration

+ func DurationToProto(d time.Duration) *duration.Duration

+ func IsZeroProtoTime(t *timestamp.Timestamp) bool

+ func TimeFromProto(s *timestamp.Timestamp) time.Time

+ func TimeToProto(s time.Time) *timestamp.Timestamp

+ type ACLTokenExpanded struct

type ACLTokenGetRequest

+ Expanded bool

+ type AgentRecoveryTokenIdentity struct

+ func NewAgentRecoveryTokenIdentity(agent string, secretID string) *AgentRecoveryTokenIdentity

+ func (id *AgentRecoveryTokenIdentity) EnterpriseMetadata() *acl.EnterpriseMeta

+ func (id *AgentRecoveryTokenIdentity) ID() string

+ func (id *AgentRecoveryTokenIdentity) IsExpired(asOf time.Time) bool

+ func (id *AgentRecoveryTokenIdentity) IsLocal() bool

+ func (id *AgentRecoveryTokenIdentity) NodeIdentityList() []*ACLNodeIdentity

+ func (id *AgentRecoveryTokenIdentity) PolicyIDs() []string

+ func (id *AgentRecoveryTokenIdentity) RoleIDs() []string

+ func (id *AgentRecoveryTokenIdentity) SecretToken() string

+ func (id *AgentRecoveryTokenIdentity) ServiceIdentityList() []*ACLServiceIdentity

+ type CatalogContents struct

+ Checks []*HealthCheck

+ Nodes []*Node

+ Services []*ServiceNode

+ type CatalogSummary struct

+ Checks []HealthSummary

+ Nodes []HealthSummary

+ Services []HealthSummary

type CompiledDiscoveryChain

+ Default bool

+ ServiceMeta map[string]string

+ type ExpandedTokenInfo struct

+ AgentACLDefaultPolicy string

+ AgentACLDownPolicy string

+ ExpandedPolicies []*ACLPolicy

+ ExpandedRoles []*ACLRole

+ NamespaceDefaultPolicyIDs []string

+ NamespaceDefaultRoleIDs []string

+ ResolvedByAgent string

+ type HealthSummary struct

+ Critical int

+ Name string

+ Passing int

+ Total int

+ Warning int

+ func (h *HealthSummary) Add(status string)

type MeshConfigEntry

+ TLS *MeshTLSConfig

+ type MeshDirectionalTLSConfig struct

+ CipherSuites []types.TLSCipherSuite

+ TLSMaxVersion types.TLSVersion

+ TLSMinVersion types.TLSVersion

+ type MeshTLSConfig struct

+ Incoming *MeshDirectionalTLSConfig

+ Outgoing *MeshDirectionalTLSConfig

type ServiceConfigResponse

+ Meta map[string]string

Apr 4, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Oct 19, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type IngressGatewayConfigEntry

+ Defaults *IngressServiceConfig

type IngressService

+ MaxConcurrentRequests uint32

+ MaxConnections uint32

+ MaxPendingRequests uint32

+ type IngressServiceConfig struct

+ MaxConcurrentRequests uint32

+ MaxConnections uint32

+ MaxPendingRequests uint32

type QueryOptions

+ func (q QueryOptions) BlockingTimeout(maxQueryTime, defaultQueryTime time.Duration) time.Duration

Sep 22, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Sep 19, 2022 GO-2023-1827

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Changes in this version

type QueryOptions

+ func (q QueryOptions) Timeout(rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) time.Duration

type RPCInfo

+ Timeout func(rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) time.Duration

type WriteRequest

+ func (w WriteRequest) Timeout(rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) time.Duration

Aug 11, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jul 13, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 25, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Apr 13, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 28, 2022 GO-2022-0615 +3 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 11, 2022 GO-2022-0615 +3 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jan 13, 2022 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const SystemMetadataTermGatewayVirtualIPsEnabled

+ func ServiceGatewayVirtualIPTag(sn ServiceName) string

type GatewayTLSConfig

+ CipherSuites []types.TLSCipherSuite

+ TLSMaxVersion types.TLSVersion

+ TLSMinVersion types.TLSVersion

Dec 15, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 14, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const DefaultRootCertTTL

+ const DeprecatedACLRequestType

+ const ExportedServices

+ const FreeVirtualIPRequestType

+ const JitterFraction

+ const KindServiceNamesType

+ const MetaKeyReservedPrefix

+ const ServiceVirtualIPRequestType

+ const SystemMetadataVirtualIPsEnabled

+ const TaggedAddressVirtualIP

+ func EqualPartitions(_, _ string) bool

+ func IsDefaultPartition(partition string) bool

+ func IsValidPartitionAndDatacenter(meta EnterpriseMeta, datacenters []string, primaryDatacenter string) bool

+ func NamespaceOrDefault(_ string) string

+ func NodeNameString(node string, _ *EnterpriseMeta) string

+ func PartitionOrDefault(_ string) string

type ACLReplicationStatus

+ LastErrorMessage string

type CheckDefinition

+ FailuresBeforeWarning int

+ H2PingUseTLS bool

type CheckID

+ func (c CheckID) NamespaceOrDefault() string

+ func (c CheckID) PartitionOrDefault() string

type CheckType

+ FailuresBeforeWarning int

+ H2PingUseTLS bool

type CommonCAProviderConfig

+ RootCertTTL time.Duration

type CompiledDiscoveryChain

+ Partition string

+ type ConfigEntryDeleteResponse struct

+ Deleted bool

type ConfigEntryOp

+ const ConfigEntryDeleteCAS

type ConnectAuthorizeRequest

+ func (req *ConnectAuthorizeRequest) TargetPartition() string

type Coordinate

+ Partition string

+ func (_ *Coordinate) FillAuthzContext(_ *acl.AuthorizerContext)

+ func (c *Coordinate) GetEnterpriseMeta() *EnterpriseMeta

+ func (c *Coordinate) PartitionOrDefault() string

type DirEntry

+ func (d *DirEntry) IDValue() string

type DiscoveryChainConfigEntries

+ ProxyDefaults map[string]*ProxyConfigEntry

+ func (e *DiscoveryChainConfigEntries) AddProxyDefaults(entries ...*ProxyConfigEntry)

+ func (e *DiscoveryChainConfigEntries) GetProxyDefaults(partition string) *ProxyConfigEntry

type DiscoveryChainRequest

+ EvaluateInPartition string

type DiscoverySplit

+ Definition *ServiceSplit

type DiscoveryTarget

+ Partition string

type EnterpriseMeta

+ func DefaultEnterpriseMetaInDefaultPartition() *EnterpriseMeta

+ func DefaultEnterpriseMetaInPartition(_ string) *EnterpriseMeta

+ func NewEnterpriseMetaInDefaultPartition(_ string) EnterpriseMeta

+ func NewEnterpriseMetaWithPartition(_, _ string) EnterpriseMeta

+ func NodeEnterpriseMetaInDefaultPartition() *EnterpriseMeta

+ func NodeEnterpriseMetaInPartition(_ string) *EnterpriseMeta

+ func WildcardEnterpriseMetaInDefaultPartition() *EnterpriseMeta

+ func WildcardEnterpriseMetaInPartition(_ string) *EnterpriseMeta

+ func (m *EnterpriseMeta) InDefaultNamespace() bool

+ func (m *EnterpriseMeta) InDefaultPartition() bool

+ func (m *EnterpriseMeta) PartitionOrDefault() string

+ func (m *EnterpriseMeta) PartitionOrEmpty() string

+ func (m *EnterpriseMeta) ToEnterprisePolicyMeta() *acl.EnterprisePolicyMeta

+ func (m *EnterpriseMeta) UnsetPartition()

+ func (m *EnterpriseMeta) WithWildcardNamespace() *EnterpriseMeta

+ type ExportedService struct

+ Consumers []ServiceConsumer

+ Name string

+ Namespace string

+ type ExportedServicesConfigEntry struct

+ Meta map[string]string

+ Name string

+ Services []ExportedService

+ func (e *ExportedServicesConfigEntry) CanRead(authz acl.Authorizer) bool

+ func (e *ExportedServicesConfigEntry) CanWrite(authz acl.Authorizer) bool

+ func (e *ExportedServicesConfigEntry) Clone() *ExportedServicesConfigEntry

+ func (e *ExportedServicesConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

+ func (e *ExportedServicesConfigEntry) GetKind() string

+ func (e *ExportedServicesConfigEntry) GetMeta() map[string]string

+ func (e *ExportedServicesConfigEntry) GetName() string

+ func (e *ExportedServicesConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ExportedServicesConfigEntry) MarshalJSON() ([]byte, error)

+ func (e *ExportedServicesConfigEntry) Normalize() error

+ func (e *ExportedServicesConfigEntry) ToMap() map[string]map[string][]string

+ func (e *ExportedServicesConfigEntry) Validate() error

+ type GatewayServiceTLSConfig struct

+ SDS *GatewayTLSSDSConfig

type GatewayTLSConfig

+ SDS *GatewayTLSSDSConfig

+ type GatewayTLSSDSConfig struct

+ CertResource string

+ ClusterName string

+ type HTTPHeaderModifiers struct

+ Add map[string]string

+ Remove []string

+ Set map[string]string

+ func MergeHTTPHeaderModifiers(base, overrides *HTTPHeaderModifiers) (*HTTPHeaderModifiers, error)

+ func (m *HTTPHeaderModifiers) Clone() (*HTTPHeaderModifiers, error)

+ func (m *HTTPHeaderModifiers) IsZero() bool

+ func (m *HTTPHeaderModifiers) Validate(protocol string) error

type HealthCheckDefinition

+ H2PingUseTLS bool

type IngressListener

+ TLS *GatewayTLSConfig

type IngressService

+ RequestHeaders *HTTPHeaderModifiers

+ ResponseHeaders *HTTPHeaderModifiers

+ TLS *GatewayServiceTLSConfig

type Intention

+ DestinationPartition string

+ SourcePartition string

+ func (ixn *Intention) FillPartitionAndNamespace(entMeta *EnterpriseMeta, fillDefault bool)

type IntentionMatchEntry

+ Partition string

type IntentionQueryCheck

+ DestinationPartition string

+ SourcePartition string

type IntentionQueryExact

+ DestinationPartition string

+ SourcePartition string

type KeyringResponse

+ Partition string

+ func (r *KeyringResponse) PartitionOrDefault() string

type Node

+ Partition string

+ func (_ *Node) FillAuthzContext(_ *acl.AuthorizerContext)

+ func (n *Node) GetEnterpriseMeta() *EnterpriseMeta

+ func (n *Node) PartitionOrDefault() string

type NodeInfo

+ Partition string

+ func (_ *NodeInfo) FillAuthzContext(_ *acl.AuthorizerContext)

+ func (n *NodeInfo) GetEnterpriseMeta() *EnterpriseMeta

+ func (n *NodeInfo) PartitionOrDefault() string

type NodeService

+ func TestNodeServiceProxyInPartition(t testing.T, partition string) *NodeService

type QueryMeta

+ ResultsFilteredByACLs bool

+ func (q *QueryMeta) GetResultsFilteredByACLs() bool

+ func (q *QueryMeta) SetResultsFilteredByACLs(v bool)

type QueryMetaCompat

+ GetResultsFilteredByACLs func() bool

+ SetResultsFilteredByACLs func(bool)

type QueryOptions

+ func (q QueryOptions) HasTimedOut(start time.Time, rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) bool

type QuerySource

+ NodePartition string

+ func (s QuerySource) NodeEnterpriseMeta() *EnterpriseMeta

+ func (s QuerySource) NodePartitionOrDefault() string

type RPCInfo

+ HasTimedOut func(since time.Time, rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) bool

+ type ServiceConsumer struct

+ Partition string

type ServiceKind

+ func (k ServiceKind) Normalized() string

type ServiceResolverRedirect

+ Partition string

type ServiceRouteDestination

+ Partition string

+ RequestHeaders *HTTPHeaderModifiers

+ ResponseHeaders *HTTPHeaderModifiers

type ServiceSplit

+ Partition string

+ RequestHeaders *HTTPHeaderModifiers

+ ResponseHeaders *HTTPHeaderModifiers

+ func (s *ServiceSplit) MergeParent(parent *ServiceSplit) (*ServiceSplit, error)

type Session

+ func (s *Session) IDValue() string

type Upstream

+ DestinationPartition string

type UpstreamKey

+ DestinationPartition string

+ type VaultAuthMethod struct

+ MountPath string

+ Params map[string]interface{}

+ Type string

type VaultCAProviderConfig

+ AuthMethod *VaultAuthMethod

+ Namespace string

type WriteRequest

+ func (w WriteRequest) HasTimedOut(start time.Time, rpcHoldTimeout, maxQueryTime, defaultQueryTime time.Duration) bool

Dec 6, 2021 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 18, 2021 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 2, 2021 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Oct 15, 2021 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Sep 16, 2021 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jul 13, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 25, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type QueryBackend

+ func (q QueryBackend) GoString() string

Apr 13, 2022 GO-2022-1029 +2 more

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type DiscoveryTarget

+ ConnectTimeout time.Duration

+ func (t *DiscoveryTarget) MarshalJSON() ([]byte, error)

+ func (t *DiscoveryTarget) UnmarshalJSON(data []byte) error

Feb 28, 2022 GO-2022-0615 +3 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 11, 2022 GO-2022-0615 +3 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type ServiceName

+ func NewServiceNameFromTargetID(tid string) ServiceName

Jan 13, 2022 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 15, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 13, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ func IsConsulServiceID(id ServiceID) bool

+ func IsSerfCheckID(id CheckID) bool

Nov 11, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Sep 27, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Aug 27, 2021 GO-2022-0615 +4 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const TopologySourceRoutingConfig

type HealthCheck

+ Interval string

+ Timeout string

type NodeService

+ func TestNodeServiceWithName(t testing.T, name string) *NodeService

Jul 15, 2021 GO-2022-0559 +6 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type ACLTokenListStub

+ SecretID string

+ type QueryBackend int

+ const QueryBackendBlocking

+ const QueryBackendStreaming

+ func (q QueryBackend) String() string

type QueryMeta

+ Backend QueryBackend

+ func (q *QueryMeta) GetBackend() QueryBackend

type QueryMetaCompat

+ GetBackend func() QueryBackend

Jul 1, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 22, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const MeshConfig

+ const MeshConfigMesh

+ const TopologySourceDefaultAllow

+ const TopologySourceRegistration

+ const TopologySourceSpecificIntention

+ const TopologySourceWildcardIntention

type ACLAuthMethodListStub

+ MaxTokenTTL time.Duration

+ TokenLocality string

+ func (m *ACLAuthMethodListStub) MarshalJSON() ([]byte, error)

type CheckDefinition

+ H2PING string

+ TLSServerName string

type CheckType

+ H2PING string

+ TLSServerName string

+ func (c *CheckType) IsH2PING() bool

type CompiledDiscoveryChain

+ func (c *CompiledDiscoveryChain) CompoundServiceName() ServiceName

+ func (c *CompiledDiscoveryChain) ID() string

type ConnectProxyConfig

+ LocalServiceSocketPath string

+ Mode ProxyMode

+ TransparentProxy TransparentProxyConfig

type EnterpriseMeta

+ func NewEnterpriseMeta(_ string) EnterpriseMeta

type HealthCheck

+ ExposedPort int

+ func (hc *HealthCheck) NodeIdentity() Identity

type HealthCheckDefinition

+ H2PING string

+ TLSServerName string

+ type Identity struct

+ ID string

type Intention

+ func (t *Intention) HasWildcardDestination() bool

+ func (t *Intention) HasWildcardSource() bool

type IntentionDecisionSummary

+ DefaultAllow bool

+ type MeshConfigEntry struct

+ Meta map[string]string

+ TransparentProxy TransparentProxyMeshConfig

+ func (e *MeshConfigEntry) CanRead(authz acl.Authorizer) bool

+ func (e *MeshConfigEntry) CanWrite(authz acl.Authorizer) bool

+ func (e *MeshConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

+ func (e *MeshConfigEntry) GetKind() string

+ func (e *MeshConfigEntry) GetMeta() map[string]string

+ func (e *MeshConfigEntry) GetName() string

+ func (e *MeshConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *MeshConfigEntry) MarshalJSON() ([]byte, error)

+ func (e *MeshConfigEntry) Normalize() error

+ func (e *MeshConfigEntry) Validate() error

type NodeService

+ SocketPath string

+ type OpaqueUpstreamConfig struct

+ Config map[string]interface{}

+ Upstream ServiceID

+ type OpaqueUpstreamConfigs []OpaqueUpstreamConfig

+ func (configs OpaqueUpstreamConfigs) GetUpstreamConfig(sid ServiceID) (config map[string]interface{}, found bool)

+ type PassiveHealthCheck struct

+ Interval time.Duration

+ MaxFailures uint32

+ func (chk *PassiveHealthCheck) Clone() *PassiveHealthCheck

+ func (chk *PassiveHealthCheck) IsZero() bool

+ func (chk PassiveHealthCheck) Validate() error

type ProxyConfigEntry

+ Mode ProxyMode

+ TransparentProxy TransparentProxyConfig

+ type ProxyMode string

+ const ProxyModeDefault

+ const ProxyModeDirect

+ const ProxyModeTransparent

+ func ValidateProxyMode(mode string) (ProxyMode, error)

type ServiceConfigEntry

+ Mode ProxyMode

+ TransparentProxy TransparentProxyConfig

+ UpstreamConfig *UpstreamConfiguration

type ServiceConfigRequest

+ MeshGateway MeshGatewayConfig

+ Mode ProxyMode

type ServiceConfigResponse

+ Mode ProxyMode

+ TransparentProxy TransparentProxyConfig

type ServiceDefinition

+ SocketPath string

type ServiceNode

+ ServiceSocketPath string

+ func (s *ServiceNode) NodeIdentity() Identity

type ServiceTopology

+ DownstreamSources map[string]string

+ TransparentProxy bool

+ UpstreamSources map[string]string

+ type TransparentProxyConfig struct

+ DialedDirectly bool

+ OutboundListenerPort int

+ func (c *TransparentProxyConfig) IsZero() bool

+ func (c TransparentProxyConfig) ToAPI() *api.TransparentProxyConfig

+ type TransparentProxyMeshConfig struct

+ MeshDestinationsOnly bool

type Upstream

+ CentrallyConfigured bool

+ LocalBindSocketMode string

+ LocalBindSocketPath string

+ func (u Upstream) HasLocalPortOrSocket() bool

+ func (u Upstream) UpstreamAddressToString() string

+ func (u Upstream) UpstreamIsUnixSocket() bool

type UpstreamConfig

+ ConnectTimeoutMs int

+ EnvoyClusterJSON string

+ EnvoyListenerJSON string

+ Limits *UpstreamLimits

+ MeshGateway MeshGatewayConfig

+ Name string

+ PassiveHealthCheck *PassiveHealthCheck

+ Protocol string

+ func ParseUpstreamConfig(m map[string]interface{}) (UpstreamConfig, error)

+ func ParseUpstreamConfigNoDefaults(m map[string]interface{}) (UpstreamConfig, error)

+ func (cfg *UpstreamConfig) NormalizeWithName(entMeta *EnterpriseMeta) error

+ func (cfg *UpstreamConfig) NormalizeWithoutName() error

+ func (cfg *UpstreamConfig) ServiceID() ServiceID

+ func (cfg *UpstreamConfig) ServiceName() ServiceName

+ func (cfg UpstreamConfig) Clone() UpstreamConfig

+ func (cfg UpstreamConfig) MergeInto(dst map[string]interface{})

+ func (cfg UpstreamConfig) ValidateWithName() error

+ func (cfg UpstreamConfig) ValidateWithoutName() error

+ type UpstreamConfiguration struct

+ Defaults *UpstreamConfig

+ Overrides []*UpstreamConfig

+ func (c *UpstreamConfiguration) Clone() *UpstreamConfiguration

+ type UpstreamLimits struct

+ MaxConcurrentRequests *int

+ MaxConnections *int

+ MaxPendingRequests *int

+ func (ul *UpstreamLimits) Clone() *UpstreamLimits

+ func (ul *UpstreamLimits) IsZero() bool

+ func (ul UpstreamLimits) Validate() error

type Upstreams

+ func (us Upstreams) ToMap() map[string]*Upstream

Jun 17, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 16, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 10, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 27, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 5, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Apr 16, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Mar 18, 2021 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Apr 14, 2022 GO-2022-0894 +4 more

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type CheckDefinition

+ DisableRedirects bool

type CheckType

+ DisableRedirects bool

type HealthCheckDefinition

+ DisableRedirects bool

type TerminatingGatewayConfigEntry

+ func (e *TerminatingGatewayConfigEntry) Warnings() []string

+ type WarningConfigEntry interface

+ Warnings func() []string

Feb 28, 2022 GO-2022-0615 +5 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 11, 2022 GO-2022-0615 +5 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jan 13, 2022 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type CARoots

+ func (c CARoots) Active() *CARoot

type IndexedCARoots

+ func (r IndexedCARoots) Active() *CARoot

Dec 15, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 13, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 11, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type CheckID

+ func (cid CheckID) StringHashMD5() string

+ func (cid CheckID) StringHashSHA256() string

type ServiceID

+ func (sid ServiceID) StringHashSHA256() string

Sep 27, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Aug 27, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jul 15, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 21, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 4, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Apr 15, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Mar 4, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 1, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jan 20, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 11, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 24, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const HashPolicyCookie

+ const HashPolicyHeader

+ const HashPolicyQueryParam

+ const IntentionDataOriginConfigEntries

+ const IntentionDataOriginLegacy

+ const LBPolicyLeastRequest

+ const LBPolicyMaglev

+ const LBPolicyRandom

+ const LBPolicyRingHash

+ const LBPolicyRoundRobin

+ const MetaExternalSource

+ const ServiceIntentions

+ const SystemMetadataIntentionFormatConfigValue

+ const SystemMetadataIntentionFormatKey

+ const SystemMetadataIntentionFormatLegacyValue

+ const SystemMetadataRequestType

+ var AllConfigEntryKinds = []string

+ func IsProtocolHTTPLike(protocol string) bool

+ func UniqueID(node string, compoundID string) string

type AutopilotConfig

+ CreateIndex uint64

+ MinQuorum uint

+ ModifyIndex uint64

+ func (c *AutopilotConfig) ToAutopilotLibraryConfig() *autopilot.Config

+ type AutopilotHealthReply struct

+ FailureTolerance int

+ Healthy bool

+ Servers []AutopilotServerHealth

+ type AutopilotServerHealth struct

+ Address string

+ Healthy bool

+ ID string

+ LastContact time.Duration

+ LastIndex uint64

+ LastTerm uint64

+ Leader bool

+ Name string

+ SerfStatus serf.MemberStatus

+ StableSince time.Time

+ Version string

+ Voter bool

type CheckServiceNode

+ func (csn *CheckServiceNode) CanRead(authz acl.Authorizer) acl.EnforcementDecision

+ type ConfigEntryListAllRequest struct

+ Datacenter string

+ Kinds []string

+ func (r *ConfigEntryListAllRequest) RequestDatacenter() string

+ type CookieConfig struct

+ Path string

+ Session bool

+ TTL time.Duration

type DiscoveryGraphNode

+ LoadBalancer *LoadBalancer

type EnterpriseMeta

+ func (_ *EnterpriseMeta) GetNamespace() string

+ type HashPolicy struct

+ CookieConfig *CookieConfig

+ Field string

+ FieldValue string

+ SourceIP bool

+ Terminal bool

type IndexedIntentions

+ DataOrigin string

+ type IndexedNodesWithGateways struct

+ Gateways GatewayServices

+ Nodes CheckServiceNodes

+ type IndexedServiceTopology struct

+ FilteredByACLs bool

+ ServiceTopology *ServiceTopology

type Intention

+ Permissions []*IntentionPermission

+ func (ixn *Intention) DestinationEnterpriseMeta() *EnterpriseMeta

+ func (ixn *Intention) FillNonDefaultNamespaces(_ *EnterpriseMeta)

+ func (ixn *Intention) SourceEnterpriseMeta() *EnterpriseMeta

+ func (t *Intention) Clone() *Intention

+ func (t *Intention) MarshalJSON() ([]byte, error)

+ func (t *Intention) ToExact() *IntentionQueryExact

+ func (x *Intention) DestinationServiceName() ServiceName

+ func (x *Intention) LegacyEstimateSize() int

+ func (x *Intention) SourceServiceName() ServiceName

+ func (x *Intention) ToConfigEntry(legacy bool) *ServiceIntentionsConfigEntry

+ func (x *Intention) ToSourceIntention(legacy bool) *SourceIntention

+ type IntentionDecisionSummary struct

+ Allowed bool

+ ExternalSource string

+ HasExact bool

+ HasPermissions bool

+ type IntentionHTTPHeaderPermission struct

+ Exact string

+ Invert bool

+ Name string

+ Prefix string

+ Present bool

+ Regex string

+ Suffix string

+ type IntentionHTTPPermission struct

+ Header []IntentionHTTPHeaderPermission

+ Methods []string

+ PathExact string

+ PathPrefix string

+ PathRegex string

+ func (p *IntentionHTTPPermission) Clone() *IntentionHTTPPermission

+ type IntentionListRequest struct

+ Datacenter string

+ Legacy bool

+ func (r *IntentionListRequest) RequestDatacenter() string

type IntentionMatchEntry

+ func (e *IntentionMatchEntry) GetEnterpriseMeta() *EnterpriseMeta

+ type IntentionMutation struct

+ Destination ServiceName

+ ID string

+ Source ServiceName

+ Value *SourceIntention

type IntentionOp

+ const IntentionOpDeleteAll

+ const IntentionOpUpsert

+ type IntentionPermission struct

+ Action IntentionAction

+ HTTP *IntentionHTTPPermission

+ func (p *IntentionPermission) Clone() *IntentionPermission

+ type IntentionQueryExact struct

+ DestinationNS string

+ DestinationName string

+ SourceNS string

+ SourceName string

+ func (e *IntentionQueryExact) DestinationEnterpriseMeta() *EnterpriseMeta

+ func (e *IntentionQueryExact) SourceEnterpriseMeta() *EnterpriseMeta

+ func (q *IntentionQueryExact) Validate() error

type IntentionQueryRequest

+ Exact *IntentionQueryExact

type IntentionRequest

+ Mutation *IntentionMutation

+ type LeastRequestConfig struct

+ ChoiceCount uint32

+ type LoadBalancer struct

+ HashPolicies []HashPolicy

+ LeastRequestConfig *LeastRequestConfig

+ Policy string

+ RingHashConfig *RingHashConfig

+ func (lb *LoadBalancer) IsHashBased() bool

type MessageType

+ func (m MessageType) String() string

type QueryMeta

+ NotModified bool

type QueryOptions

+ AllowNotModifiedResponse bool

+ type RaftStats struct

+ LastContact string

+ LastIndex uint64

+ LastTerm uint64

+ func (s *RaftStats) ToAutopilotServerStats() *autopilot.ServerStats

+ type RingHashConfig struct

+ MaximumRingSize uint64

+ MinimumRingSize uint64

+ type ServiceIntentionsConfigEntry struct

+ Kind string

+ Meta map[string]string

+ Name string

+ Sources []*SourceIntention

+ func MigrateIntentions(ixns Intentions) []*ServiceIntentionsConfigEntry

+ func (e *ServiceIntentionsConfigEntry) CanRead(authz acl.Authorizer) bool

+ func (e *ServiceIntentionsConfigEntry) CanWrite(authz acl.Authorizer) bool

+ func (e *ServiceIntentionsConfigEntry) Clone() *ServiceIntentionsConfigEntry

+ func (e *ServiceIntentionsConfigEntry) DeleteSourceByLegacyID(legacyID string) bool

+ func (e *ServiceIntentionsConfigEntry) DeleteSourceByName(sn ServiceName) bool

+ func (e *ServiceIntentionsConfigEntry) DestinationServiceName() ServiceName

+ func (e *ServiceIntentionsConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

+ func (e *ServiceIntentionsConfigEntry) GetKind() string

+ func (e *ServiceIntentionsConfigEntry) GetMeta() map[string]string

+ func (e *ServiceIntentionsConfigEntry) GetName() string

+ func (e *ServiceIntentionsConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ServiceIntentionsConfigEntry) HasAnyPermissions() bool

+ func (e *ServiceIntentionsConfigEntry) HasWildcardDestination() bool

+ func (e *ServiceIntentionsConfigEntry) LegacyIDFieldsAreAllEmpty() bool

+ func (e *ServiceIntentionsConfigEntry) LegacyIDFieldsAreAllSet() bool

+ func (e *ServiceIntentionsConfigEntry) LegacyNormalize() error

+ func (e *ServiceIntentionsConfigEntry) LegacyValidate() error

+ func (e *ServiceIntentionsConfigEntry) Normalize() error

+ func (e *ServiceIntentionsConfigEntry) ToIntention(src *SourceIntention) *Intention

+ func (e *ServiceIntentionsConfigEntry) ToIntentions() Intentions

+ func (e *ServiceIntentionsConfigEntry) UpdateOver(rawPrev ConfigEntry) error

+ func (e *ServiceIntentionsConfigEntry) UpdateSourceByLegacyID(legacyID string, update *SourceIntention) bool

+ func (e *ServiceIntentionsConfigEntry) UpsertSourceByName(sn ServiceName, upsert *SourceIntention)

+ func (e *ServiceIntentionsConfigEntry) Validate() error

type ServiceName

+ func (n *ServiceName) LessThan(other *ServiceName) bool

type ServiceResolverConfigEntry

+ LoadBalancer *LoadBalancer

type ServiceSpecificRequest

+ ServiceKind ServiceKind

+ type ServiceTopology struct

+ DownstreamDecisions map[string]IntentionDecisionSummary

+ Downstreams CheckServiceNodes

+ MetricsProtocol string

+ UpstreamDecisions map[string]IntentionDecisionSummary

+ Upstreams CheckServiceNodes

+ type SourceIntention struct

+ Action IntentionAction

+ Description string

+ LegacyCreateTime *time.Time

+ LegacyID string

+ LegacyMeta map[string]string

+ LegacyUpdateTime *time.Time

+ Name string

+ Permissions []*IntentionPermission

+ Precedence int

+ Type IntentionSourceType

+ func (x *SourceIntention) Clone() *SourceIntention

+ func (x *SourceIntention) SourceServiceName() ServiceName

+ type SystemMetadataEntry struct

+ Key string

+ Value string

+ type SystemMetadataOp string

+ const SystemMetadataDelete

+ const SystemMetadataUpsert

+ type SystemMetadataRequest struct

+ Datacenter string

+ Entry *SystemMetadataEntry

+ Op SystemMetadataOp

+ func (c *SystemMetadataRequest) RequestDatacenter() string

+ type UpdatableConfigEntry interface

+ UpdateOver func(prev ConfigEntry) error

+ type UpstreamDownstream struct

+ Downstream ServiceName

+ Refs map[string]struct{}

+ Upstream ServiceName

Nov 17, 2020 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 10, 2020 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 7, 2020 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Oct 12, 2020 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 15, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 13, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 11, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Sep 27, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Aug 27, 2021 GO-2022-0615 +6 more

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type EnterpriseMeta

+ func (m *EnterpriseMeta) NamespaceOrEmpty() string

Jul 15, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 21, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 4, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jun 3, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 26, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

May 18, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Apr 15, 2021 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ type AgentMasterTokenIdentity struct

+ func NewAgentMasterTokenIdentity(agent string, secretID string) *AgentMasterTokenIdentity

+ func (id *AgentMasterTokenIdentity) EmbeddedPolicy() *ACLPolicy

+ func (id *AgentMasterTokenIdentity) EnterpriseMetadata() *EnterpriseMeta

+ func (id *AgentMasterTokenIdentity) ID() string

+ func (id *AgentMasterTokenIdentity) IsExpired(asOf time.Time) bool

+ func (id *AgentMasterTokenIdentity) IsLocal() bool

+ func (id *AgentMasterTokenIdentity) NodeIdentityList() []*ACLNodeIdentity

+ func (id *AgentMasterTokenIdentity) PolicyIDs() []string

+ func (id *AgentMasterTokenIdentity) RoleIDs() []string

+ func (id *AgentMasterTokenIdentity) SecretToken() string

+ func (id *AgentMasterTokenIdentity) ServiceIdentityList() []*ACLServiceIdentity

Mar 4, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Feb 11, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jan 22, 2021 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Dec 10, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ func CloneStringSlice(s []string) []string

type ACLTokenBatchSetRequest

+ FromReplication bool

type CARoot

+ func (c *CARoot) Clone() *CARoot

Dec 3, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Nov 19, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Oct 23, 2020 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type CommonCAProviderConfig

+ IntermediateCertTTL time.Duration

Sep 11, 2020 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

type ConfigEntry

+ GetMeta func() map[string]string

type IngressGatewayConfigEntry

+ Meta map[string]string

+ func (e *IngressGatewayConfigEntry) GetMeta() map[string]string

+ func (e *IngressGatewayConfigEntry) ListRelatedServices() []ServiceID

type IngressService

+ Meta map[string]string

type KeyringResponse

+ PrimaryKeys map[string]int

type ProxyConfigEntry

+ Meta map[string]string

+ func (e *ProxyConfigEntry) GetMeta() map[string]string

type ServiceConfigEntry

+ Meta map[string]string

+ func (e *ServiceConfigEntry) GetMeta() map[string]string

type ServiceResolverConfigEntry

+ Meta map[string]string

+ func (e *ServiceResolverConfigEntry) GetMeta() map[string]string

type ServiceRouterConfigEntry

+ Meta map[string]string

+ func (e *ServiceRouterConfigEntry) GetMeta() map[string]string

type ServiceSplitterConfigEntry

+ Meta map[string]string

+ func (e *ServiceSplitterConfigEntry) GetMeta() map[string]string

type TerminatingGatewayConfigEntry

+ Meta map[string]string

+ func (e *TerminatingGatewayConfigEntry) GetMeta() map[string]string

Aug 12, 2020 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Aug 7, 2020 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Jul 30, 2020 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2683: Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul

Changes in this version

+ const BindingRuleBindTypeNode

+ const DefaultCARotationPeriod

+ const DefaultIntermediateCertTTL

+ const DefaultLeafCertTTL

+ var ErrQueryNotFound = errors.New(errQueryNotFound)

+ func IsErrNoDCPath(err error) bool

+ func IsErrQueryNotFound(err error) bool

type ACLIdentity

+ NodeIdentityList func() []*ACLNodeIdentity

+ type ACLNodeIdentity struct

+ Datacenter string

+ NodeName string

+ func (s *ACLNodeIdentity) AddToHash(h hash.Hash)

+ func (s *ACLNodeIdentity) Clone() *ACLNodeIdentity

+ func (s *ACLNodeIdentity) EstimateSize() int

+ func (s *ACLNodeIdentity) SyntheticPolicy() *ACLPolicy

type ACLRole

+ NodeIdentities []*ACLNodeIdentity

+ func (r *ACLRole) NodeIdentityList() []*ACLNodeIdentity

type ACLToken

+ NodeIdentities []*ACLNodeIdentity

+ func (t *ACLToken) NodeIdentityList() []*ACLNodeIdentity

type ACLTokenListStub

+ NodeIdentities []*ACLNodeIdentity

type GatewayService

+ func (g *GatewayService) Addresses(defaultHosts []string) []string

Jun 18, 2020 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-0953: HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const FederationStateRequestType

+ const IngressGateway

+ const MetaWANFederationKey

+ const TerminatingGateway

+ func ValidateNodeMetadata(meta map[string]string, allowConsulPrefix bool) error

+ func ValidateServiceMetadata(kind ServiceKind, meta map[string]string, allowConsulPrefix bool) error

type ACLAuthMethod

+ DisplayName string

+ MaxTokenTTL time.Duration

+ TokenLocality string

+ func (m *ACLAuthMethod) MarshalJSON() ([]byte, error)

+ func (m *ACLAuthMethod) UnmarshalJSON(data []byte) (err error)

+ type ACLAuthMethodEnterpriseFields struct

type ACLAuthMethodListStub

+ DisplayName string

type ACLIdentity

+ IsLocal func() bool

type ACLToken

+ func (t *ACLToken) IsLocal() bool

type CheckServiceNodes

+ func (nodes CheckServiceNodes) ShallowClone() CheckServiceNodes

+ func (nodes CheckServiceNodes) ToServiceDump() ServiceDump

+ type DatacenterIndexedCheckServiceNodes struct

+ DatacenterNodes map[string]CheckServiceNodes

type EnterpriseMeta

+ func ParseServiceNameString(input string) (string, *EnterpriseMeta)

+ type FederationState struct

+ Datacenter string

+ MeshGateways CheckServiceNodes

+ PrimaryModifyIndex uint64

+ UpdatedAt time.Time

+ func (c *FederationState) IsSame(other *FederationState) bool

+ type FederationStateOp string

+ const FederationStateDelete

+ const FederationStateUpsert

+ type FederationStateQuery struct

+ Datacenter string

+ TargetDatacenter string

+ func (c *FederationStateQuery) RequestDatacenter() string

+ type FederationStateRequest struct

+ Datacenter string

+ Op FederationStateOp

+ State *FederationState

+ func (c *FederationStateRequest) RequestDatacenter() string

+ type FederationStateResponse struct

+ State *FederationState

+ type FederationStates []*FederationState

+ func (listings FederationStates) Sort()

+ type GatewayService struct

+ CAFile string

+ CertFile string

+ FromWildcard bool

+ Gateway ServiceName

+ GatewayKind ServiceKind

+ Hosts []string

+ KeyFile string

+ Port int

+ Protocol string

+ SNI string

+ Service ServiceName

+ func (g *GatewayService) Clone() *GatewayService

+ func (g *GatewayService) IsSame(o *GatewayService) bool

+ type GatewayServices []*GatewayService

+ type GatewayTLSConfig struct

+ Enabled bool

+ type IndexedFederationStates struct

+ States FederationStates

+ type IndexedGatewayServices struct

+ Services GatewayServices

+ type IndexedServiceDump struct

+ Dump ServiceDump

+ type IngressGatewayConfigEntry struct

+ Kind string

+ Listeners []IngressListener

+ Name string

+ TLS GatewayTLSConfig

+ func (e *IngressGatewayConfigEntry) CanRead(authz acl.Authorizer) bool

+ func (e *IngressGatewayConfigEntry) CanWrite(authz acl.Authorizer) bool

+ func (e *IngressGatewayConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

+ func (e *IngressGatewayConfigEntry) GetKind() string

+ func (e *IngressGatewayConfigEntry) GetName() string

+ func (e *IngressGatewayConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *IngressGatewayConfigEntry) Normalize() error

+ func (e *IngressGatewayConfigEntry) Validate() error

+ type IngressListener struct

+ Port int

+ Protocol string

+ Services []IngressService

+ type IngressService struct

+ Hosts []string

+ Name string

+ func (s *IngressService) ToServiceName() ServiceName

+ type LinkedService struct

+ CAFile string

+ CertFile string

+ KeyFile string

+ Name string

+ SNI string

type NodeService

+ func TestNodeServiceIngressGateway(t testing.T, address string) *NodeService

+ func TestNodeServiceTerminatingGateway(t testing.T, address string) *NodeService

+ func (s *NodeService) IsGateway() bool

type QueryOptions

+ func (q *QueryOptions) SetTokenSecret(s string)

type RPCInfo

+ SetTokenSecret func(string)

type RegisterRequest

+ func TestRegisterIngressGateway(t testing.T) *RegisterRequest

+ type ServiceDump []*ServiceInfo

type ServiceInfo

+ Checks HealthChecks

+ GatewayService *GatewayService

+ Node *Node

+ Service *NodeService

type ServiceKind

+ const ServiceKindIngressGateway

+ const ServiceKindTerminatingGateway

+ type ServiceName struct

+ Name string

+ func NewServiceName(name string, entMeta *EnterpriseMeta) ServiceName

+ func ServiceNameFromString(input string) ServiceName

+ func (n *ServiceName) Matches(o *ServiceName) bool

+ func (n *ServiceName) String() string

+ func (si *ServiceName) ToServiceID() ServiceID

type ServiceSpecificRequest

+ Ingress bool

+ type TerminatingGatewayConfigEntry struct

+ Kind string

+ Name string

+ Services []LinkedService

+ func (e *TerminatingGatewayConfigEntry) CanRead(authz acl.Authorizer) bool

+ func (e *TerminatingGatewayConfigEntry) CanWrite(authz acl.Authorizer) bool

+ func (e *TerminatingGatewayConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

+ func (e *TerminatingGatewayConfigEntry) GetKind() string

+ func (e *TerminatingGatewayConfigEntry) GetName() string

+ func (e *TerminatingGatewayConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *TerminatingGatewayConfigEntry) Normalize() error

+ func (e *TerminatingGatewayConfigEntry) Validate() error

type Upstream

+ IngressHosts []string

type WriteRequest

+ func (w *WriteRequest) SetTokenSecret(s string)

Jun 15, 2020 GO-2022-0559 +6 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

May 21, 2020 GO-2022-0559 +6 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

May 14, 2020 GO-2022-0559 +6 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Apr 15, 2021 GO-2022-0559 +6 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

Mar 4, 2021 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Jan 22, 2021 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Changes in this version

+ var ErrLeaderNotTracked = errors.New(errLeaderNotTracked)

Dec 10, 2020 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Nov 19, 2020 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Oct 26, 2020 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ExposeConfig

+ func (e ExposeConfig) Clone() ExposeConfig

type ServiceConfigEntry

+ func (e *ServiceConfigEntry) Clone() *ServiceConfigEntry

Sep 11, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ConfigEntryKindName

+ func NewConfigEntryKindName(kind, name string, entMeta *EnterpriseMeta) ConfigEntryKindName

Aug 12, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Aug 7, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 30, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jun 10, 2020 GO-2022-0559 +9 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

May 5, 2020 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ACLPolicyGetRequest

+ PolicyName string

Mar 16, 2020 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Feb 20, 2020 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Feb 11, 2020 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2501: Denial of service in HashiCorp Consul in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const AWSCAProvider

+ const EnterpriseACLPolicyGlobalManagement

+ const TaggedAddressLAN

+ const TaggedAddressLANIPv4

+ const TaggedAddressLANIPv6

+ const TaggedAddressWAN

+ const TaggedAddressWANIPv4

+ const TaggedAddressWANIPv6

+ const WildcardSpecifier

+ var ConsulCompoundServiceID = NewServiceID(ConsulServiceID, nil)

+ var IntermediateCertRenewInterval = time.Hour

+ var MaxLeafCertTTL = 365 * 24 * time.Hour

+ var MinLeafCertTTL = time.Hour

+ var MsgpackHandle = &codec.MsgpackHandle

+ var NodeMaintCheckID = NewCheckID(NodeMaint, nil)

+ var SerfCompoundCheckID = NewCheckID(SerfCheckID, nil)

+ var TestingOldPre1dot7MsgpackHandle = &codec.MsgpackHandle

+ func DecodeProto(buf []byte, out ProtoMarshaller) error

+ func EncodeProto(t MessageType, message ProtoMarshaller) ([]byte, error)

+ func EncodeProtoInterface(t MessageType, message interface{}) ([]byte, error)

+ func ServiceIDString(id string, _ *EnterpriseMeta) string

+ func TestMsgpackEncodeDecode(t *testing.T, in interface{}, requireEncoderEquality bool)

type ACLAuthMethod

+ func (m *ACLAuthMethod) TargetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta

+ type ACLAuthMethodEnterpriseMeta struct

+ func (_ *ACLAuthMethodEnterpriseMeta) FillWithEnterpriseMeta(_ *EnterpriseMeta)

+ func (_ *ACLAuthMethodEnterpriseMeta) ToEnterpriseMeta() *EnterpriseMeta

+ type ACLAuthorizationRequest struct

+ Access string

+ Resource acl.Resource

+ Segment string

+ type ACLAuthorizationResponse struct

+ Allow bool

+ func CreateACLAuthorizationResponses(authz acl.Authorizer, requests []ACLAuthorizationRequest) ([]ACLAuthorizationResponse, error)

type ACLIdentity

+ EnterpriseMetadata func() *EnterpriseMeta

type ACLPolicy

+ func (p *ACLPolicy) EnterprisePolicyMeta() *acl.EnterprisePolicyMeta

type ACLToken

+ func (t *ACLToken) EnterpriseMetadata() *EnterpriseMeta

type ACLTokenBatchResponse

+ Removed bool

+ type AWSCAProviderConfig struct

+ DeleteOnExit bool

+ ExistingARN string

type CAConfiguration

+ ForceWithoutCrossSigning bool

+ State map[string]string

+ func (c *CAConfiguration) UnmarshalJSON(data []byte) (err error)

type CheckDefinition

+ Body string

+ FailuresBeforeCritical int

+ SuccessBeforePassing int

+ type CheckID struct

+ ID types.CheckID

+ func NewCheckID(id types.CheckID, entMeta *EnterpriseMeta) CheckID

+ func (cid *CheckID) Init(id types.CheckID, entMeta *EnterpriseMeta)

+ func (cid *CheckID) String() string

+ func (cid *CheckID) StringHash() string

type CheckType

+ Body string

+ FailuresBeforeCritical int

+ SuccessBeforePassing int

type ConfigEntry

+ GetEnterpriseMeta func() *EnterpriseMeta

type ConnectAuthorizeRequest

+ func (req *ConnectAuthorizeRequest) TargetNamespace() string

type ConsulCAProviderConfig

+ DisableCrossSigning bool

+ IntermediateCertTTL time.Duration

+ func (c *ConsulCAProviderConfig) Validate() error

type DeregisterRequest

+ func (r *DeregisterRequest) UnmarshalJSON(data []byte) error

type DirEntry

+ func (_ *DirEntry) FillAuthzContext(_ *acl.AuthorizerContext)

type DiscoveryChainRequest

+ func (req *DiscoveryChainRequest) GetEnterpriseMeta() *EnterpriseMeta

+ func (req *DiscoveryChainRequest) WithEnterpriseMeta(_ *EnterpriseMeta)

type DiscoveryTarget

+ func (t *DiscoveryTarget) GetEnterpriseMetadata() *EnterpriseMeta

+ func (t *DiscoveryTarget) ServiceID() ServiceID

+ type EnterpriseMeta struct

+ func DefaultEnterpriseMeta() *EnterpriseMeta

+ func EnterpriseMetaInitializer(_ string) EnterpriseMeta

+ func ParseServiceIDString(input string) (string, *EnterpriseMeta)

+ func ReplicationEnterpriseMeta() *EnterpriseMeta

+ func WildcardEnterpriseMeta() *EnterpriseMeta

+ func (_ *EnterpriseMeta) FillAuthzContext(_ *acl.AuthorizerContext)

+ func (_ *EnterpriseMeta) Normalize()

+ func (m *EnterpriseMeta) IsSame(_ *EnterpriseMeta) bool

+ func (m *EnterpriseMeta) LessThan(_ *EnterpriseMeta) bool

+ func (m *EnterpriseMeta) Matches(_ *EnterpriseMeta) bool

+ func (m *EnterpriseMeta) Merge(_ *EnterpriseMeta)

+ func (m *EnterpriseMeta) MergeNoWildcard(_ *EnterpriseMeta)

+ func (m *EnterpriseMeta) NamespaceOrDefault() string

type HealthCheck

+ func (_ *HealthCheck) Validate() error

+ func (hc *HealthCheck) CompoundCheckID() CheckID

+ func (hc *HealthCheck) CompoundServiceID() ServiceID

type HealthCheckDefinition

+ Body string

+ type IndexedNodeServiceList struct

+ NodeServices NodeServiceList

+ type IndexedServiceList struct

+ Services ServiceList

type Intention

+ func (_ *Intention) FillAuthzContext(_ *acl.AuthorizerContext, _ bool)

+ func (ixn *Intention) CanRead(authz acl.Authorizer) bool

+ func (ixn *Intention) CanWrite(authz acl.Authorizer) bool

+ func (ixn *Intention) DefaultNamespaces(_ *EnterpriseMeta)

type IntentionMatchEntry

+ func (_ *IntentionMatchEntry) FillAuthzContext(_ *acl.AuthorizerContext)

type IntentionQueryCheck

+ func (_ *IntentionQueryCheck) FillAuthzContext(_ *acl.AuthorizerContext)

type NodeService

+ func (ns *NodeService) CompoundServiceID() ServiceID

+ func (ns *NodeService) CompoundServiceName() ServiceID

+ type NodeServiceList struct

+ Node *Node

+ Services []*NodeService

+ type ProtoMarshaller interface

+ MarshalTo func([]byte) (int, error)

+ ProtoMessage func()

+ Size func() int

+ Unmarshal func([]byte) error

type ProxyConfigEntry

+ func (e *ProxyConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

type QueryMeta

+ func (m *QueryMeta) GetConsistencyLevel() string

+ func (m *QueryMeta) GetIndex() uint64

+ func (m *QueryMeta) GetKnownLeader() bool

+ func (m *QueryMeta) GetLastContact() time.Duration

+ func (q *QueryMeta) SetConsistencyLevel(consistencyLevel string)

+ func (q *QueryMeta) SetIndex(index uint64)

+ func (q *QueryMeta) SetKnownLeader(knownLeader bool)

+ func (q *QueryMeta) SetLastContact(lastContact time.Duration)

+ type QueryMetaCompat interface

+ GetConsistencyLevel func() string

+ GetIndex func() uint64

+ GetKnownLeader func() bool

+ GetLastContact func() time.Duration

+ SetConsistencyLevel func(string)

+ SetIndex func(uint64)

+ SetKnownLeader func(bool)

+ SetLastContact func(time.Duration)

type QueryOptions

+ func (m *QueryOptions) GetAllowStale() bool

+ func (m *QueryOptions) GetFilter() string

+ func (m *QueryOptions) GetMaxAge() time.Duration

+ func (m *QueryOptions) GetMaxQueryTime() time.Duration

+ func (m *QueryOptions) GetMaxStaleDuration() time.Duration

+ func (m *QueryOptions) GetMinQueryIndex() uint64

+ func (m *QueryOptions) GetMustRevalidate() bool

+ func (m *QueryOptions) GetRequireConsistent() bool

+ func (m *QueryOptions) GetStaleIfError() time.Duration

+ func (m *QueryOptions) GetToken() string

+ func (m *QueryOptions) GetUseCache() bool

+ func (q *QueryOptions) SetAllowStale(allowStale bool)

+ func (q *QueryOptions) SetFilter(filter string)

+ func (q *QueryOptions) SetMaxAge(maxAge time.Duration)

+ func (q *QueryOptions) SetMaxQueryTime(maxQueryTime time.Duration)

+ func (q *QueryOptions) SetMaxStaleDuration(maxStaleDuration time.Duration)

+ func (q *QueryOptions) SetMinQueryIndex(minQueryIndex uint64)

+ func (q *QueryOptions) SetMustRevalidate(mustRevalidate bool)

+ func (q *QueryOptions) SetRequireConsistent(requireConsistent bool)

+ func (q *QueryOptions) SetStaleIfError(staleIfError time.Duration)

+ func (q *QueryOptions) SetToken(token string)

+ func (q *QueryOptions) SetUseCache(useCache bool)

+ type QueryOptionsCompat interface

+ GetAllowStale func() bool

+ GetFilter func() string

+ GetMaxAge func() time.Duration

+ GetMaxQueryTime func() time.Duration

+ GetMaxStaleDuration func() time.Duration

+ GetMinQueryIndex func() uint64

+ GetMustRevalidate func() bool

+ GetRequireConsistent func() bool

+ GetStaleIfError func() time.Duration

+ GetToken func() string

+ GetUseCache func() bool

+ SetAllowStale func(bool)

+ SetFilter func(string)

+ SetMaxAge func(time.Duration)

+ SetMaxQueryTime func(time.Duration)

+ SetMaxStaleDuration func(time.Duration)

+ SetMinQueryIndex func(uint64)

+ SetMustRevalidate func(bool)

+ SetRequireConsistent func(bool)

+ SetStaleIfError func(time.Duration)

+ SetToken func(string)

+ SetUseCache func(bool)

type RegisterRequest

+ func (_ *RegisterRequest) FillAuthzContext(_ *acl.AuthorizerContext)

+ func (_ *RegisterRequest) GetEnterpriseMeta() *EnterpriseMeta

+ type RemoteACLAuthorizationRequest struct

+ Datacenter string

+ Requests []ACLAuthorizationRequest

+ func (r *RemoteACLAuthorizationRequest) RequestDatacenter() string

+ type ServiceCheck struct

+ ID string

+ Namespace string

type ServiceConfigEntry

+ func (e *ServiceConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

type ServiceConfigRequest

+ UpstreamIDs []ServiceID

type ServiceConfigResponse

+ UpstreamIDConfigs UpstreamConfigs

+ type ServiceID struct

+ ID string

+ func NewServiceID(id string, entMeta *EnterpriseMeta) ServiceID

+ func ServiceIDFromString(input string) ServiceID

+ func (sid *ServiceID) Init(id string, entMeta *EnterpriseMeta)

+ func (sid *ServiceID) LessThan(other *ServiceID) bool

+ func (sid *ServiceID) Matches(other *ServiceID) bool

+ func (sid *ServiceID) String() string

+ func (sid *ServiceID) StringHash() string

+ type ServiceInfo struct

+ Name string

+ func (si *ServiceInfo) ToServiceID() ServiceID

+ type ServiceList []ServiceInfo

type ServiceNode

+ func (sn *ServiceNode) CompoundServiceID() ServiceID

+ func (sn *ServiceNode) CompoundServiceName() ServiceID

type ServiceResolverConfigEntry

+ func (e *ServiceResolverConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

type ServiceResolverFailover

+ func (failover *ServiceResolverFailover) GetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta

type ServiceResolverRedirect

+ func (redir *ServiceResolverRedirect) GetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta

type ServiceRouteDestination

+ func (dest *ServiceRouteDestination) GetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta

type ServiceRouterConfigEntry

+ func (e *ServiceRouterConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

type ServiceSplit

+ func (split *ServiceSplit) GetEnterpriseMeta(_ *EnterpriseMeta) *EnterpriseMeta

type ServiceSplitterConfigEntry

+ func (e *ServiceSplitterConfigEntry) GetEnterpriseMeta() *EnterpriseMeta

type Session

+ NodeChecks []string

+ ServiceChecks []ServiceCheck

+ func (s *Session) CheckIDs() []types.CheckID

type SessionSpecificRequest

+ SessionID string

type TxnCheckOp

+ func (_ *TxnCheckOp) FillAuthzContext(_ *acl.AuthorizerContext)

type TxnNodeOp

+ func (op *TxnNodeOp) FillAuthzContext(ctx *acl.AuthorizerContext)

type TxnOp

+ Session *TxnSessionOp

type TxnServiceOp

+ func (_ *TxnServiceOp) FillAuthzContext(_ *acl.AuthorizerContext)

+ type TxnSessionOp struct

+ Session Session

+ Verb api.SessionOp

type Upstream

+ func (us *Upstream) DestinationID() ServiceID

+ func (us *Upstream) GetEnterpriseMeta() *EnterpriseMeta

+ type UpstreamConfig struct

+ Config map[string]interface{}

+ Upstream ServiceID

+ type UpstreamConfigs []UpstreamConfig

+ func (configs UpstreamConfigs) GetUpstreamConfig(sid ServiceID) (config map[string]interface{}, found bool)

Jan 31, 2020 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Jan 24, 2020 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Dec 20, 2019 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Dec 10, 2019 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Nov 19, 2020 GO-2022-0559 +7 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

Sep 11, 2020 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Aug 12, 2020 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 30, 2020 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jun 10, 2020 GO-2022-0559 +8 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ACLTokenResponse

+ SourceDatacenter string

Apr 14, 2020 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Feb 20, 2020 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jan 30, 2020 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type CAOp

+ const CAOpIncrementProviderSerialNumber

Nov 13, 2019 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ACLPolicy

+ func (t *ACLPolicy) UnmarshalJSON(data []byte) error

type ACLRole

+ func (t *ACLRole) UnmarshalJSON(data []byte) error

type ACLToken

+ func (t *ACLToken) UnmarshalJSON(data []byte) (err error)

type CheckDefinition

+ func (t *CheckDefinition) UnmarshalJSON(data []byte) (err error)

type CheckType

+ ProxyGRPC string

+ ProxyHTTP string

+ func (c *CheckType) Type() string

+ func (t *CheckType) UnmarshalJSON(data []byte) (err error)

type ConnectProxyConfig

+ Expose ExposeConfig

+ func (t *ConnectProxyConfig) UnmarshalJSON(data []byte) (err error)

+ type ExposeConfig struct

+ Checks bool

+ Paths []ExposePath

+ func (e *ExposeConfig) Finalize(l *log.Logger)

+ func (e *ExposeConfig) ToAPI() api.ExposeConfig

+ type ExposePath struct

+ ListenerPort int

+ LocalPathPort int

+ ParsedFromCheck bool

+ Path string

+ Protocol string

+ func (p *ExposePath) ToAPI() api.ExposePath

+ func (t *ExposePath) UnmarshalJSON(data []byte) (err error)

type HealthCheck

+ Type string

+ func (c *HealthCheck) CheckType() *CheckType

type HealthCheckDefinition

+ AliasNode string

+ AliasService string

+ DockerContainerID string

+ GRPC string

+ GRPCUseTLS bool

+ ScriptArgs []string

+ Shell string

+ TTL time.Duration

type Intention

+ func (t *Intention) UnmarshalJSON(data []byte) (err error)

type NodeService

+ func TestNodeServiceExpose(t testing.T) *NodeService

type ProxyConfigEntry

+ Expose ExposeConfig

type ServiceConfigEntry

+ Expose ExposeConfig

type ServiceConfigResponse

+ Expose ExposeConfig

type ServiceConnect

+ func (t *ServiceConnect) UnmarshalJSON(data []byte) (err error)

type ServiceDefinition

+ func (t *ServiceDefinition) UnmarshalJSON(data []byte) (err error)

type Session

+ func (t *Session) UnmarshalJSON(data []byte) (err error)

type Upstream

+ func (t *Upstream) UnmarshalJSON(data []byte) (err error)

Sep 12, 2019 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ var ErrDCNotAvailable = errors.New(errDCNotAvailable)

Aug 23, 2019 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0847: Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const DiscoveryGraphNodeTypeResolver

+ const DiscoveryGraphNodeTypeRouter

+ const DiscoveryGraphNodeTypeSplitter

+ const ServiceResolver

+ const ServiceRouter

+ const ServiceSplitter

+ func ConfigEntryDecodeRulesForKind(kind string) (skipWhenPatching []string, translateKeysDict map[string]string, err error)

+ func NormalizeServiceSplitWeight(weight float32) float32

type CARoot

+ PrivateKeyBits int

+ PrivateKeyType string

type CheckServiceNode

+ func (csn *CheckServiceNode) BestAddress(wan bool) (string, int)

type CommonCAProviderConfig

+ PrivateKeyBits int

+ PrivateKeyType string

+ type CompiledDiscoveryChain struct

+ CustomizationHash string

+ Datacenter string

+ Namespace string

+ Nodes map[string]*DiscoveryGraphNode

+ Protocol string

+ ServiceName string

+ StartNode string

+ Targets map[string]*DiscoveryTarget

+ func (c *CompiledDiscoveryChain) IsDefault() bool

+ func (c *CompiledDiscoveryChain) WillFailoverThroughMeshGateway(node *DiscoveryGraphNode) bool

+ type ConfigEntryGraphError struct

+ Err error

+ Message string

+ func (e *ConfigEntryGraphError) Error() string

+ type ConfigEntryKindName struct

+ Kind string

+ Name string

type ConfigEntryQuery

+ func (r *ConfigEntryQuery) CacheInfo() cache.RequestInfo

type ConnectProxyConfig

+ MeshGateway MeshGatewayConfig

+ func (c *ConnectProxyConfig) MarshalJSON() ([]byte, error)

+ type DatacentersRequest struct

+ func (r *DatacentersRequest) CacheInfo() cache.RequestInfo

type DirEntry

+ func (d *DirEntry) Equal(o *DirEntry) bool

+ type DiscoveryChainConfigEntries struct

+ GlobalProxy *ProxyConfigEntry

+ Resolvers map[string]*ServiceResolverConfigEntry

+ Routers map[string]*ServiceRouterConfigEntry

+ Services map[string]*ServiceConfigEntry

+ Splitters map[string]*ServiceSplitterConfigEntry

+ func NewDiscoveryChainConfigEntries() *DiscoveryChainConfigEntries

+ func (e *DiscoveryChainConfigEntries) AddEntries(entries ...ConfigEntry)

+ func (e *DiscoveryChainConfigEntries) AddResolvers(entries ...*ServiceResolverConfigEntry)

+ func (e *DiscoveryChainConfigEntries) AddRouters(entries ...*ServiceRouterConfigEntry)

+ func (e *DiscoveryChainConfigEntries) AddServices(entries ...*ServiceConfigEntry)

+ func (e *DiscoveryChainConfigEntries) AddSplitters(entries ...*ServiceSplitterConfigEntry)

+ func (e *DiscoveryChainConfigEntries) GetResolver(name string) *ServiceResolverConfigEntry

+ func (e *DiscoveryChainConfigEntries) GetRouter(name string) *ServiceRouterConfigEntry

+ func (e *DiscoveryChainConfigEntries) GetService(name string) *ServiceConfigEntry

+ func (e *DiscoveryChainConfigEntries) GetSplitter(name string) *ServiceSplitterConfigEntry

+ func (e *DiscoveryChainConfigEntries) IsChainEmpty() bool

+ func (e *DiscoveryChainConfigEntries) IsEmpty() bool

+ type DiscoveryChainRequest struct

+ Datacenter string

+ EvaluateInDatacenter string

+ EvaluateInNamespace string

+ Name string

+ OverrideConnectTimeout time.Duration

+ OverrideMeshGateway MeshGatewayConfig

+ OverrideProtocol string

+ func (r *DiscoveryChainRequest) CacheInfo() cache.RequestInfo

+ func (r *DiscoveryChainRequest) RequestDatacenter() string

+ type DiscoveryChainResponse struct

+ Chain *CompiledDiscoveryChain

+ type DiscoveryFailover struct

+ Targets []string

+ type DiscoveryGraphNode struct

+ Name string

+ Resolver *DiscoveryResolver

+ Routes []*DiscoveryRoute

+ Splits []*DiscoverySplit

+ Type string

+ func (s *DiscoveryGraphNode) IsResolver() bool

+ func (s *DiscoveryGraphNode) IsRouter() bool

+ func (s *DiscoveryGraphNode) IsSplitter() bool

+ func (s *DiscoveryGraphNode) MapKey() string

+ type DiscoveryResolver struct

+ ConnectTimeout time.Duration

+ Default bool

+ Failover *DiscoveryFailover

+ Target string

+ func (r *DiscoveryResolver) MarshalJSON() ([]byte, error)

+ func (r *DiscoveryResolver) UnmarshalJSON(data []byte) error

+ type DiscoveryRoute struct

+ Definition *ServiceRoute

+ NextNode string

+ type DiscoverySplit struct

+ NextNode string

+ Weight float32

+ type DiscoveryTarget struct

+ Datacenter string

+ External bool

+ ID string

+ MeshGateway MeshGatewayConfig

+ Name string

+ Namespace string

+ SNI string

+ Service string

+ ServiceSubset string

+ Subset ServiceResolverSubset

+ func NewDiscoveryTarget(service, serviceSubset, namespace, datacenter string) *DiscoveryTarget

+ func (t *DiscoveryTarget) String() string

type Intention

+ Hash []byte

+ func (x *Intention) SetHash(force bool) []byte

type KeyringRequest

+ LocalOnly bool

+ type MeshGatewayConfig struct

+ Mode MeshGatewayMode

+ func (base *MeshGatewayConfig) OverlayWith(overlay MeshGatewayConfig) MeshGatewayConfig

+ func (c *MeshGatewayConfig) IsZero() bool

+ func (c *MeshGatewayConfig) ToAPI() api.MeshGatewayConfig

+ type MeshGatewayMode string

+ const MeshGatewayModeDefault

+ const MeshGatewayModeLocal

+ const MeshGatewayModeNone

+ const MeshGatewayModeRemote

+ func ValidateMeshGatewayMode(mode string) (MeshGatewayMode, error)

type Node

+ func (n *Node) BestAddress(wan bool) string

type NodeService

+ TaggedAddresses map[string]ServiceAddress

+ func TestNodeServiceMeshGateway(t testing.T) *NodeService

+ func TestNodeServiceMeshGatewayWithAddrs(t testing.T, address string, port int, lanAddr, wanAddr ServiceAddress) *NodeService

+ func (ns *NodeService) BestAddress(wan bool) (string, int)

+ func (s *NodeService) IsMeshGateway() bool

type ProxyConfigEntry

+ MeshGateway MeshGatewayConfig

+ type ServiceAddress struct

+ Address string

+ Port int

+ func (a ServiceAddress) ToAPIServiceAddress() api.ServiceAddress

type ServiceConfigEntry

+ ExternalSNI string

+ MeshGateway MeshGatewayConfig

type ServiceConfigResponse

+ MeshGateway MeshGatewayConfig

+ func (r *ServiceConfigResponse) Reset()

type ServiceDefinition

+ TaggedAddresses map[string]ServiceAddress

+ type ServiceDumpRequest struct

+ Datacenter string

+ ServiceKind ServiceKind

+ Source QuerySource

+ UseServiceKind bool

+ func (r *ServiceDumpRequest) CacheInfo() cache.RequestInfo

+ func (r *ServiceDumpRequest) CacheMinIndex() uint64

+ func (r *ServiceDumpRequest) RequestDatacenter() string

type ServiceKind

+ const ServiceKindMeshGateway

+ func ServiceKindFromString(kind string) (ServiceKind, error)

type ServiceNode

+ ServiceTaggedAddresses map[string]ServiceAddress

+ type ServiceResolverConfigEntry struct

+ ConnectTimeout time.Duration

+ DefaultSubset string

+ Failover map[string]ServiceResolverFailover

+ Kind string

+ Name string

+ Redirect *ServiceResolverRedirect

+ Subsets map[string]ServiceResolverSubset

+ func (e *ServiceResolverConfigEntry) CanRead(rule acl.Authorizer) bool

+ func (e *ServiceResolverConfigEntry) CanWrite(rule acl.Authorizer) bool

+ func (e *ServiceResolverConfigEntry) GetKind() string

+ func (e *ServiceResolverConfigEntry) GetName() string

+ func (e *ServiceResolverConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ServiceResolverConfigEntry) IsDefault() bool

+ func (e *ServiceResolverConfigEntry) ListRelatedServices() []string

+ func (e *ServiceResolverConfigEntry) MarshalJSON() ([]byte, error)

+ func (e *ServiceResolverConfigEntry) Normalize() error

+ func (e *ServiceResolverConfigEntry) SubsetExists(name string) bool

+ func (e *ServiceResolverConfigEntry) UnmarshalJSON(data []byte) error

+ func (e *ServiceResolverConfigEntry) Validate() error

+ type ServiceResolverFailover struct

+ Datacenters []string

+ Namespace string

+ Service string

+ ServiceSubset string

+ type ServiceResolverRedirect struct

+ Datacenter string

+ Namespace string

+ Service string

+ ServiceSubset string

+ type ServiceResolverSubset struct

+ Filter string

+ OnlyPassing bool

+ type ServiceRoute struct

+ Destination *ServiceRouteDestination

+ Match *ServiceRouteMatch

+ type ServiceRouteDestination struct

+ Namespace string

+ NumRetries uint32

+ PrefixRewrite string

+ RequestTimeout time.Duration

+ RetryOnConnectFailure bool

+ RetryOnStatusCodes []uint32

+ Service string

+ ServiceSubset string

+ func (d *ServiceRouteDestination) HasRetryFeatures() bool

+ func (e *ServiceRouteDestination) MarshalJSON() ([]byte, error)

+ func (e *ServiceRouteDestination) UnmarshalJSON(data []byte) error

+ type ServiceRouteHTTPMatch struct

+ Header []ServiceRouteHTTPMatchHeader

+ Methods []string

+ PathExact string

+ PathPrefix string

+ PathRegex string

+ QueryParam []ServiceRouteHTTPMatchQueryParam

+ func (m *ServiceRouteHTTPMatch) IsEmpty() bool

+ type ServiceRouteHTTPMatchHeader struct

+ Exact string

+ Invert bool

+ Name string

+ Prefix string

+ Present bool

+ Regex string

+ Suffix string

+ type ServiceRouteHTTPMatchQueryParam struct

+ Exact string

+ Name string

+ Present bool

+ Regex string

+ type ServiceRouteMatch struct

+ HTTP *ServiceRouteHTTPMatch

+ func (m *ServiceRouteMatch) IsEmpty() bool

+ type ServiceRouterConfigEntry struct

+ Kind string

+ Name string

+ Routes []ServiceRoute

+ func (e *ServiceRouterConfigEntry) CanRead(rule acl.Authorizer) bool

+ func (e *ServiceRouterConfigEntry) CanWrite(rule acl.Authorizer) bool

+ func (e *ServiceRouterConfigEntry) GetKind() string

+ func (e *ServiceRouterConfigEntry) GetName() string

+ func (e *ServiceRouterConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ServiceRouterConfigEntry) ListRelatedServices() []string

+ func (e *ServiceRouterConfigEntry) Normalize() error

+ func (e *ServiceRouterConfigEntry) Validate() error

+ type ServiceSplit struct

+ Namespace string

+ Service string

+ ServiceSubset string

+ Weight float32

+ type ServiceSplitterConfigEntry struct

+ Kind string

+ Name string

+ Splits []ServiceSplit

+ func (e *ServiceSplitterConfigEntry) CanRead(rule acl.Authorizer) bool

+ func (e *ServiceSplitterConfigEntry) CanWrite(rule acl.Authorizer) bool

+ func (e *ServiceSplitterConfigEntry) GetKind() string

+ func (e *ServiceSplitterConfigEntry) GetName() string

+ func (e *ServiceSplitterConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ServiceSplitterConfigEntry) ListRelatedServices() []string

+ func (e *ServiceSplitterConfigEntry) Normalize() error

+ func (e *ServiceSplitterConfigEntry) Validate() error

type Upstream

+ MeshGateway MeshGatewayConfig

+ func (u *Upstream) ToKey() UpstreamKey

+ type UpstreamKey struct

+ Datacenter string

+ DestinationName string

+ DestinationNamespace string

+ DestinationType string

+ func (k UpstreamKey) String() string

Aug 13, 2019 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 26, 2019 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 15, 2019 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 8, 2019 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0859: Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0861: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jul 25, 2019 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ChunkingStateType

Jun 27, 2019 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type CheckDefinition

+ OutputMaxSize int

type CheckType

+ OutputMaxSize int

type HealthCheckDefinition

+ OutputMaxSize uint

type IssuedCert

+ Agent string

+ AgentURI string

+ type SignedResponse struct

+ ConnectCARoots IndexedCARoots

+ GossipKey string

+ IssuedCert IssuedCert

+ ManualCARoots []string

+ VerifyServerHostname bool

May 22, 2019 GO-2022-0559 +11 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

May 8, 2019 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ACLAuthMethodDeleteRequestType

+ const ACLAuthMethodSetRequestType

+ const ACLBindingRuleDeleteRequestType

+ const ACLBindingRuleSetRequestType

+ const ACLReservedPrefix

+ const ACLRoleDeleteRequestType

+ const ACLRoleSetRequestType

+ const BindingRuleBindTypeRole

+ const BindingRuleBindTypeService

+ const ConfigEntryRequestType

+ const DefaultServiceProtocol

+ const ProxyConfigGlobal

+ const ProxyDefaults

+ const ServiceDefaults

+ func ValidateConfigEntryKind(kind string) bool

+ type ACLAuthMethod struct

+ Config map[string]interface{}

+ Description string

+ Name string

+ Type string

+ func (p *ACLAuthMethod) Stub() *ACLAuthMethodListStub

+ type ACLAuthMethodBatchDeleteRequest struct

+ AuthMethodNames []string

+ type ACLAuthMethodBatchSetRequest struct

+ AuthMethods ACLAuthMethods

+ type ACLAuthMethodDeleteRequest struct

+ AuthMethodName string

+ Datacenter string

+ func (r *ACLAuthMethodDeleteRequest) RequestDatacenter() string

+ type ACLAuthMethodGetRequest struct

+ AuthMethodName string

+ Datacenter string

+ func (r *ACLAuthMethodGetRequest) RequestDatacenter() string

+ type ACLAuthMethodListRequest struct

+ Datacenter string

+ func (r *ACLAuthMethodListRequest) RequestDatacenter() string

+ type ACLAuthMethodListResponse struct

+ AuthMethods ACLAuthMethodListStubs

+ type ACLAuthMethodListStub struct

+ CreateIndex uint64

+ Description string

+ ModifyIndex uint64

+ Name string

+ Type string

+ type ACLAuthMethodListStubs []*ACLAuthMethodListStub

+ func (methods ACLAuthMethodListStubs) Sort()

+ type ACLAuthMethodResponse struct

+ AuthMethod *ACLAuthMethod

+ type ACLAuthMethodSetRequest struct

+ AuthMethod ACLAuthMethod

+ Datacenter string

+ func (r *ACLAuthMethodSetRequest) RequestDatacenter() string

+ type ACLAuthMethods []*ACLAuthMethod

+ func (methods ACLAuthMethods) Sort()

+ type ACLBindingRule struct

+ AuthMethod string

+ BindName string

+ BindType string

+ Description string

+ ID string

+ Selector string

+ func (r *ACLBindingRule) Clone() *ACLBindingRule

+ type ACLBindingRuleBatchDeleteRequest struct

+ BindingRuleIDs []string

+ type ACLBindingRuleBatchSetRequest struct

+ BindingRules ACLBindingRules

+ type ACLBindingRuleDeleteRequest struct

+ BindingRuleID string

+ Datacenter string

+ func (r *ACLBindingRuleDeleteRequest) RequestDatacenter() string

+ type ACLBindingRuleGetRequest struct

+ BindingRuleID string

+ Datacenter string

+ func (r *ACLBindingRuleGetRequest) RequestDatacenter() string

+ type ACLBindingRuleListRequest struct

+ AuthMethod string

+ Datacenter string

+ func (r *ACLBindingRuleListRequest) RequestDatacenter() string

+ type ACLBindingRuleListResponse struct

+ BindingRules ACLBindingRules

+ type ACLBindingRuleResponse struct

+ BindingRule *ACLBindingRule

+ type ACLBindingRuleSetRequest struct

+ BindingRule ACLBindingRule

+ Datacenter string

+ func (r *ACLBindingRuleSetRequest) RequestDatacenter() string

+ type ACLBindingRules []*ACLBindingRule

+ func (rules ACLBindingRules) Sort()

type ACLCaches

+ func (c *ACLCaches) GetRole(roleID string) *RoleCacheEntry

+ func (c *ACLCaches) PutRole(roleID string, role *ACLRole)

+ func (c *ACLCaches) RemoveRole(roleID string)

type ACLCachesConfig

+ Roles int

type ACLIdentity

+ IsExpired func(asOf time.Time) bool

+ RoleIDs func() []string

+ ServiceIdentityList func() []*ACLServiceIdentity

+ type ACLLoginParams struct

+ AuthMethod string

+ BearerToken string

+ Meta map[string]string

+ type ACLLoginRequest struct

+ Auth *ACLLoginParams

+ Datacenter string

+ func (r *ACLLoginRequest) RequestDatacenter() string

+ type ACLLogoutRequest struct

+ Datacenter string

+ func (r *ACLLogoutRequest) RequestDatacenter() string

type ACLReplicationStatus

+ ReplicatedRoleIndex uint64

type ACLReplicationType

+ const ACLReplicateRoles

+ func (t ACLReplicationType) SingularNoun() string

+ type ACLRole struct

+ Description string

+ Hash []byte

+ ID string

+ Name string

+ Policies []ACLRolePolicyLink

+ ServiceIdentities []*ACLServiceIdentity

+ func (r *ACLRole) Clone() *ACLRole

+ func (r *ACLRole) EstimateSize() int

+ func (r *ACLRole) SetHash(force bool) []byte

+ type ACLRoleBatchDeleteRequest struct

+ RoleIDs []string

+ type ACLRoleBatchGetRequest struct

+ Datacenter string

+ RoleIDs []string

+ func (r *ACLRoleBatchGetRequest) RequestDatacenter() string

+ type ACLRoleBatchResponse struct

+ Roles []*ACLRole

+ type ACLRoleBatchSetRequest struct

+ AllowMissingLinks bool

+ Roles ACLRoles

+ type ACLRoleDeleteRequest struct

+ Datacenter string

+ RoleID string

+ func (r *ACLRoleDeleteRequest) RequestDatacenter() string

+ type ACLRoleGetRequest struct

+ Datacenter string

+ RoleID string

+ RoleName string

+ func (r *ACLRoleGetRequest) RequestDatacenter() string

+ type ACLRoleListRequest struct

+ Datacenter string

+ Policy string

+ func (r *ACLRoleListRequest) RequestDatacenter() string

+ type ACLRoleListResponse struct

+ Roles ACLRoles

+ type ACLRolePolicyLink struct

+ ID string

+ Name string

+ type ACLRoleResponse struct

+ Role *ACLRole

+ type ACLRoleSetRequest struct

+ Datacenter string

+ Role ACLRole

+ func (r *ACLRoleSetRequest) RequestDatacenter() string

+ type ACLRoles []*ACLRole

+ func (roles ACLRoles) HashKey() string

+ func (roles ACLRoles) Sort()

+ type ACLServiceIdentity struct

+ Datacenters []string

+ ServiceName string

+ func (s *ACLServiceIdentity) AddToHash(h hash.Hash)

+ func (s *ACLServiceIdentity) Clone() *ACLServiceIdentity

+ func (s *ACLServiceIdentity) EstimateSize() int

+ func (s *ACLServiceIdentity) SyntheticPolicy() *ACLPolicy

type ACLToken

+ AuthMethod string

+ ExpirationTTL time.Duration

+ ExpirationTime *time.Time

+ Roles []ACLTokenRoleLink

+ ServiceIdentities []*ACLServiceIdentity

+ func (t *ACLToken) HasExpirationTime() bool

+ func (t *ACLToken) IsExpired(asOf time.Time) bool

+ func (t *ACLToken) RoleIDs() []string

+ func (t *ACLToken) ServiceIdentityList() []*ACLServiceIdentity

+ func (t *ACLToken) UsesNonLegacyFields() bool

type ACLTokenBatchSetRequest

+ AllowMissingLinks bool

+ ProhibitUnprivileged bool

type ACLTokenListRequest

+ AuthMethod string

+ Role string

type ACLTokenListStub

+ AuthMethod string

+ ExpirationTime *time.Time

+ Roles []ACLTokenRoleLink

+ ServiceIdentities []*ACLServiceIdentity

+ type ACLTokenRoleLink struct

+ ID string

+ Name string

type ACLTokenSetRequest

+ Create bool

+ type ConfigEntry interface

+ CanRead func(acl.Authorizer) bool

+ CanWrite func(acl.Authorizer) bool

+ GetKind func() string

+ GetName func() string

+ GetRaftIndex func() *RaftIndex

+ Normalize func() error

+ Validate func() error

+ func DecodeConfigEntry(raw map[string]interface{}) (ConfigEntry, error)

+ func MakeConfigEntry(kind, name string) (ConfigEntry, error)

+ type ConfigEntryOp string

+ const ConfigEntryDelete

+ const ConfigEntryUpsert

+ const ConfigEntryUpsertCAS

+ type ConfigEntryQuery struct

+ Datacenter string

+ Kind string

+ Name string

+ func (c *ConfigEntryQuery) RequestDatacenter() string

+ type ConfigEntryRequest struct

+ Datacenter string

+ Entry ConfigEntry

+ Op ConfigEntryOp

+ func (c *ConfigEntryRequest) MarshalBinary() (data []byte, err error)

+ func (c *ConfigEntryRequest) RequestDatacenter() string

+ func (c *ConfigEntryRequest) UnmarshalBinary(data []byte) error

+ type ConfigEntryResponse struct

+ Entry ConfigEntry

+ func (c *ConfigEntryResponse) MarshalBinary() (data []byte, err error)

+ func (c *ConfigEntryResponse) UnmarshalBinary(data []byte) error

+ type ConnectConfiguration struct

+ SidecarProxy bool

+ type IndexedConfigEntries struct

+ Entries []ConfigEntry

+ Kind string

+ func (c *IndexedConfigEntries) MarshalBinary() (data []byte, err error)

+ func (c *IndexedConfigEntries) UnmarshalBinary(data []byte) error

+ type IndexedGenericConfigEntries struct

+ Entries []ConfigEntry

+ func (c *IndexedGenericConfigEntries) MarshalBinary() (data []byte, err error)

+ func (c *IndexedGenericConfigEntries) UnmarshalBinary(data []byte) error

type NodeService

+ func (s *NodeService) IsSidecarProxy() bool

+ type ProxyConfigEntry struct

+ Config map[string]interface{}

+ Kind string

+ Name string

+ func (e *ProxyConfigEntry) CanRead(rule acl.Authorizer) bool

+ func (e *ProxyConfigEntry) CanWrite(rule acl.Authorizer) bool

+ func (e *ProxyConfigEntry) GetKind() string

+ func (e *ProxyConfigEntry) GetName() string

+ func (e *ProxyConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ProxyConfigEntry) MarshalBinary() (data []byte, err error)

+ func (e *ProxyConfigEntry) Normalize() error

+ func (e *ProxyConfigEntry) UnmarshalBinary(data []byte) error

+ func (e *ProxyConfigEntry) Validate() error

type QueryOptions

+ Filter string

+ type RoleCacheEntry struct

+ CacheTime time.Time

+ Role *ACLRole

+ func (e *RoleCacheEntry) Age() time.Duration

+ type ServiceConfigEntry struct

+ Kind string

+ Name string

+ Protocol string

+ func (e *ServiceConfigEntry) CanRead(rule acl.Authorizer) bool

+ func (e *ServiceConfigEntry) CanWrite(rule acl.Authorizer) bool

+ func (e *ServiceConfigEntry) GetKind() string

+ func (e *ServiceConfigEntry) GetName() string

+ func (e *ServiceConfigEntry) GetRaftIndex() *RaftIndex

+ func (e *ServiceConfigEntry) Normalize() error

+ func (e *ServiceConfigEntry) Validate() error

+ type ServiceConfigRequest struct

+ Datacenter string

+ Name string

+ Upstreams []string

+ func (r *ServiceConfigRequest) CacheInfo() cache.RequestInfo

+ func (s *ServiceConfigRequest) RequestDatacenter() string

+ type ServiceConfigResponse struct

+ ProxyConfig map[string]interface{}

+ UpstreamConfigs map[string]map[string]interface{}

+ func (r *ServiceConfigResponse) MarshalBinary() (data []byte, err error)

+ func (r *ServiceConfigResponse) UnmarshalBinary(data []byte) error

May 22, 2019 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Mar 20, 2019 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Mar 4, 2019 GO-2022-0559 +13 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type ACLPolicy

+ func (p *ACLPolicy) Clone() *ACLPolicy

type ACLToken

+ func (t *ACLToken) Clone() *ACLToken

type ACLTokenBatchResponse

+ Redacted bool

type ACLTokenResponse

+ Redacted bool

type NodeSpecificRequest

+ func (r *NodeSpecificRequest) CacheInfo() cache.RequestInfo

type ServiceQuery

+ ServiceMeta map[string]string

Jan 28, 2019 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2023-1945: HashiCorp Consul Access Restriction Bypass in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Jan 23, 2019 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0874: Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2023-1945: HashiCorp Consul Access Restriction Bypass in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ConnectCALeafRequestType

+ func IsErrServiceNotFound(err error) bool

+ type CALeafOp string

+ const CALeafOpIncrementIndex

+ type CALeafRequest struct

+ Datacenter string

+ Op CALeafOp

+ func (q *CALeafRequest) RequestDatacenter() string

type CommonCAProviderConfig

+ CSRMaxConcurrent int

+ CSRMaxPerSecond float32

type HealthCheckDefinition

+ func (d *HealthCheckDefinition) MarshalJSON() ([]byte, error)

+ func (d *HealthCheckDefinition) UnmarshalJSON(data []byte) error

+ type TxnCheckOp struct

+ Check HealthCheck

+ Verb api.CheckOp

+ type TxnCheckResult *HealthCheck

+ type TxnNodeOp struct

+ Node Node

+ Verb api.NodeOp

+ type TxnNodeResult *Node

type TxnOp

+ Check *TxnCheckOp

+ Node *TxnNodeOp

+ Service *TxnServiceOp

type TxnResult

+ Check TxnCheckResult

+ Node TxnNodeResult

+ Service TxnServiceResult

+ type TxnServiceOp struct

+ Node string

+ Service NodeService

+ Verb api.ServiceOp

+ type TxnServiceResult *NodeService

type VaultCAProviderConfig

+ CAFile string

+ CAPath string

+ CertFile string

+ KeyFile string

+ TLSServerName string

+ TLSSkipVerify bool

Nov 14, 2018 GO-2022-0559 +14 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1852: HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2023-1945: HashiCorp Consul Access Restriction Bypass in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ACLPolicyDeleteRequestType

+ const ACLPolicyGlobalManagement

+ const ACLPolicyGlobalManagementID

+ const ACLPolicySetRequestType

+ const ACLTokenAnonymousID

+ const ACLTokenDeleteRequestType

+ const ACLTokenSetRequestType

+ const ACLTokenTypeClient

+ const ACLTokenTypeManagement

+ const ACLTokenTypeNone

+ const IndexRequestType

+ var ACLBootstrapInvalidResetIndexErr = errors.New("Invalid ACL bootstrap reset index")

+ func ACLIDReserved(id string) bool

+ func SanitizeLegacyACLToken(token *ACLToken)

+ func SanitizeLegacyACLTokenRules(rules string) string

type ACL

+ func (a *ACL) Convert() *ACLToken

+ type ACLCaches struct

+ func NewACLCaches(config *ACLCachesConfig) (*ACLCaches, error)

+ func (c *ACLCaches) GetAuthorizer(id string) *AuthorizerCacheEntry

+ func (c *ACLCaches) GetIdentity(id string) *IdentityCacheEntry

+ func (c *ACLCaches) GetParsedPolicy(id string) *ParsedPolicyCacheEntry

+ func (c *ACLCaches) GetPolicy(policyID string) *PolicyCacheEntry

+ func (c *ACLCaches) Purge()

+ func (c *ACLCaches) PutAuthorizer(id string, authorizer acl.Authorizer)

+ func (c *ACLCaches) PutAuthorizerWithTTL(id string, authorizer acl.Authorizer, ttl time.Duration)

+ func (c *ACLCaches) PutIdentity(id string, ident ACLIdentity)

+ func (c *ACLCaches) PutParsedPolicy(id string, policy *acl.Policy)

+ func (c *ACLCaches) PutPolicy(policyId string, policy *ACLPolicy)

+ func (c *ACLCaches) RemoveIdentity(id string)

+ func (c *ACLCaches) RemovePolicy(policyID string)

+ type ACLCachesConfig struct

+ Authorizers int

+ Identities int

+ ParsedPolicies int

+ Policies int

+ type ACLIdentity interface

+ EmbeddedPolicy func() *ACLPolicy

+ ID func() string

+ PolicyIDs func() []string

+ SecretToken func() string

+ type ACLMode string

+ const ACLModeDisabled

+ const ACLModeEnabled

+ const ACLModeLegacy

+ const ACLModeUnknown

+ type ACLPolicies []*ACLPolicy

+ func (policies ACLPolicies) Compile(parent acl.Authorizer, cache *ACLCaches, sentinel sentinel.Evaluator) (acl.Authorizer, error)

+ func (policies ACLPolicies) HashKey() string

+ func (policies ACLPolicies) Merge(cache *ACLCaches, sentinel sentinel.Evaluator) (*acl.Policy, error)

+ func (policies ACLPolicies) Sort()

type ACLPolicy

+ Datacenters []string

+ Description string

+ Hash []byte

+ ID string

+ Name string

+ Rules string

+ Syntax acl.SyntaxVersion

+ func (p *ACLPolicy) EstimateSize() int

+ func (p *ACLPolicy) SetHash(force bool) []byte

+ func (p *ACLPolicy) Stub() *ACLPolicyListStub

+ type ACLPolicyBatchDeleteRequest struct

+ PolicyIDs []string

+ type ACLPolicyBatchGetRequest struct

+ Datacenter string

+ PolicyIDs []string

+ func (r *ACLPolicyBatchGetRequest) RequestDatacenter() string

+ type ACLPolicyBatchResponse struct

+ Policies []*ACLPolicy

+ type ACLPolicyBatchSetRequest struct

+ Policies ACLPolicies

+ type ACLPolicyDeleteRequest struct

+ Datacenter string

+ PolicyID string

+ func (r *ACLPolicyDeleteRequest) RequestDatacenter() string

+ type ACLPolicyGetRequest struct

+ Datacenter string

+ PolicyID string

+ func (r *ACLPolicyGetRequest) RequestDatacenter() string

+ type ACLPolicyIDType string

+ const ACLPolicyID

+ const ACLPolicyName

+ type ACLPolicyListRequest struct

+ Datacenter string

+ func (r *ACLPolicyListRequest) RequestDatacenter() string

+ type ACLPolicyListResponse struct

+ Policies ACLPolicyListStubs

+ type ACLPolicyListStub struct

+ CreateIndex uint64

+ Datacenters []string

+ Description string

+ Hash []byte

+ ID string

+ ModifyIndex uint64

+ Name string

+ type ACLPolicyListStubs []*ACLPolicyListStub

+ func (policies ACLPolicyListStubs) Sort()

+ type ACLPolicyResolveLegacyRequest struct

+ ACL string

+ Datacenter string

+ ETag string

+ func (r *ACLPolicyResolveLegacyRequest) RequestDatacenter() string

+ type ACLPolicyResolveLegacyResponse struct

+ ETag string

+ Parent string

+ Policy *acl.Policy

+ TTL time.Duration

+ type ACLPolicyResponse struct

+ Policy *ACLPolicy

+ type ACLPolicySetRequest struct

+ Datacenter string

+ Policy ACLPolicy

+ func (r *ACLPolicySetRequest) RequestDatacenter() string

type ACLReplicationStatus

+ ReplicatedTokenIndex uint64

+ ReplicationType ACLReplicationType

+ type ACLReplicationType string

+ const ACLReplicateLegacy

+ const ACLReplicatePolicies

+ const ACLReplicateTokens

+ type ACLToken struct

+ AccessorID string

+ CreateTime time.Time

+ Description string

+ Hash []byte

+ Local bool

+ Policies []ACLTokenPolicyLink

+ Rules string

+ SecretID string

+ Type string

+ func (t *ACLToken) EmbeddedPolicy() *ACLPolicy

+ func (t *ACLToken) EstimateSize() int

+ func (t *ACLToken) ID() string

+ func (t *ACLToken) PolicyIDs() []string

+ func (t *ACLToken) SecretToken() string

+ func (t *ACLToken) SetHash(force bool) []byte

+ func (tok *ACLToken) Convert() (*ACL, error)

+ func (token *ACLToken) Stub() *ACLTokenListStub

+ type ACLTokenBatchDeleteRequest struct

+ TokenIDs []string

+ type ACLTokenBatchGetRequest struct

+ AccessorIDs []string

+ Datacenter string

+ func (r *ACLTokenBatchGetRequest) RequestDatacenter() string

+ type ACLTokenBatchResponse struct

+ Tokens []*ACLToken

+ type ACLTokenBatchSetRequest struct

+ CAS bool

+ Tokens ACLTokens

+ type ACLTokenBootstrapRequest struct

+ ResetIndex uint64

+ Token ACLToken

+ type ACLTokenDeleteRequest struct

+ Datacenter string

+ TokenID string

+ func (r *ACLTokenDeleteRequest) RequestDatacenter() string

+ type ACLTokenGetRequest struct

+ Datacenter string

+ TokenID string

+ TokenIDType ACLTokenIDType

+ func (r *ACLTokenGetRequest) RequestDatacenter() string

+ type ACLTokenIDType string

+ const ACLTokenAccessor

+ const ACLTokenSecret

+ type ACLTokenListRequest struct

+ Datacenter string

+ IncludeGlobal bool

+ IncludeLocal bool

+ Policy string

+ func (r *ACLTokenListRequest) RequestDatacenter() string

+ type ACLTokenListResponse struct

+ Tokens ACLTokenListStubs

+ type ACLTokenListStub struct

+ AccessorID string

+ CreateIndex uint64

+ CreateTime time.Time

+ Description string

+ Hash []byte

+ Legacy bool

+ Local bool

+ ModifyIndex uint64

+ Policies []ACLTokenPolicyLink

+ type ACLTokenListStubs []*ACLTokenListStub

+ func (tokens ACLTokenListStubs) Sort()

+ type ACLTokenPolicyLink struct

+ ID string

+ Name string

+ type ACLTokenResponse struct

+ Token *ACLToken

+ type ACLTokenSetRequest struct

+ ACLToken ACLToken

+ Datacenter string

+ func (r *ACLTokenSetRequest) RequestDatacenter() string

+ type ACLTokens []*ACLToken

+ func (tokens ACLTokens) Sort()

+ type AuthorizerCacheEntry struct

+ Authorizer acl.Authorizer

+ CacheTime time.Time

+ TTL time.Duration

+ func (e *AuthorizerCacheEntry) Age() time.Duration

type CARoot

+ ExternalTrustDomain string

+ type IdentityCacheEntry struct

+ CacheTime time.Time

+ Identity ACLIdentity

+ func (e *IdentityCacheEntry) Age() time.Duration

type Intention

+ func (x *Intention) EstimateSize() int

+ type ParsedPolicyCacheEntry struct

+ CacheTime time.Time

+ Policy *acl.Policy

+ func (e *ParsedPolicyCacheEntry) Age() time.Duration

+ type PolicyCacheEntry struct

+ CacheTime time.Time

+ Policy *ACLPolicy

+ func (e *PolicyCacheEntry) Age() time.Duration

type QueryOptions

+ func (q QueryOptions) TokenSecret() string

type RPCInfo

+ TokenSecret func() string

+ type TxnIntentionOp IntentionRequest

type TxnOp

+ Intention *TxnIntentionOp

type TxnResponse

+ func (r TxnResponse) Error() error

type WriteRequest

+ func (w WriteRequest) TokenSecret() string

Oct 19, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Nov 13, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Oct 11, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const UpstreamDestTypePreparedQuery

+ const UpstreamDestTypeService

type CAConsulProviderState

+ IntermediateCert string

type ConnectManagedProxy

+ Upstreams Upstreams

type ConnectManagedProxyConfig

+ LocalServiceAddress string

+ LocalServicePort int

+ type ConnectProxyConfig struct

+ Config map[string]interface{}

+ DestinationServiceID string

+ DestinationServiceName string

+ LocalServiceAddress string

+ LocalServicePort int

+ Upstreams Upstreams

+ func TestConnectProxyConfig(t testing.T) ConnectProxyConfig

+ func (c *ConnectProxyConfig) ToAPI() *api.AgentServiceConnectProxyConfig

type Node

+ func (n *Node) IsSame(other *Node) bool

type NodeService

+ LocallyRegisteredAsSidecar bool

+ Proxy ConnectProxyConfig

+ func TestNodeServiceSidecar(t testing.T) *NodeService

type PreparedQueryExecuteRequest

+ func (q *PreparedQueryExecuteRequest) CacheInfo() cache.RequestInfo

type QueryOptions

+ MaxAge time.Duration

+ MustRevalidate bool

+ StaleIfError time.Duration

+ UseCache bool

type ServiceConnect

+ SidecarService *ServiceDefinition

type ServiceDefinition

+ Proxy *ConnectProxyConfig

type ServiceDefinitionConnectProxy

+ Upstreams []Upstream

type ServiceNode

+ ServiceProxy ConnectProxyConfig

+ func (s *ServiceNode) IsSameService(other *ServiceNode) bool

type ServiceSpecificRequest

+ ServiceTags []string

+ func (r *ServiceSpecificRequest) CacheInfo() cache.RequestInfo

+ func (r *ServiceSpecificRequest) CacheMinIndex() uint64

+ type Upstream struct

+ Config map[string]interface{}

+ Datacenter string

+ DestinationName string

+ DestinationNamespace string

+ DestinationType string

+ LocalBindAddress string

+ LocalBindPort int

+ func UpstreamFromAPI(u api.Upstream) Upstream

+ func (u *Upstream) Identifier() string

+ func (u *Upstream) String() string

+ func (u *Upstream) ToAPI() api.Upstream

+ func (u *Upstream) Validate() error

+ type Upstreams []Upstream

+ func TestAddDefaultsToUpstreams(t testing.T, upstreams []Upstream) Upstreams

+ func TestUpstreams(t testing.T) Upstreams

+ func UpstreamsFromAPI(us []api.Upstream) Upstreams

+ func (us Upstreams) ToAPI() []api.Upstream

Nov 21, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Sep 13, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ConnectCAConfigType

+ func ParseDurationFunc() mapstructure.DecodeHookFunc

+ func Uint8ToString(bs []uint8) string

+ func ValidateWeights(weights *Weights) error

type NodeService

+ Weights *Weights

type ServiceDefinition

+ Weights *Weights

type ServiceNode

+ ServiceWeights Weights

+ type Weights struct

+ Passing int

+ Warning int

Jul 30, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

type CAConfiguration

+ func (c *CAConfiguration) GetCommonConfig() (*CommonCAProviderConfig, error)

type CheckDefinition

+ AliasNode string

+ AliasService string

type CheckType

+ AliasNode string

+ AliasService string

+ func (c *CheckType) IsAlias() bool

+ type CommonCAProviderConfig struct

+ LeafCertTTL time.Duration

+ SkipValidate bool

+ func (c CommonCAProviderConfig) Validate() error

Jul 12, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ConnectCAProviderStateType

type CARoot

+ RotatedOutAt time.Time

Jun 25, 2018 GO-2022-0559 +12 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0879: Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

  GO-2024-2505: Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul

Changes in this version

+ const ConnectCARequestType

+ const ConsulCAProvider

+ const IntentionDefaultNamespace

+ const IntentionRequestType

+ const IntentionWildcard

+ const VaultCAProvider

+ type CAConfiguration struct

+ ClusterID string

+ Config map[string]interface{}

+ Provider string

+ type CAConsulProviderState struct

+ ID string

+ PrivateKey string

+ RootCert string

+ type CAOp string

+ const CAOpDeleteProviderState

+ const CAOpSetConfig

+ const CAOpSetProviderState

+ const CAOpSetRoots

+ const CAOpSetRootsAndConfig

+ type CARequest struct

+ Config *CAConfiguration

+ Datacenter string

+ Index uint64

+ Op CAOp

+ ProviderState *CAConsulProviderState

+ Roots []*CARoot

+ func (q *CARequest) RequestDatacenter() string

+ type CARoot struct

+ Active bool

+ ID string

+ IntermediateCerts []string

+ Name string

+ NotAfter time.Time

+ NotBefore time.Time

+ RootCert string

+ SerialNumber uint64

+ SigningCert string

+ SigningKey string

+ SigningKeyID string

+ type CARoots []*CARoot

+ type CASignRequest struct

+ CSR string

+ Datacenter string

+ func (q *CASignRequest) RequestDatacenter() string

+ type ConnectAuthorizeRequest struct

+ ClientCertSerial string

+ ClientCertURI string

+ Target string

+ type ConnectManagedProxy struct

+ Command []string

+ Config map[string]interface{}

+ ExecMode ProxyExecMode

+ ProxyService *NodeService

+ TargetServiceID string

+ func (p *ConnectManagedProxy) ParseConfig() (*ConnectManagedProxyConfig, error)

+ type ConnectManagedProxyConfig struct

+ BindAddress string

+ BindPort int

+ type ConsulCAProviderConfig struct

+ PrivateKey string

+ RootCert string

+ RotationPeriod time.Duration

type DCSpecificRequest

+ func (r *DCSpecificRequest) CacheInfo() cache.RequestInfo

+ func (r *DCSpecificRequest) CacheMinIndex() uint64

+ type IndexedCARoots struct

+ ActiveRootID string

+ Roots []*CARoot

+ TrustDomain string

+ type IndexedIntentionMatches struct

+ Matches []Intentions

+ type IndexedIntentions struct

+ Intentions Intentions

+ type Intention struct

+ Action IntentionAction

+ CreatedAt time.Time

+ DefaultAddr string

+ DefaultPort int

+ Description string

+ DestinationNS string

+ DestinationName string

+ ID string

+ Meta map[string]string

+ Precedence int

+ SourceNS string

+ SourceName string

+ SourceType IntentionSourceType

+ UpdatedAt time.Time

+ func TestIntention(t testing.T) *Intention

+ func (x *Intention) GetACLPrefix() (string, bool)

+ func (x *Intention) String() string

+ func (x *Intention) UpdatePrecedence()

+ func (x *Intention) Validate() error

+ type IntentionAction string

+ const IntentionActionAllow

+ const IntentionActionDeny

+ type IntentionMatchEntry struct

+ Name string

+ Namespace string

+ type IntentionMatchType string

+ const IntentionMatchDestination

+ const IntentionMatchSource

+ type IntentionOp string

+ const IntentionOpCreate

+ const IntentionOpDelete

+ const IntentionOpUpdate

+ type IntentionPrecedenceSorter Intentions

+ func (s IntentionPrecedenceSorter) Len() int

+ func (s IntentionPrecedenceSorter) Less(i, j int) bool

+ func (s IntentionPrecedenceSorter) Swap(i, j int)

+ type IntentionQueryCheck struct

+ DestinationNS string

+ DestinationName string

+ SourceNS string

+ SourceName string

+ SourceType IntentionSourceType

+ func (q *IntentionQueryCheck) GetACLPrefix() (string, bool)

+ type IntentionQueryCheckResponse struct

+ Allowed bool

+ type IntentionQueryMatch struct

+ Entries []IntentionMatchEntry

+ Type IntentionMatchType

+ type IntentionQueryRequest struct

+ Check *IntentionQueryCheck

+ Datacenter string

+ IntentionID string

+ Match *IntentionQueryMatch

+ func (q *IntentionQueryRequest) CacheInfo() cache.RequestInfo

+ func (q *IntentionQueryRequest) RequestDatacenter() string

+ type IntentionRequest struct

+ Datacenter string

+ Intention *Intention

+ Op IntentionOp

+ func (q *IntentionRequest) RequestDatacenter() string

+ type IntentionSourceType string

+ const IntentionSourceConsul

+ type Intentions []*Intention

+ type IssuedCert struct

+ CertPEM string

+ PrivateKeyPEM string

+ SerialNumber string

+ Service string

+ ServiceURI string

+ ValidAfter time.Time

+ ValidBefore time.Time

type NodeService

+ Connect ServiceConnect

+ Kind ServiceKind

+ ProxyDestination string

+ func TestNodeService(t testing.T) *NodeService

+ func TestNodeServiceProxy(t testing.T) *NodeService

+ func (s *NodeService) Validate() error

type PreparedQueryExecuteRemoteRequest

+ Connect bool

type PreparedQueryExecuteRequest

+ Connect bool

+ type ProxyExecMode int

+ const ProxyExecModeDaemon

+ const ProxyExecModeScript

+ const ProxyExecModeTest

+ const ProxyExecModeUnspecified

+ func NewProxyExecMode(raw string) (ProxyExecMode, error)

+ func (m ProxyExecMode) String() string

type RegisterRequest

+ func TestRegisterRequest(t testing.T) *RegisterRequest

+ func TestRegisterRequestProxy(t testing.T) *RegisterRequest

+ type ServiceConnect struct

+ Native bool

+ Proxy *ServiceDefinitionConnectProxy

type ServiceDefinition

+ Connect *ServiceConnect

+ Kind ServiceKind

+ ProxyDestination string

+ func TestServiceDefinition(t testing.T) *ServiceDefinition

+ func TestServiceDefinitionProxy(t testing.T) *ServiceDefinition

+ func (s *ServiceDefinition) ConnectManagedProxy() (*ConnectManagedProxy, error)

+ func (s *ServiceDefinition) Validate() error

+ type ServiceDefinitionConnectProxy struct

+ Command []string

+ Config map[string]interface{}

+ ExecMode string

+ func (p *ServiceDefinitionConnectProxy) MarshalJSON() ([]byte, error)

+ type ServiceKind string

+ const ServiceKindConnectProxy

+ const ServiceKindTypical

type ServiceNode

+ ServiceConnect ServiceConnect

+ ServiceKind ServiceKind

+ ServiceProxyDestination string

type ServiceQuery

+ Connect bool

type ServiceSpecificRequest

+ Connect bool

+ ServiceAddress string

+ type VaultCAProviderConfig struct

+ Address string

+ IntermediatePKIPath string

+ RootPKIPath string

+ Token string

Nov 21, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

May 11, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Oct 31, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Nov 21, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Apr 13, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

type CheckServiceNodes

+ func (nodes CheckServiceNodes) FilterIgnore(onlyPassing bool, ignoreCheckIDs []types.CheckID) CheckServiceNodes

type NodeService

+ Meta map[string]string

type QueryMeta

+ ConsistencyLevel string

type QueryOptions

+ MaxStaleDuration time.Duration

+ func (q QueryOptions) ConsistencyLevel() string

type QuerySource

+ Ip string

type ServiceDefinition

+ Meta map[string]string

type ServiceNode

+ ServiceMeta map[string]string

type ServiceQuery

+ IgnoreCheckIDs []types.CheckID

Feb 9, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Feb 7, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Feb 6, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

type CheckDefinition

+ GRPC string

+ GRPCUseTLS bool

type CheckType

+ GRPC string

+ GRPCUseTLS bool

+ func (c *CheckType) IsGRPC() bool

Jan 24, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Dec 15, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Nov 20, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

type HealthCheck

+ Definition HealthCheckDefinition

+ type HealthCheckDefinition struct

+ DeregisterCriticalServiceAfter api.ReadableDuration

+ HTTP string

+ Header map[string][]string

+ Interval api.ReadableDuration

+ Method string

+ TCP string

+ TLSSkipVerify bool

+ Timeout api.ReadableDuration

Nov 11, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Oct 16, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

+ func IsErrNoLeader(err error) bool

type CheckDefinition

+ ScriptArgs []string

type CheckType

+ ScriptArgs []string

+ func (c *CheckType) Empty() bool

+ func (c *CheckType) Validate() error

+ type NetworkSegment struct

+ Advertise *net.TCPAddr

+ Bind *net.TCPAddr

+ Name string

+ RPCListener bool

type RaftServer

+ ProtocolVersion string

Oct 5, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Sep 28, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Nov 20, 2018 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Sep 8, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

+ const MetaSegmentKey

+ var ErrRPCRateExceeded = errors.New(errRPCRateExceeded)

+ var ErrSegmentsNotSupported = errors.New(errSegmentsNotSupported)

+ func IsErrRPCRateExceeded(err error) bool

type Coordinate

+ Segment string

type CoordinateUpdateRequest

+ Segment string

type KeyringResponse

+ Segment string

type QuerySource

+ Segment string

Sep 6, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Sep 5, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Aug 10, 2017 GO-2022-0559 +10 more

  GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul

  GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul

  GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul

  GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul

  GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul

  GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul

  GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul

  GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul

  GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

  GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul

  GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul

Changes in this version

+ const ACLBootstrapInit

+ const ACLBootstrapNow

+ const ACLBootstrapRequestType

+ const ACLDelete

+ const ACLForceSet

+ const ACLRequestType

+ const ACLSet

+ const ACLTypeClient

+ const ACLTypeManagement

+ const AreaRequestType

+ const AutopilotRequestType

+ const ConsulServiceID

+ const ConsulServiceName

+ const CoordinateBatchUpdateType

+ const DeregisterRequestType

+ const IgnoreUnknownTypeFlag

+ const KVSRequestType

+ const KeyringInstall

+ const KeyringList

+ const KeyringRemove

+ const KeyringUse

+ const MaxLockDelay

+ const NodeMaint

+ const PreparedQueryRequestType

+ const QueryTemplateTypeNamePrefixMatch

+ const RegisterRequestType

+ const SerfCheckAliveOutput

+ const SerfCheckFailedOutput

+ const SerfCheckID

+ const SerfCheckName

+ const ServiceMaintPrefix

+ const SessionRequestType

+ const SessionTTLMax

+ const SessionTTLMultiplier

+ const TombstoneRequestType

+ const TxnRequestType

+ var ACLBootstrapNotAllowedErr = errors.New("ACL bootstrap no longer allowed")

+ var ACLBootstrapNotInitializedErr = errors.New(...)

+ var ErrNoDCPath = fmt.Errorf("No path to datacenter")

+ var ErrNoLeader = fmt.Errorf("No cluster leader")

+ var ErrNoServers = fmt.Errorf("No known Consul servers")

+ var ErrNotReadyForConsistentReads = fmt.Errorf("Not ready to serve consistent reads")

+ func Decode(buf []byte, out interface{}) error

+ func Encode(t MessageType, msg interface{}) ([]byte, error)

+ func SatisfiesMetaFilters(meta map[string]string, filters map[string]string) bool

+ func ValidStatus(s string) bool

+ func ValidateMetadata(meta map[string]string) error

+ type ACL struct

+ ID string

+ Name string

+ Rules string

+ Type string

+ func (a *ACL) IsSame(other *ACL) bool

+ type ACLBootstrap struct

+ AllowBootstrap bool

+ type ACLOp string

+ type ACLPolicy struct

+ ETag string

+ Parent string

+ Policy *acl.Policy

+ TTL time.Duration

+ type ACLPolicyRequest struct

+ ACL string

+ Datacenter string

+ ETag string

+ func (r *ACLPolicyRequest) RequestDatacenter() string

+ type ACLReplicationStatus struct

+ Enabled bool

+ LastError time.Time

+ LastSuccess time.Time

+ ReplicatedIndex uint64

+ Running bool

+ SourceDatacenter string

+ type ACLRequest struct

+ ACL ACL

+ Datacenter string

+ Op ACLOp

+ func (r *ACLRequest) RequestDatacenter() string

+ type ACLRequests []*ACLRequest

+ type ACLSpecificRequest struct

+ ACL string

+ Datacenter string

+ func (r *ACLSpecificRequest) RequestDatacenter() string

+ type ACLs []*ACL

+ type AutopilotConfig struct

+ CleanupDeadServers bool

+ DisableUpgradeMigration bool

+ LastContactThreshold time.Duration

+ MaxTrailingLogs uint64

+ RedundancyZoneTag string

+ ServerStabilizationTime time.Duration

+ UpgradeVersionTag string

+ type AutopilotSetConfigRequest struct

+ CAS bool

+ Config AutopilotConfig

+ Datacenter string

+ func (op *AutopilotSetConfigRequest) RequestDatacenter() string

+ type CheckDefinition struct

+ DeregisterCriticalServiceAfter time.Duration

+ DockerContainerID string

+ HTTP string

+ Header map[string][]string

+ ID types.CheckID

+ Interval time.Duration

+ Method string

+ Name string

+ Notes string

+ Script string

+ ServiceID string

+ Shell string

+ Status string

+ TCP string

+ TLSSkipVerify bool

+ TTL time.Duration

+ Timeout time.Duration

+ Token string

+ func (c *CheckDefinition) CheckType() *CheckType

+ func (c *CheckDefinition) HealthCheck(node string) *HealthCheck

+ type CheckServiceNode struct

+ Checks HealthChecks

+ Node *Node

+ Service *NodeService

+ type CheckServiceNodes []CheckServiceNode

+ func (nodes CheckServiceNodes) Filter(onlyPassing bool) CheckServiceNodes

+ func (nodes CheckServiceNodes) Shuffle()

+ type CheckType struct

+ CheckID types.CheckID

+ DeregisterCriticalServiceAfter time.Duration

+ DockerContainerID string

+ HTTP string

+ Header map[string][]string

+ Interval time.Duration

+ Method string

+ Name string

+ Notes string

+ Script string

+ Shell string

+ Status string

+ TCP string

+ TLSSkipVerify bool

+ TTL time.Duration

+ Timeout time.Duration

+ func (c *CheckType) IsDocker() bool

+ func (c *CheckType) IsHTTP() bool

+ func (c *CheckType) IsMonitor() bool

+ func (c *CheckType) IsScript() bool

+ func (c *CheckType) IsTCP() bool

+ func (c *CheckType) IsTTL() bool

+ func (c *CheckType) Valid() bool

+ type CheckTypes []*CheckType

+ type ChecksInStateRequest struct

+ Datacenter string

+ NodeMetaFilters map[string]string

+ Source QuerySource

+ State string

+ func (r *ChecksInStateRequest) RequestDatacenter() string

+ type CompoundResponse interface

+ Add func(interface{})

+ New func() interface{}

+ type Coordinate struct

+ Coord *coordinate.Coordinate

+ Node string

+ type CoordinateUpdateRequest struct

+ Coord *coordinate.Coordinate

+ Datacenter string

+ Node string

+ func (c *CoordinateUpdateRequest) RequestDatacenter() string

+ type Coordinates []*Coordinate

+ type DCSpecificRequest struct

+ Datacenter string

+ NodeMetaFilters map[string]string

+ Source QuerySource

+ func (r *DCSpecificRequest) RequestDatacenter() string

+ type DatacenterMap struct

+ AreaID types.AreaID

+ Coordinates Coordinates

+ Datacenter string

+ type DeregisterRequest struct

+ CheckID types.CheckID

+ Datacenter string

+ Node string

+ ServiceID string

+ func (r *DeregisterRequest) RequestDatacenter() string

+ type DirEntries []*DirEntry

+ type DirEntry struct

+ Flags uint64

+ Key string

+ LockIndex uint64

+ Session string

+ Value []byte

+ func (d *DirEntry) Clone() *DirEntry

+ type EventFireRequest struct

+ Datacenter string

+ Name string

+ Payload []byte

+ func (r *EventFireRequest) RequestDatacenter() string

+ type EventFireResponse struct

+ type HealthCheck struct

+ CheckID types.CheckID

+ Name string

+ Node string

+ Notes string

+ Output string

+ ServiceID string

+ ServiceName string

+ ServiceTags []string

+ Status string

+ func (c *HealthCheck) Clone() *HealthCheck

+ func (c *HealthCheck) IsSame(other *HealthCheck) bool

+ type HealthChecks []*HealthCheck

+ type IndexedACLs struct

+ ACLs ACLs

+ type IndexedCheckServiceNodes struct

+ Nodes CheckServiceNodes

+ type IndexedCoordinate struct

+ Coord *coordinate.Coordinate

+ type IndexedCoordinates struct

+ Coordinates Coordinates

+ type IndexedDirEntries struct

+ Entries DirEntries

+ type IndexedHealthChecks struct

+ HealthChecks HealthChecks

+ type IndexedKeyList struct

+ Keys []string

+ type IndexedNodeDump struct

+ Dump NodeDump

+ type IndexedNodeServices struct

+ NodeServices *NodeServices

+ type IndexedNodes struct

+ Nodes Nodes

+ type IndexedPreparedQueries struct

+ Queries PreparedQueries

+ type IndexedServiceNodes struct

+ ServiceNodes ServiceNodes

+ type IndexedServices struct

+ Services Services

+ type IndexedSessions struct

+ Sessions Sessions

+ type KVSRequest struct

+ Datacenter string

+ DirEnt DirEntry

+ Op api.KVOp

+ func (r *KVSRequest) RequestDatacenter() string

+ type KeyListRequest struct

+ Datacenter string

+ Prefix string

+ Seperator string

+ func (r *KeyListRequest) RequestDatacenter() string

+ type KeyRequest struct

+ Datacenter string

+ Key string

+ func (r *KeyRequest) RequestDatacenter() string

+ type KeyringOp string

+ type KeyringRequest struct

+ Datacenter string

+ Forwarded bool

+ Key string

+ Operation KeyringOp

+ RelayFactor uint8

+ func (r *KeyringRequest) RequestDatacenter() string

+ type KeyringResponse struct

+ Datacenter string

+ Error string

+ Keys map[string]int

+ Messages map[string]string

+ NumNodes int

+ WAN bool

+ type KeyringResponses struct

+ Responses []*KeyringResponse

+ func (r *KeyringResponses) Add(v interface{})

+ func (r *KeyringResponses) New() interface{}

+ type MessageType uint8

+ type Node struct

+ Address string

+ Datacenter string

+ ID types.NodeID

+ Meta map[string]string

+ Node string

+ TaggedAddresses map[string]string

+ type NodeDump []*NodeInfo

+ type NodeInfo struct

+ Address string

+ Checks HealthChecks

+ ID types.NodeID

+ Meta map[string]string

+ Node string

+ Services []*NodeService

+ TaggedAddresses map[string]string

+ type NodeService struct

+ Address string

+ EnableTagOverride bool

+ ID string

+ Port int

+ Service string

+ Tags []string

+ func (s *NodeService) IsSame(other *NodeService) bool

+ func (s *NodeService) ToServiceNode(node string) *ServiceNode

+ type NodeServices struct

+ Node *Node

+ Services map[string]*NodeService

+ type NodeSpecificRequest struct

+ Datacenter string

+ Node string

+ func (r *NodeSpecificRequest) RequestDatacenter() string

+ type Nodes []*Node

+ type OperatorHealthReply struct

+ FailureTolerance int

+ Healthy bool

+ Servers []ServerHealth

+ type PreparedQueries []*PreparedQuery

+ type PreparedQuery struct

+ DNS QueryDNSOptions

+ ID string

+ Name string

+ Service ServiceQuery

+ Session string

+ Template QueryTemplateOptions

+ Token string

+ func (pq *PreparedQuery) GetACLPrefix() (string, bool)

+ type PreparedQueryExecuteRemoteRequest struct

+ Datacenter string

+ Limit int

+ Query PreparedQuery

+ func (q *PreparedQueryExecuteRemoteRequest) RequestDatacenter() string

+ type PreparedQueryExecuteRequest struct

+ Agent QuerySource

+ Datacenter string

+ Limit int

+ QueryIDOrName string

+ Source QuerySource

+ func (q *PreparedQueryExecuteRequest) RequestDatacenter() string

+ type PreparedQueryExecuteResponse struct

+ DNS QueryDNSOptions

+ Datacenter string

+ Failovers int

+ Nodes CheckServiceNodes

+ Service string

+ type PreparedQueryExplainResponse struct

+ Query PreparedQuery

+ type PreparedQueryOp string

+ const PreparedQueryCreate

+ const PreparedQueryDelete

+ const PreparedQueryUpdate

+ type PreparedQueryRequest struct

+ Datacenter string

+ Op PreparedQueryOp

+ Query *PreparedQuery

+ func (q *PreparedQueryRequest) RequestDatacenter() string

+ type PreparedQuerySpecificRequest struct

+ Datacenter string

+ QueryID string

+ func (q *PreparedQuerySpecificRequest) RequestDatacenter() string

+ type QueryDNSOptions struct

+ TTL string

+ type QueryDatacenterOptions struct

+ Datacenters []string

+ NearestN int

+ type QueryMeta struct

+ Index uint64

+ KnownLeader bool

+ LastContact time.Duration

+ type QueryOptions struct

+ AllowStale bool

+ MaxQueryTime time.Duration

+ MinQueryIndex uint64

+ RequireConsistent bool

+ Token string

+ func (q QueryOptions) ACLToken() string

+ func (q QueryOptions) AllowStaleRead() bool

+ func (q QueryOptions) IsRead() bool

+ type QuerySource struct

+ Datacenter string

+ Node string

+ type QueryTemplateOptions struct

+ Regexp string

+ RemoveEmptyTags bool

+ Type string

+ type RPCInfo interface

+ ACLToken func() string

+ AllowStaleRead func() bool

+ IsRead func() bool

+ RequestDatacenter func() string

+ type RaftConfigurationResponse struct

+ Index uint64

+ Servers []*RaftServer

+ type RaftIndex struct

+ CreateIndex uint64

+ ModifyIndex uint64

+ type RaftRemovePeerRequest struct

+ Address raft.ServerAddress

+ Datacenter string

+ ID raft.ServerID

+ func (op *RaftRemovePeerRequest) RequestDatacenter() string

+ type RaftServer struct

+ Address raft.ServerAddress

+ ID raft.ServerID

+ Leader bool

+ Node string

+ Voter bool

+ type RegisterRequest struct

+ Address string

+ Check *HealthCheck

+ Checks HealthChecks

+ Datacenter string

+ ID types.NodeID

+ Node string

+ NodeMeta map[string]string

+ Service *NodeService

+ SkipNodeUpdate bool

+ TaggedAddresses map[string]string

+ func (r *RegisterRequest) ChangesNode(node *Node) bool

+ func (r *RegisterRequest) RequestDatacenter() string

+ type ServerHealth struct

+ Address string

+ Healthy bool

+ ID string

+ LastContact time.Duration

+ LastIndex uint64

+ LastTerm uint64

+ Leader bool

+ Name string

+ SerfStatus serf.MemberStatus

+ StableSince time.Time

+ Version string

+ Voter bool

+ func (h *ServerHealth) IsHealthy(lastTerm uint64, leaderLastIndex uint64, autopilotConf *AutopilotConfig) bool

+ func (h *ServerHealth) IsStable(now time.Time, conf *AutopilotConfig) bool

+ type ServerStats struct

+ LastContact string

+ LastIndex uint64

+ LastTerm uint64

+ type ServiceDefinition struct

+ Address string

+ Check CheckType

+ Checks CheckTypes

+ EnableTagOverride bool

+ ID string

+ Name string

+ Port int

+ Tags []string

+ Token string

+ func (s *ServiceDefinition) CheckTypes() (checks CheckTypes)

+ func (s *ServiceDefinition) NodeService() *NodeService

+ type ServiceNode struct

+ Address string

+ Datacenter string

+ ID types.NodeID

+ Node string

+ NodeMeta map[string]string

+ ServiceAddress string

+ ServiceEnableTagOverride bool

+ ServiceID string

+ ServiceName string

+ ServicePort int

+ ServiceTags []string

+ TaggedAddresses map[string]string

+ func (s *ServiceNode) PartialClone() *ServiceNode

+ func (s *ServiceNode) ToNodeService() *NodeService

+ type ServiceNodes []*ServiceNode

+ type ServiceQuery struct

+ Failover QueryDatacenterOptions

+ Near string

+ NodeMeta map[string]string

+ OnlyPassing bool

+ Service string

+ Tags []string

+ type ServiceSpecificRequest struct

+ Datacenter string

+ NodeMetaFilters map[string]string

+ ServiceName string

+ ServiceTag string

+ Source QuerySource

+ TagFilter bool

+ func (r *ServiceSpecificRequest) RequestDatacenter() string

+ type Services map[string][]string

+ type Session struct

+ Behavior SessionBehavior

+ Checks []types.CheckID

+ ID string

+ LockDelay time.Duration

+ Name string

+ Node string

+ TTL string

+ type SessionBehavior string

+ const SessionKeysDelete

+ const SessionKeysRelease

+ type SessionOp string

+ const SessionCreate

+ const SessionDestroy

+ type SessionRequest struct

+ Datacenter string

+ Op SessionOp

+ Session Session

+ func (r *SessionRequest) RequestDatacenter() string

+ type SessionSpecificRequest struct

+ Datacenter string

+ Session string

+ func (r *SessionSpecificRequest) RequestDatacenter() string

+ type Sessions []*Session

+ type SnapshotOp int

+ const SnapshotRestore

+ const SnapshotSave

+ type SnapshotReplyFn func(reply *SnapshotResponse) error

+ type SnapshotRequest struct

+ AllowStale bool

+ Datacenter string

+ Op SnapshotOp

+ Token string

+ type SnapshotResponse struct

+ Error string

+ type TombstoneOp string

+ const TombstoneReap

+ type TombstoneRequest struct

+ Datacenter string

+ Op TombstoneOp

+ ReapIndex uint64

+ func (r *TombstoneRequest) RequestDatacenter() string

+ type TxnError struct

+ OpIndex int

+ What string

+ func (e TxnError) Error() string

+ type TxnErrors []*TxnError

+ type TxnKVOp struct

+ DirEnt DirEntry

+ Verb api.KVOp

+ type TxnKVResult *DirEntry

+ type TxnOp struct

+ KV *TxnKVOp

+ type TxnOps []*TxnOp

+ type TxnReadRequest struct

+ Datacenter string

+ Ops TxnOps

+ func (r *TxnReadRequest) RequestDatacenter() string

+ type TxnReadResponse struct

+ type TxnRequest struct

+ Datacenter string

+ Ops TxnOps

+ func (r *TxnRequest) RequestDatacenter() string

+ type TxnResponse struct

+ Errors TxnErrors

+ Results TxnResults

+ type TxnResult struct

+ KV TxnKVResult

+ type TxnResults []*TxnResult

+ type WriteRequest struct

+ Token string

+ func (w WriteRequest) ACLToken() string

+ func (w WriteRequest) AllowStaleRead() bool

+ func (w WriteRequest) IsRead() bool