mirrors/nebula
1
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-12-05 18:20:48 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

Commit graph

  • 22160c0b89 Pem->PEM JackDoan 2025-10-02 10:16:50 -05:00
  • 888ba400b9 good idea JackDoan 2025-10-02 09:41:50 -05:00
  • dc3081ea49 nit JackDoan 2025-10-02 09:31:42 -05:00
  • 68bbb53b90 fix comment JackDoan 2025-09-11 10:11:05 -05:00
  • 41273a94bb even spicier change to rehandshake if we detect our cert is lower-version than our peer, and we have a newer-version cert available JackDoan 2025-09-10 13:32:41 -05:00
  • 0946831f88 very spicy change to respond to handshakes with cert versions we cannot match with a cert that we can indeed match JackDoan 2025-09-10 12:47:39 -05:00
  • d2d3e21780 squish bug from cert removals JackDoan 2025-09-10 12:29:01 -05:00
  • 241b0a6d7f don't wait forever JackDoan 2025-09-10 11:47:45 -05:00
  • 0721dde24b working e2e test?! JackDoan 2025-09-10 10:57:04 -05:00
  • a6640b4540 try to make certificate addition/removal reloadable in some cases JackDoan 2025-09-08 14:29:07 -05:00
  • 071589f7c7
         Bump actions/setup-go from 5 to 6 (#1469) dependabot[bot] 2025-10-02 00:05:12 -05:00
  • 5c788629ad Hardcode the last one to go v1.25 Nate Brown 2025-10-01 23:49:56 -05:00
  • e9c8bf31e2
         Bump actions/setup-go from 5 to 6 dependabot[bot] 2025-10-02 04:33:38 +00:00
  • f1e992f6dd
         don't require a detailsVpnAddr in a HostUpdateNotification (#1472) Jack Doan 2025-09-29 13:43:12 -05:00
  • 984bb9c1f1 feedback JackDoan 2025-09-29 13:28:48 -05:00
  • ea96d87533
         Bump github.com/gaissmai/bart from 0.20.4 to 0.25.0 dependabot[bot] 2025-09-29 18:03:37 +00:00
  • 1ea5f776d7
         update to go 1.25, use the cool new ECDSA key marshalling functions (#1483) Jack Doan 2025-09-29 13:02:25 -05:00
  • 47c8a9f047 bump golangci-lint JackDoan 2025-09-29 12:43:03 -05:00
  • a40a7b3869 actually bump go.mod JackDoan 2025-09-29 12:37:59 -05:00
  • 74a51e6f85 bonk the runners JackDoan 2025-09-25 13:45:28 -05:00
  • 7fa2a714ee update to go 1.25, use the cool new ECDSA key marshalling functions JackDoan 2025-09-25 13:42:19 -05:00
  • 4cdeb284ef
         Set CKA_VALUE_LEN attribute in DeriveNoise (#1482) Henry Graham 2025-09-25 13:24:52 -05:00
  • a5d59dbc71 tests JackDoan 2025-09-25 12:25:46 -05:00
  • 6798c3f7af helper functions to more correctly marshal curve 25519 public keys JackDoan 2025-09-25 12:12:21 -05:00
  • f8837928a9 ancient stuff out there still uses "NEBULA ECDSA P256 PUBLIC KEY", and we need to unmarshal it JackDoan 2025-09-25 12:06:27 -05:00
  • 5cf05ef5c4 Set CKA_VALUE_LEN attribute in DeriveNoise Henry Graham 2025-09-25 11:45:34 -05:00
  • b7726b8a70 implemented warn on non-localhost IPs Henry Graham 2025-09-25 11:03:36 -05:00
  • c338f52ec9 Merge remote-tracking branch 'origin/master' into holepunch-remote-allow-list Wade Simmons 2025-09-16 11:00:07 -04:00
  • 491e7e9faa switch to go.yaml.in/yaml Wade Simmons 2025-09-11 10:25:07 -04:00
  • 5cccd39465
         update RemoteList.vpnAddrs when we complete a handshake (#1467) Jack Doan 2025-09-10 09:44:25 -05:00
  • 8196c22b5a
         store lighthouses as a slice (#1473) Jack Doan 2025-09-10 09:43:25 -05:00
  • 9642afa149 use netlink events to emit lh updates instead of a timer update-lh-on-netlink-addr JackDoan 2025-09-09 13:11:49 -05:00
  • 65cc253c19
         prevent linux from assigning ipv6 link-local addresses (#1476) Jack Doan 2025-09-09 13:25:23 -05:00
  • 4f8885d67c warn JackDoan 2025-09-09 13:12:15 -05:00
  • 3f18ea352e uhp it was built-in JackDoan 2025-09-09 12:46:34 -05:00
  • 1adb5e4e1e prevent linux from assigning ipv6 link-local addresses JackDoan 2025-09-09 12:35:32 -05:00
  • f034caa265 feedback JackDoan 2025-09-09 11:34:55 -05:00
  • dcf9d1c4c6 don't send our own addr on HostUpdateNotification for v2 JackDoan 2025-09-09 10:29:19 -05:00
  • e3cfa64606 yeet JackDoan 2025-09-08 15:48:10 -05:00
  • 20a23c5b31 store lighthouses as a slice. If you have fewer than 16 lighthouses (and fewer than 16 vpnaddrs on a host, I guess), it's faster JackDoan 2025-09-08 15:39:13 -05:00
  • d3444f4593 don't require a detailsVpnAddr in a HostUpdateNotification JackDoan 2025-09-08 15:15:46 -05:00
  • 6b753403ce
         Bump github.com/prometheus/client_golang from 1.22.0 to 1.23.2 dependabot[bot] 2025-09-08 19:31:45 +00:00
  • 73cfa7b5b1
         add firewall tests for ipv6 (#1451) Wade Simmons 2025-09-08 13:57:36 -04:00
  • 0c3c0c953a feedback JackDoan 2025-09-08 12:19:15 -05:00
  • d737ef2682 address TODO JackDoan 2025-09-05 17:04:10 -05:00
  • d50c20c403 update RemoteList when we complete a handshake JackDoan 2025-09-05 10:33:32 -05:00
  • 768325c9b4
         cert-v2 chores (#1466) Jack Doan 2025-09-05 15:08:22 -05:00
  • ef2f14ac80 grr loop bad JackDoan 2025-09-05 12:19:00 -05:00
  • 6672324dde cert-v2 chores JackDoan 2025-09-04 15:34:27 -05:00
  • 22af56f156
         Fix recv_error receipt limit allowance for v1.9.x (#1459) Nate Brown 2025-09-04 15:52:32 -05:00
  • 086325623c backport #1463 recv_error behavior changes JackDoan 2025-09-04 15:40:47 -05:00
  • 932e329164
         Don't delete static host mappings for non-primary IPs (#1464) Jack Doan 2025-09-04 14:49:40 -05:00
  • 203ed4550e yeet JackDoan 2025-09-04 14:35:57 -05:00
  • 0b127be1c2 yeet JackDoan 2025-09-04 14:26:31 -05:00
  • 47ca7521bc yeet JackDoan 2025-09-04 14:12:27 -05:00
  • ea52ff9647
         go run option Gabriel Meola 2025-09-04 12:02:30 -06:00
  • 2f8ffdc8b9
         docs: build from source with golang Gabriel Meola 2025-09-04 11:58:57 -06:00
  • eec0cd34f4 cleanup JackDoan 2025-09-04 10:48:07 -05:00
  • 7bad80521d remove unused arg from ConnectionManager.shouldSwapPrimary() JackDoan 2025-09-04 09:37:40 -05:00
  • 361bdf3a8f I LOVE LINT JackDoan 2025-09-04 09:33:21 -05:00
  • acd1657541 mmm tasty lint JackDoan 2025-09-04 09:21:24 -05:00
  • 8d68931caf working test! JackDoan 2025-09-03 12:17:59 -05:00
  • fc818c111a Don't delete a vpnaddr if it's part of a certificate that contains a vpnaddr that's in the static host map JackDoan 2025-09-03 09:30:13 -05:00
  • 4bea299265
         don't send recv errors for packets outside the connection window anymore (#1463) Jack Doan 2025-09-03 11:52:52 -05:00
  • 7622547e26 remove recv_error counter entirely JackDoan 2025-09-03 10:49:07 -05:00
  • fcbcfaff48 Pull in fix from #1459, add my opinion on maxRecvError JackDoan 2025-09-03 09:47:17 -05:00
  • 009753e870 don't send recv errors for packets outside the connection window anymore JackDoan 2025-09-02 14:02:04 -05:00
  • 871c2ca6db Fix recv_error receipt limit allowance Nate Brown 2025-08-27 11:00:53 -05:00
  • c4b4edec35 info socket Henry Graham 2025-08-26 12:05:03 -05:00
  • 5cff83b282
         netlink: ignore route updates with no destination (#1437) Wade Simmons 2025-08-25 14:05:35 -04:00
  • 1d73e463cd
         Quietly log error on UDP_NETRESET ioctl on Windows. (#1453) brad-defined 2025-08-19 17:33:31 -04:00
  • 64150865b5 dampen unexpected error warnings Brad Higgins 2025-08-19 16:54:55 -04:00
  • 4c2ba47ef2 Quietly log error on UDP_NETRESET ioctl on Windows. Brad Higgins 2025-08-19 11:08:31 -04:00
  • 529966fd83 add firewall tests for ipv6 Wade Simmons 2025-08-12 10:43:55 -04:00
  • 99cd812ac3
         Bump actions/checkout from 4 to 5 dependabot[bot] 2025-08-12 05:04:29 +00:00
  • a773b15621
         Bump actions/download-artifact from 4 to 5 dependabot[bot] 2025-08-12 04:49:51 +00:00
  • c4babfa627
         Bump github.com/gaissmai/bart from 0.20.4 to 0.24.0 dependabot[bot] 2025-08-12 04:17:32 +00:00
  • 61b6d423ae
         Bump github.com/prometheus/client_golang from 1.22.0 to 1.23.0 dependabot[bot] 2025-08-05 01:14:10 +00:00
  • 8668c2b316
         Bump github.com/gaissmai/bart from 0.20.4 to 0.23.1 dependabot[bot] 2025-08-05 00:42:37 +00:00
  • e5e449cb19 cleanup Wade Simmons 2025-08-04 15:48:14 -04:00
  • 32d5e6bc3f add more tests around bits counters Wade Simmons 2025-08-04 14:23:34 -04:00
  • 7da79685ff
         fix lighthouse.calculated_remotes parsing (#1438) Wade Simmons 2025-07-29 13:12:07 -04:00
  • 0a1d39b6c1 fix lighthouse.calculated_remotes parsing Wade Simmons 2025-07-29 11:52:45 -04:00
  • 0496ef101e Merge remote-tracking branch 'origin/master' into multiport Wade Simmons 2025-07-28 13:50:26 -04:00
  • b418a081a8 cleanup fips140 Wade Simmons 2025-07-25 14:57:49 -04:00
  • fd3fa57e79 comments Wade Simmons 2025-07-25 14:42:54 -04:00
  • 0eb92dcab4 WIP Wade Simmons 2025-07-25 14:32:37 -04:00
  • f6b206d96c cleanup Wade Simmons 2025-07-25 10:38:52 -04:00
  • cc2722424e netlink: ignore route updates with no destination Wade Simmons 2025-07-24 16:23:36 -04:00
  • 31cc3a4169 Merge remote-tracking branch 'origin/master' into fips140 Wade Simmons 2025-07-24 13:57:12 -04:00
  • 6da314aa6b WIP Wade Simmons 2025-07-24 13:56:42 -04:00
  • 3da3d41fb5 log if fips140 in use Wade Simmons 2025-07-24 12:37:33 -04:00
  • 105e0ec66c
         v1.9.6 (#1434) v1.9.6 brad-defined 2025-07-18 08:39:33 -04:00
  • c782811546
         Merge remote-tracking branch 'origin/master' into feature/try_with_gvisor_stack Ulrich Hornung 2025-07-18 00:27:10 +02:00
  • 99b7156b47
         fix leaking go-routine Ulrich Hornung 2025-07-17 22:30:42 +02:00
  • 56c3bb2d0c
         Update CHANGELOG.md brad-defined 2025-07-17 09:42:24 -04:00
  • 91eff03418
         Update slack OSS invite link (#1435) brad-defined 2025-07-15 16:05:28 -04:00
  • 496985777d Update slack OSS invite link Brad Higgins 2025-07-15 13:32:35 -04:00
  • 52ba25a8fc Update CHANGELOG for Nebula v1.9.6 Brad Higgins 2025-07-15 09:47:06 -04:00
  • d3d0a6fb3b
         Bump github.com/gaissmai/bart from 0.20.4 to 0.20.5 dependabot[bot] 2025-07-14 23:50:21 +00:00