Affected by GO-2024-2428
and 5 other vulnerabilities
GO-2024-2428: Ingress-nginx code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation in k8s.io/ingress-nginx
GO-2025-3564: ingress-nginx controller - auth secret file path traversal vulnerability in k8s.io/ingress-nginx
GO-2025-3565: ngress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation in k8s.io/ingress-nginx
GO-2025-3566: ingress-nginx controller - configuration injection via unsanitized auth-url annotation in k8s.io/ingress-nginx
GO-2025-3567: ingress-nginx admission controller RCE escalation in k8s.io/ingress-nginx
GO-2025-3568: ingress-nginx controller - configuration injection via unsanitized mirror annotations in k8s.io/ingress-nginx
package
Version:
v1.0.0-alpha.1
Opens a new window with list of versions in this module.
Published: Jun 23, 2021
License: Apache-2.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
NewParser creates a new TLS authentication annotation parser
type Config struct {
resolver.AuthSSLCert
VerifyClient string `json:"verify_client"`
ValidationDepth int `json:"validationDepth"`
ErrorPage string `json:"errorPage"`
PassCertToUpstream bool `json:"passCertToUpstream"`
AuthTLSError string
}
Config contains the AuthSSLCert used for mutual authentication
and the configured ValidationDepth
Equal tests for equality between two Config types
Source Files
¶
Click to show internal directories.
Click to hide internal directories.