personal_interest_mirrors/nebula
1
0
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-11-11 13:43:57 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
421 Commits 31 Branches 22 Tags
Commit Graph

421 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Wade Simmons
5cc43ea9cd Merge branch 'master' into mutex-debug 2023-08-21 12:42:36 -04:00
Nate Brown
5a131b2975
Combine ca, cert, and key handling (#952) 2023-08-14 21:32:40 -05:00
Nate Brown
223cc6e660
Limit how often a busy tunnel can requery the lighthouse (#940) 
Co-authored-by: Wade Simmons <wadey@slack-corp.com>
 2023-08-08 13:26:41 -05:00
Wade Simmons
5671c6607c
dependabot: group together common deps (#950) 
Group together deps that are often updated together.

- https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups
 2023-08-08 13:15:42 -04:00
dependabot[bot]
7ecafbe61d
Bump golang.org/x/net from 0.13.0 to 0.14.0 (#947) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.13.0 to 0.14.0.
- [Commits](https://github.com/golang/net/compare/v0.13.0...v0.14.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-08 10:04:46 -05:00
dependabot[bot]
546eb3bfbc
Bump golang.org/x/crypto from 0.11.0 to 0.12.0 (#949) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.11.0 to 0.12.0.
- [Commits](https://github.com/golang/crypto/compare/v0.11.0...v0.12.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-07 21:28:06 -05:00
dependabot[bot]
7364d99e34
Bump golang.org/x/term from 0.10.0 to 0.11.0 (#946) 
Bumps [golang.org/x/term](https://github.com/golang/term) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/term/compare/v0.10.0...v0.11.0)

---
updated-dependencies:
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-07 21:07:30 -05:00
dependabot[bot]
83b6dc7b16
Bump golang.org/x/net from 0.12.0 to 0.13.0 (#943) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/net/compare/v0.12.0...v0.13.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-02 14:28:32 -04:00
Wade Simmons
3d0da7c859
update mergo to 1.0.0 (#941) 
The mergo package has moved to a vanity URL. This causes fun issues with
dependabot. Update to the new release:

- https://github.com/darccio/mergo/releases/tag/v1.0.0
- https://github.com/darccio/mergo/compare/v0.3.15...v1.0.0
 2023-08-02 14:00:20 -04:00
Caleb Jasik
ed00f5d530
Remove unused config code (last edited 4yrs ago) (#938) 2023-07-31 15:59:20 -05:00
dependabot[bot]
38e56a4858
Bump golang.org/x/net from 0.9.0 to 0.12.0 (#931) 2023-07-27 15:43:16 -05:00
dependabot[bot]
fce93ccb54
Bump google.golang.org/protobuf from 1.30.0 to 1.31.0 (#930) 2023-07-27 15:42:33 -05:00
dependabot[bot]
0d715effbc
Bump Apple-Actions/import-codesign-certs from 1 to 2 (#923) 2023-07-27 15:31:36 -05:00
dependabot[bot]
0c003b64f1
Bump golang.org/x/term from 0.8.0 to 0.10.0 (#928) 2023-07-27 14:38:36 -05:00
Nate Brown
14d0106716
Send the lh update worker into its own routine instead of taking over the reload routine (#935) 2023-07-27 14:38:10 -05:00
dependabot[bot]
959b015b3b
Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 (#933) 2023-07-27 14:36:36 -05:00
Nate Brown
0bffa76b5e
Build for openbsd (#812) 2023-07-27 14:27:35 -05:00
c0repwn3r
03e70210a5
Add support for NetBSD (#916) 2023-07-27 13:44:47 -05:00
Nate Brown
9c6592b159
Guard e2e udp and tun channels when closed (#934) 2023-07-26 12:52:14 -05:00
dependabot[bot]
e5af94e27a
Bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 (#927) 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.15.1 to 1.16.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.15.1...v1.16.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-07-24 13:56:09 -04:00
dependabot[bot]
96f51f78ea
Bump golang.org/x/sys from 0.8.0 to 0.10.0 (#926) 
Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.8.0 to 0.10.0.
- [Commits](https://github.com/golang/sys/compare/v0.8.0...v0.10.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-07-24 13:53:39 -04:00
Nate Brown
a10baeee92
Pull hostmap and pending hostmap apart, remove unused functions (#843) 2023-07-24 12:37:52 -05:00
dependabot[bot]
52c9e360e7
Bump github.com/miekg/dns from 1.1.54 to 1.1.55 (#925) 
Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.54 to 1.1.55.
- [Changelog](https://github.com/miekg/dns/blob/master/Makefile.release)
- [Commits](https://github.com/miekg/dns/compare/v1.1.54...v1.1.55)

---
updated-dependencies:
- dependency-name: github.com/miekg/dns
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-07-24 12:52:29 -04:00
dependabot[bot]
8caaff7109
Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 (#924) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.8.4.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.8.4)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-07-24 12:51:31 -04:00
Nate Brown
1e3c155896
Attempt to notify systemd of service readiness on linux (#929) 2023-07-24 11:30:18 -05:00
Wade Simmons
f5db03c834
add dependabot config (#922) 
This should give us PRs weekly with dependency updates, and also let us
manually check for updates when needed.

- https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
 2023-07-21 17:21:58 -04:00
Nate Brown
c5ce945852
Update README to include a link to go install docs (#919) 2023-07-20 21:30:38 -05:00
John Maguire
7e380bde7e
Document new DNS config options (#879) 2023-07-10 15:19:05 -04:00
Nate Brown
a3e59a38ef
Use registered io on Windows when possible (#905) 2023-07-10 12:43:48 -05:00
John Maguire
8ba5d64dbc
Add support for naming FreeBSD tun devices (#903) 2023-06-22 12:13:31 -04:00
Nate Brown
3bbf5f4e67
Use an interface for udp conns (#901) 2023-06-14 10:48:52 -05:00
Wade Simmons
928731acfe
fix up the release workflow (#891) 
actions/create-release is deprecated, just switch to using `gh` cli.
This is actually much easier anyways!
 2023-06-14 11:45:01 -04:00
Nate Brown
57eb80e9fb
v1.7.2 (#887) 
Update CHANGELOG for Nebula v1.7.2
v1.7.2 		2023-06-01 11:05:07 -04:00
brad-defined
96f4dcaab8
Fix reconfig freeze attempting to send to an unbuffered, unread channel (#886) 
* Fixes a reocnfig freeze where the reconfig attempts to send to an unbuffered channel with no readers.
Only create stop channel when a DNS goroutine is created, and only send when the channel exists.
Buffer to size 1 so that the stop message can be immediately sent even if the goroutine is busy doing DNS lookups.
 2023-05-31 16:05:46 -04:00
Wade Simmons
6d8c5f437c
GitHub actions update setup-go (#881) 
This does caching for us, so we can remove our manual caching of modules
 2023-05-23 13:24:33 -04:00
John Maguire
165b671e70
v1.7.1 (#878) 
Update CHANGELOG for Nebula v1.7.1
v1.7.1 		2023-05-18 15:39:24 -04:00
brad-defined
6be0bad68a
Fix static_host_map DNS lookup Linux issue - put v4 addr into v6 slice(#877) 2023-05-18 14:13:32 -04:00
Wade Simmons
7ae3cd25f8
v1.7.0 (#870) 
Update CHANGELOG for Nebula v1.7.0
v1.7.0 		2023-05-17 11:02:53 -04:00
Wade Simmons
9a7ed57a3f
Cache cert verification methods (#871) 
* cache cert verification

CheckSignature and Verify are expensive methods, and certificates are
static. Cache the results.

* use atomics

* make sure public key bytes match

* add VerifyWithCache and ResetCache

* cleanup

* use VerifyWithCache

* doc
 2023-05-17 10:14:26 -04:00
Wade Simmons
eb9f22a8fa
fix mismerge of P256 and encrypted private keys (#869) 
The private key length is checked in a switch statement below these
lines, these lines should have been removed.
 2023-05-09 14:05:55 -04:00
Wade Simmons
92c4245329 Merge remote-tracking branch 'origin/master' into mutex-debug 2023-05-09 12:01:44 -04:00
Nate Brown
54a8499c7b
Fix go vet (#868) 2023-05-09 11:01:30 -05:00
Wade Simmons
e5789770b1 keep track of what file/line the locks were grabbed on 2023-05-09 11:51:02 -04:00
Wade Simmons
a83f0ca470 Merge remote-tracking branch 'origin/master' into mutex-debug 2023-05-09 11:42:05 -04:00
Wade Simmons
90e9a8e42c use delete 2023-05-09 11:41:53 -04:00
Wade Simmons
419aaf2e36
issue templates: remove Report Security Vulnerability (#867) 
This is redundant as Github automatically adds a section for this near the top.
 2023-05-09 11:37:48 -04:00
Ilya Lukyanov
1701087035
Add destination CIDR checking (#507) 2023-05-09 10:37:23 -05:00
Nate Brown
a9cb2e06f4
Add ability to respect the system route table for unsafe route on linux (#839) 2023-05-09 10:36:55 -05:00
Wade Simmons
115b4b70b1
add SECURITY.md (#864) 
* add SECURITY.md

Fixes: #699

* add Security mention to New issue template

* cleanup
 2023-05-09 11:25:21 -04:00
Wade Simmons
0707caedb4
document P256 and BoringCrypto (#865) 
* document P256 and BoringCrypto

Some basic descriptions of P256 and BoringCrypto added to the bottom of
README.md so that their prupose is not a mystery.

* typo
 2023-05-09 11:24:52 -04:00