Bug 1660384 - Should return correct context when access api proxy(https
Summary: Should return correct context when access api proxy(https
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Master
Version: 4.1.0
Hardware: Unspecified
OS: Unspecified
low
low
Target Milestone: ---
: 4.1.0
Assignee: Stefan Schimanski
QA Contact: Xingxing Xia
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-12-18 09:11 UTC by scheng
Modified: 2019-06-12 09:22 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-06-12 09:22:24 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Comment 4 Stefan Schimanski 2019-06-12 09:22:24 UTC
This was a regression against upstream in former version due to different wiring. It also is considered to be a dangerous behaviour as people start implying trust when seeing the API server client cert, reminding of CVE-2018-1002105 https://github.com/kubernetes/kubernetes/issues/71411.


Note You need to log in before you can comment on or make changes to this bug.