Skip to content

Upgrade Zen internals to v0.1.34#284

Merged
willem-delbare merged 1 commit intomainfrom
hansott-patch-1
Jan 3, 2025
Merged

Upgrade Zen internals to v0.1.34#284
willem-delbare merged 1 commit intomainfrom
hansott-patch-1

Conversation

@hansott
Copy link
Copy Markdown
Member

@hansott hansott commented Jan 3, 2025

No description provided.

@willem-delbare willem-delbare merged commit 2b1bc37 into main Jan 3, 2025
@willem-delbare willem-delbare deleted the hansott-patch-1 branch January 3, 2025 11:14
bitterpanda63 added a commit that referenced this pull request Apr 16, 2026
@bitterpanda63
Skip context creation for bypassed IPs
d610a4e 
Bypassed IPs now produce no request context and a thread-local
BypassedContextStore flag instead. This mirrors the firewall-java approach
(PR #284): every per-request blocking site already short-circuits on
"if not context: return", so geo blocking, IP blocklists, bot blocking,
route allowlists, blocked user IDs, rate limiting, attack detection, and
heartbeat stats all skip naturally — without scattering bypass checks
across each call site.

Context-less checks (outbound DNS reporting, stored SSRF) consult the
BypassedContextStore flag directly so they too become no-ops for traffic
from a bypassed IP.

Re-enables in the QA suite:
- test_bypassed_ip
- test_bypassed_ip_for_geo_blocking
- test_block_traffic_by_countries
- test_outbound_domain_blocking
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hansott @willem-delbare