tests/

Versions in this module

v0

v0.4.9

Mar 31, 2015 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.8

Mar 23, 2015 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.7

Feb 10, 2015 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.6

Jul 29, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.5

Jul 8, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.4

Jun 24, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.3

Jun 8, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.2

Jun 2, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.1

May 21, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.4.0

May 21, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

Changes in this version

+ func Head(url string) (*http.Response, error)

v0.3.0

Feb 7, 2014 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.2.0

Dec 23, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

Changes in this version

+ func Delete(url string, bodyType string, body io.Reader) (*http.Response, error)

+ func DeleteForm(url string, data url.Values) (*http.Response, error)

+ func Get(url string) (*http.Response, error)

+ func NewHTTPClient() *http.Client

+ func Post(url string, bodyType string, body io.Reader) (*http.Response, error)

+ func PostForm(url string, data url.Values) (*http.Response, error)

+ func Put(url string, bodyType string, body io.Reader) (*http.Response, error)

+ func PutForm(url string, data url.Values) (*http.Response, error)

+ func ReadBody(resp *http.Response) []byte

+ func ReadBodyJSON(resp *http.Response) map[string]interface

+ func RunServer(f func(*server.Server))

v0.2.0-rc4

Dec 23, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.2.0-rc3

Dec 16, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.2.0-rc2

Dec 6, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.2.0-rc1

Nov 14, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.

v0.2.0-rc0

Oct 17, 2013 GO-2020-0005GO-2021-0077

GO-2020-0005: Malformed WALs can be constructed such that WAL.ReadAll can cause attempted out of bounds reads, or creation of arbitrarily sized slices, which may be used as a DoS vector.

GO-2021-0077: A user can use a valid client certificate that contains a CommonName that matches a valid RBAC username to authenticate themselves as that user, despite lacking the required credentials. This may allow authentication bypass, but requires a certificate that is issued by a CA trusted by the server.