headers: consistent validation

[alyssawilk]

Risk Level: low
Testing: existing tests
Docs Changes: n/a
Release Notes: inline
[Optional Runtime guard:] yes

[repokitteh-read-only]

As a reminder, PRs marked as draft will not be automatically assigned reviewers,
or be handled by maintainer-oncall triage.

Please mark your PR as ready when you want it to be reviewed!

🐱

Caused by: #34205 was opened by alyssawilk.

see: more, trace.

[repokitteh-read-only]

CC @envoyproxy/runtime-guard-changes: FYI only for changes made to (source/common/runtime/runtime_features.cc).

🐱

Caused by: #34205 was opened by alyssawilk.

see: more, trace.

[tyxia]

Thanks for improving code health!

Some drive-by comments

[tyxia]

The intention here is checking the header key/name . So I think we should use utility headerNameIsValid instead?

[alyssawilk]

yeah good catch - I'd been going off the bug which I think referenced the wrong helper. looks like same thing with the formatter.

[tyxia]

Yeah, tracking the code into here , we can see formatter is also using header key/name

[tyxia]

We probably should test a invalid header key/name in particular.

[alyssawilk]

so this does exercise the test code. did you just prefer an invalid string that looks like a key? PTAL

[tyxia]

Yeah, i was preferring a invalid string that looks like a key. Thanks for updates.

[tyxia]

Thanks!

Defer to @yanavlasov for final review and merge.

[yanavlasov]

LGTM with a spelling fix

[yanavlasov]

Suggested change

	Changing header validation checks in the substitution format utility and CEL code to do RCF complaint header validation.
	Changing header validation checks in the substitution format utility and CEL code to do RFC complaint header validation.

[yanavlasov]

Needs fixing merge conflict.

/wait

[alyssawilk]

/retest

[alyssawilk]

/wait on CI

[alyssawilk]

/wait on CI

[alyssawilk]

/wait on CI and debug cleanup