Security review remediation by kcosr · Pull Request #56 · kcosr/acl-proxy

kcosr · 2026-06-12T19:36:53Z

Summary

harden URL canonicalization, config validation, capture/logging, external auth, certificate generation, and proxy resource handling
document encoded path separator behavior and remaining upstream-normalization risk
add regression coverage for forged external-auth callback request IDs

Validation

cargo fmt
cargo clippy
cargo test
cargo build --release

Kevin added 30 commits June 10, 2026 04:25

Harden persisted file permissions

f43f3b3

Canonicalize proxy request URLs

cd7b7d7

Reject unknown config fields

6307ca7

Use random external auth request IDs

2aa3350

Redact sensitive capture and log fields

e0125eb

Bound transparent HTTPS listener resources

3e28e1b

Make dynamic cert persistence opt-in

60e604e

Bound auth plugin worker I/O

f4e3b49

Validate listener and auth config

9c5ae27

Strip proxy hop headers when forwarding

7b93cc1

Cache cert material for TLS handshakes

d9ba148

Reject capture filename paths

3103ada

Bound capture file retention

cf9fbf1

Preserve external auth state on reload

632f6c7

Bound external auth webhook delivery

59ed562

Mask env header values in policy dump

4990370

Avoid orphaning approval macro values

a3d7092

Record capture content encoding

cae7fd4

Document transparent HTTPS SNI authority

7290d4d

Fail startup on logging init errors

bf11789

Recover from log rotation archive errors

bede4d3

Move capture writes off runtime workers

c411896

Move config reload off runtime workers

5582e08

Bound CONNECT certificate generation

2191d8b

Fix canonical URL policy edge cases

b6ce1dd

Refresh status webhook worker on reload

dea240f

Preserve active log on rotation archive failure

9dd31e7

Enable HTTP2 keepalive on transparent HTTPS

8e90d41

Redact egress connection debug URL

8894c6b

Allow CA certificate bundles

8cd8dcc

Kevin added 5 commits June 10, 2026 14:22

Clean approval macros when waiter is gone

3f06f87

Reject encoded path separators

59ab3a3

Preserve encoded path separator compatibility

50ea0c0

Document external auth callback hardening

75acc40

Clarify encoded slash upstream guidance

5b23f8f

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security review remediation#56

Security review remediation#56
kcosr wants to merge 35 commits into
mainfrom
security-review-remediation

kcosr commented Jun 12, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

kcosr commented Jun 12, 2026

Summary

Validation

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant