core: Don't leak CallCredentials into OOB channels (1.34.x backport) #7717

ejona86 · 2020-12-10T19:51:40Z

The addition of CompositeChannelCredentials allowed CallCredentials to
be passed to the ManagedChannel itself. But the implementation was buggy
and used the call creds for out-of-band channels as well, which is
inappropriate since they have a different authority.

This also fixes a bug where resolving OOB channels would have CallCreds
duplicated; that wasn't noticed or important because we don't use
CallCreds in OOB channels.

Fixes #7643

Backport of #7712

The addition of CompositeChannelCredentials allowed CallCredentials to be passed to the ManagedChannel itself. But the implementation was buggy and used the call creds for out-of-band channels as well, which is inappropriate since they have a different authority. This also fixes a bug where resolving OOB channels would have CallCreds duplicated; that wasn't noticed or important because we don't use CallCreds in OOB channels. Fixes grpc#7643

ejona86 assigned dapengzhang0 Dec 10, 2020

sanjaypujare approved these changes Dec 10, 2020

View reviewed changes

ejona86 merged commit ef28b27 into grpc:v1.34.x Dec 10, 2020

ejona86 deleted the backport-callcreds-dont-leak-to-oob-1.34 branch December 10, 2020 20:12

github-actions bot locked as resolved and limited conversation to collaborators Jun 3, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

core: Don't leak CallCredentials into OOB channels (1.34.x backport) #7717

core: Don't leak CallCredentials into OOB channels (1.34.x backport) #7717

ejona86 commented Dec 10, 2020

core: Don't leak CallCredentials into OOB channels (1.34.x backport) #7717

core: Don't leak CallCredentials into OOB channels (1.34.x backport) #7717

Conversation

ejona86 commented Dec 10, 2020