* Report StopIteration if connection is closed (#2270)
* Report StopIteration if connection is closed
* Change ENVOY_LOG to ENVOY_CONN_LOG
* Fix lint (#2279)
* Add the support of bypassing JWT authn for CORS requests (#2139)
* Add the support of bypassing JWT authn for CORS requests
* Bail out earlier for CORS preflight requests
* Use OPTIONS constant value from Envoy
* Remove changing to lowercase
* Add more checks for CORS preflight requests (#2140)
* Deflake macos MixerFaultTest by broadening assertion ranges.
Fix flake in macos tests that was introduced by #2113
* Cleanup a few readability issues and add an assertion.
* More redability changes.
* Add configurable retry to policy/quota checks that failed due to transport error.
* Added assertions on mixer filter stats to mixer fault test.
* Reformat
* Fix inaccurate comment.
`
* Fix asan warning (thanks @silentdai!) and exclude mixer_fault_test from
the asan and tsan sanitizers since it always times out.
* Fix bad prefix check
* Coalesce all memory for policy check requests and telemetry reports into shared pointers that live as long as a request's mixer filter instance.
* A few small fixups for the code review.
* Added finer-grained counters to mixer policy check
* Coalesce all memory for policy check requests and telemetry reports into shared pointers that live as long as a request's mixer filter instance.
* A few small fixups for the code review.
* Address some minor nits from code review.
* Added simple logging abstraction so mixer client logs can be relayed to envoy logs when running inside envoy, stderr when running standalone.
* Log threshold guards that prevent needless serialization of logging arguments are now embedded in the log macros.
* Format
* Added do/while guards around logging statements.
* Warn user of using mTLS PERMISSIVE mode and suggest to upgrade to STRICT mode.
Signed-off-by: Yangmin Zhu <ymzhu@google.com>
* fix format
* check in constructor
This is a load generator client + origin server I created to test the Mixer filter under various fault conditions using Envoy's client and server stacks. This work falls under [istio/istio#8224](https://github.com/istio/istio/issues/8224)
@PiotrSikora @jplevyak would love your feedback because it could be used for the wasm work and especially because this is the first >=C++11 code I've written
See test/integration/int_client_server_test.cc if you want to start with an example for context.
Another example that uses this framework to sandwich Envoy+Mixer filter between the load generator and multiple origin servers simulating Mixer servers can be found in [istio/istio#8224](https://github.com/istio/istio/issues/8224)
* Update Envoy SHA to latest with deterministic hash (release-1.1).
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
* review: use lld linker for clang-asan and clang-tsan.
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
* review: export PATH.
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
* WIP
* add local and override tests
* revert attributes_builder
* white list forward attributes
* add tests with whitelist
* fix builder test for white listed attributes
* Upgrade Envoy to b3be5713f
This updates Envoy SHA to b3be5713f2100ab5c40316e73ce34581245bd26a.
Signed-off-by: Venil Noronha <veniln@vmware.com>
* Update tls_utility paths
This updates the tls_utility library and include paths.
Signed-off-by: Venil Noronha <veniln@vmware.com>
* Fix http mixer filter
This adds the encodeMetadata implementation to the http mixer filter to
fix a build issue.
Signed-off-by: Venil Noronha <veniln@vmware.com>
* Fix sha256sum overwrite error
This removes the ln command from the CircleCI configuration to fix a
file overwrite error on macOS jobs.
Signed-off-by: Venil Noronha <veniln@vmware.com>
* use route directive regardless of rpc status
Signed-off-by: Kuat Yessenov <kuat@google.com>
* log response code
Signed-off-by: Kuat Yessenov <kuat@google.com>
* Update Envoy SHA to latest with protobuf.Any configs (release-1.1).
For istio/istio#10993.
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
* review: don't open /dev/stdout in tests.
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
* fix bug
* introduce ControlData
* fix format
* update
* fix format
* Revise
* Pass ControlDataSharedPtr into Control and hold ref
* pass JwtAuthenticationConstSharedPtr into JwtAuthStore to hold ref
* Revise
Yangmin Zhu