nebula

mirror of https://github.com/slackhq/nebula.git synced 2026-05-16 04:47:38 +02:00

Author	SHA1	Message	Date
Nate Brown	b7e9939e92	More stable e2e test harness, better for benchmarking (#1702 ) Some checks failed gofmt / Run gofmt (push) Failing after 2s Details smoke-extra / Run extra smoke tests (push) Failing after 2s Details smoke / Run multi node smoke test (push) Failing after 3s Details Build and test / Build all and test on ubuntu-linux (push) Failing after 2s Details Build and test / Build and test on linux with boringcrypto (push) Failing after 2s Details Build and test / Build and test on linux with pkcs11 (push) Failing after 3s Details Build and test / Build and test on macos-latest (push) Has been cancelled Details Build and test / Build and test on windows-latest (push) Has been cancelled Details	2026-05-04 10:12:58 -05:00
Nate Brown	f141cebe8d	Run e2e tests in parallel, include a goroutine leak detector test (#1700 ) Some checks failed gofmt / Run gofmt (push) Failing after 41s Details smoke-extra / Run extra smoke tests (push) Failing after 3s Details smoke / Run multi node smoke test (push) Failing after 3s Details Build and test / Build all and test on ubuntu-linux (push) Failing after 3s Details Build and test / Build and test on linux with boringcrypto (push) Failing after 2s Details Build and test / Build and test on linux with pkcs11 (push) Failing after 3s Details Build and test / Build and test on macos-latest (push) Has been cancelled Details Build and test / Build and test on windows-latest (push) Has been cancelled Details	2026-04-30 21:30:56 -05:00
Jack Doan	91d1f4675a	properly handle closetunnel packets (#1638 )	2026-03-25 11:59:37 -05:00
Jack Doan	a89f95182c	Firewall types and cross-stack subnet stuff (#1509 ) * firewall can distinguish if the host connecting has an overlapping network, is a VPN peer without an overlapping network, or is a unsafe network * Cross stack subnet stuff (#1512) * experiment with not filtering out non-common addresses in hostinfo.networks * allow handshakes without overlaps * unsafe network test * change HostInfo.buildNetworks argument to reference the cert	2025-11-12 13:40:20 -06:00
Jack Doan	01909f4715	try to make certificate addition/removal reloadable in some cases (#1468 ) * try to make certificate addition/removal reloadable in some cases * very spicy change to respond to handshakes with cert versions we cannot match with a cert that we can indeed match * even spicier change to rehandshake if we detect our cert is lower-version than our peer, and we have a newer-version cert available * make tryRehandshake easier to understand	2025-11-03 19:38:44 -06:00
Nate Brown	52623820c2	Drop inactive tunnels (#1427 )	2025-07-03 09:58:37 -05:00

6 Commits