Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backport of Fix hostname alignment checks for HTTPRoutes into release/1.15.x #16315

Merged
merged 1 commit into from
Feb 17, 2023
Merged

Backport of Fix hostname alignment checks for HTTPRoutes into release/1.15.x #16315

merged 1 commit into from
Feb 17, 2023

Conversation

andrewstucki
Copy link
Contributor

Backport

This PR is a manual backport from #16300

The below text is copied from the body of the original PR.

Description

This adds a missing hostname check between listeners and HTTPRoutes. Without it we do no verification of the alignment between route and Listener hostnames and the listener hostnames are essentially unused. In the upstream spec, only http routes that have hostnames matching the listener hostname (or no hostnames specified) can be bound to a listener. We accomplish this by filtering out routes (both in the xDS code and in our controller) based on the listener hostname and then checking to see if there are any valid hosts to bind to.

It's a stacked PR on top of the inline certs PR (#16295), so that should get merged first.

PR Checklist

  • updated test coverage
  • external facing docs updated
  • not a security concern

@andrewstucki andrewstucki enabled auto-merge (squash) February 17, 2023 20:14
@andrewstucki andrewstucki added the pr/no-changelog PR does not need a corresponding .changelog entry label Feb 17, 2023
@andrewstucki andrewstucki mentioned this pull request Feb 17, 2023
Closed
3 tasks
sarahalsmiller
sarahalsmiller approved these changes Feb 17, 2023
View reviewed changes
Copy link
Member

@sarahalsmiller sarahalsmiller left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't see anything suspect.

@andrewstucki andrewstucki merged commit e4e7c69 into release/1.15.x Feb 17, 2023
@andrewstucki andrewstucki deleted the manual-backport-api-gateway-hostname-fixes branch February 17, 2023 20:47
@jjti jjti mentioned this pull request Aug 28, 2023
Closed
@dlaguerta dlaguerta mentioned this pull request Dec 1, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@missylbytes missylbytes missylbytes approved these changes

@sarahalsmiller sarahalsmiller sarahalsmiller approved these changes

Assignees
No one assigned
Labels
pr/no-changelog PR does not need a corresponding .changelog entry
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@andrewstucki @missylbytes @sarahalsmiller