nebula

ResiLien/nebula

Fork 0

bbe0a032bb Fix windows unsafe_routes regression (#648) master Nate Brown 2022-03-09 13:23:29 -06:00
b5b9d33ee7 v1.5.2 (#612) Wade Simmons 2021-12-14 16:48:56 -05:00
e434ba6523 fix unsafe routes darwin (#610) Wade Simmons 2021-12-14 11:52:49 -05:00
068a93d1f4 fix makeRouteTree allowMTU (#611) Wade Simmons 2021-12-14 11:52:28 -05:00
15fdabc3ab v1.5.1 (#606) Nate Brown 2021-12-13 19:43:25 -06:00
1110756f0f Allow setup of a CA pool from bytes that contain expired certs (#599) forfuncsake 2021-12-10 14:24:56 +11:00
e31006d546 Be more clear about ipv4 in nebula-cert (#604) Nate Brown 2021-12-07 21:40:30 -06:00
949ec78653 don't set ConnectionState to nil (#590) Wade Simmons 2021-12-06 14:09:05 -05:00
127a116bfd update golang.org/x/crypto (#603) Wade Simmons 2021-12-06 14:07:05 -05:00
befce3f990 fix crash with -test (#602) Wade Simmons 2021-12-06 14:06:16 -05:00
f60ed2b36d overlay: fix tun.RouteFor getting *net.IP (#595) Wade Simmons 2021-12-06 09:35:31 -05:00
48c47f5841 Warn if no lighthouses were configured on a non lighthouse node (#587) Nate Brown 2021-11-30 10:31:33 -06:00
75306487c5 fix wintun package to have // +build comments (#598) Wade Simmons 2021-11-30 11:14:15 -05:00
78d0d46bae Remove WriteRaw, cidrTree -> routeTree to better describe its purpose, remove redundancy from field names (#582) Nate Brown 2021-11-12 12:47:09 -06:00
467e605d5e Push route handling into overlay, a few more nits fixed (#581) Nate Brown 2021-11-12 11:19:28 -06:00
2f1f0d602f Cleanup most of the remaining nits (#578) Nate Brown 2021-11-12 10:47:36 -06:00
e07524a654 Move all of tun into overlay (#577) Nate Brown 2021-11-11 16:37:29 -06:00
88ce0edf76 Start the overlay package with the old Inside interface (#576) Nate Brown 2021-11-10 21:52:26 -06:00
4453964e34 Move util to test, contextual errors to util (#575) Nate Brown 2021-11-10 21:47:38 -06:00
19a9a4221e v1.5.0 (#574) Wade Simmons 2021-11-10 22:32:26 -05:00
1915fab619 tun_darwin (#163) Chad Harp 2021-11-09 19:24:24 -06:00
7801b589b6 Sign and notarize darwin universal binaries (#571) Nate Brown 2021-11-09 10:49:54 -06:00
b6391292d1 Move wintun distributable into release zip for windows (#572) Nate Brown 2021-11-08 21:55:10 -06:00
999efdb2e8 docs: improve grammar and readability for README.md (#225) Terry Wang 2021-11-09 10:32:31 +11:00
304b12f63f create ConnectionState before adding to HostMap (#535) Wade Simmons 2021-11-08 14:46:22 -05:00
16be0ce566 Add Wintun support (#289) CzBiX 2021-11-09 02:36:31 +08:00
0577c097fb Fix flaky test (#567) John Maguire 2021-11-04 15:49:56 -04:00
eb66e13dc4 Use CGO_ENABLED=0 (#421) Jake Howard 2021-11-04 18:20:44 +00:00
a22c134bf5 Update dependencies, November 2021 (#564) Wade Simmons 2021-11-04 10:25:13 -04:00
94aaab042f Fix race between punchback and lighthouse handler reset (#566) Nate Brown 2021-11-03 21:54:27 -05:00
b358bbab80 Add an ability to specify metric for unsafe routes (#474) Donatas Abraitis 2021-11-04 04:53:28 +02:00
bcabcfdaca Rework some things into packages (#489) Nate Brown 2021-11-03 20:54:04 -05:00
1f75fb3c73 Add link to further documentation (#563) Nate Brown 2021-11-02 20:55:34 -05:00
6ae8ba26f7 Add a context object in nebula.Main to clean up on error (#550) brad-defined 2021-11-02 14:14:26 -04:00
32cd9a93f1 Bump to go1.17 (#553) Nate Brown 2021-10-21 16:24:11 -05:00
97afe2ec48 Update changelog for #370 (#551) Nate Brown 2021-10-20 14:36:56 -05:00
32e2619323 Teardown tunnel automatically if peer's certificate expired (#370) Donatas Abraitis 2021-10-20 21:23:33 +03:00
e8b08e49e6 update CHANGELOG for 532, 540 and 541 (#549) Wade Simmons 2021-10-19 11:07:31 -04:00
ea2c186a77 remote_allow_ranges: allow inside CIDR specific remote_allow_lists (#540) Wade Simmons 2021-10-19 10:54:30 -04:00
ae5505bc74 handshake: update to preferred remote (#532) Wade Simmons 2021-10-19 10:53:55 -04:00
afda79feac documented "preferred_ranges" (#541) Wade Simmons 2021-10-19 10:53:36 -04:00
0e7bc290f8 Fix build on riscv64 (#542) rvalue 2021-10-13 22:55:32 +08:00
3a8f533b24 refactor: use X25519 instead of ScalarBaseMult (#533) Manuel Romei 2021-10-12 18:03:43 +02:00
34d002d695 Check CA cert and key match in nebula-cert sign (#503) John Maguire 2021-10-01 12:43:33 -04:00
9f34c5e2ba Typo Fix (#523) Ben Yanke 2021-09-16 00:12:08 -05:00
3f5caf67ff Add info about Distribution Packages. (#414) Joe Doss 2021-09-15 17:57:35 -05:00
e01213cd21 Update README.md (#378) Stan Grishin 2021-09-15 16:50:01 -06:00
af3674ac7b add peer cert issuer to handshake log entries (#510) Jack Adamson 2021-08-31 11:57:38 +10:00
c726d20578 Fix single command ssh exec (#483) Nate Brown 2021-06-07 17:06:59 -05:00
d13f4b5948 fixed recv_errors spoofing condition (#482) Andrii Chubatiuk 2021-06-03 20:04:04 +03:00
2e1d6743be v1.4.0 (#458) Nate Brown 2021-05-10 20:23:49 -05:00
d004fae4f9 Unlock the hostmap quickly, lock hostinfo instead (#459) Nate Brown 2021-05-05 13:10:55 -05:00
95f4c8a01b Don't check for rebind if we are closing the tunnel (#457) Nate Brown 2021-05-04 19:15:24 -05:00
9ff73cb02f Increase the timestamp resolution for handshakes (#453) Nate Brown 2021-05-03 14:10:00 -05:00
98c391396c Remove log when no handshake message is sent (#452) John Maguire 2021-04-30 19:19:40 -04:00
1bc6f5fe6c Minor windows focused improvements (#443) Nate Brown 2021-04-30 15:04:47 -05:00
44cb697552 Add more metrics (#450) Wade Simmons 2021-04-27 22:23:18 -04:00
db23fdf9bc Dont apply race avoidance to existing handshakes, use the handshake time to determine who wins (#451) Nathan Brown 2021-04-27 21:15:34 -05:00
df7c7eec4a Get out faster on nil udpAddr (#449) Nathan Brown 2021-04-26 20:21:47 -05:00
6f37280e8e Fully close tunnels when CloseAllTunnels is called (#448) Nathan Brown 2021-04-26 10:42:24 -05:00
a0735dd7d5 Add locking around ssh conns to avoid concurrent map access on reload (#447) Nathan Brown 2021-04-23 14:43:16 -05:00
1deb5d98e8 Fix tun funcs for ios and android (#446) Nathan Brown 2021-04-22 15:23:40 -05:00
a1ee521d79 Fix a failed return in an error case (#445) Nathan Brown 2021-04-17 18:47:31 -05:00
7859140711 Only set serveDns if the host is also configured to be a lighthouse. (#433) brad-defined 2021-04-16 14:33:56 -04:00
17106f83a0 Ensure the Nebula device exists before attempting to bind to the Nebula IP (#375) brad-defined 2021-04-16 11:34:28 -04:00
ab08be1e3e Don't panic on a nil response from the lighthouse (#442) Nathan Brown 2021-04-15 09:12:21 -05:00
710df6a876 Refactor remotes and handshaking to give every address a fair shot (#437) Nathan Brown 2021-04-14 13:50:09 -05:00
20bef975cd Remove obsolete systemd unit settings (take 2) (#438) John Maguire 2021-04-07 13:02:40 -04:00
480036fbc8 Remove unused structs in hostmap.go (#430) Nathan Brown 2021-04-01 22:07:11 -05:00
1499be3e40 Fix name resolution for host names in config (#431) Nathan Brown 2021-04-01 21:48:41 -05:00
64d8e5aa96 More LH cleanup (#429) Nathan Brown 2021-04-01 10:23:31 -05:00
75f7bda0a4 Lighthouse performance pass (#418) Nathan Brown 2021-03-31 17:32:02 -05:00
e7e55618ff Include bad backets in the good handshake test (#428) Nathan Brown 2021-03-31 13:36:10 -05:00
0c2e5973e1 Simple lie test (#427) Nathan Brown 2021-03-31 10:26:35 -05:00
830d6d4639 Start of end to end testing with a good handshake between two nodes (#425) Nathan Brown 2021-03-29 14:29:20 -05:00
883e09a392 Don't use a global ca pool (#426) Nathan Brown 2021-03-29 12:10:19 -05:00
4603b5b2dd fix PromoteEvery check (#424) Wade Simmons 2021-03-26 15:01:05 -04:00
a71541fb0b export build version as a prometheus label (#405) Wade Simmons 2021-03-26 14:16:35 -04:00
3ea7e1b75f Don't use a global logger (#423) Nathan Brown 2021-03-26 09:46:30 -05:00
7a9f9dbded Don't craft buffers if we don't need them (#416) Nathan Brown 2021-03-22 18:25:06 -05:00
7073d204a8 IPv6 support for outside (udp) (#369) Nathan Brown 2021-03-18 20:37:24 -05:00
9e94442ce7 Add fedora dist files. (#413) Joe Doss 2021-03-18 14:33:43 -05:00
13471f5792 Remove obsolete systemd unit settings. (#412) Joe Doss 2021-03-18 14:29:36 -05:00
ea07a89cc8 Ensure mutex is unlocked when adding remote IP. (#406) Thomas Roten 2021-03-16 12:41:35 -04:00
3aaaea6309 don't allow a useless handshake with yourself (#402) Ryan Huber 2021-03-15 12:58:23 -07:00
5506da3de9 Fix selection of UDP remote to use during stage2 (#404) Wade Simmons 2021-03-12 21:43:24 -05:00
6c55d67f18 Refactor handshake_ix (#401) Wade Simmons 2021-03-12 14:16:25 -05:00
64d8035d09 fix race in getOrHandshake (#400) Wade Simmons 2021-03-09 09:27:02 -05:00
73a5ed90b2 Do not allow someone to run a nebula lighthouse with an ephemeral port (#399) Ryan Huber 2021-03-08 12:42:06 -08:00
d604270966 Fix most known data races (#396) Wade Simmons 2021-03-05 21:18:33 -05:00
29c5f31f90 Add a check in the makefile to ensure a minimum version of go is installed (#383) Nathan Brown 2021-03-02 13:29:05 -06:00
b6234abfb3 Add a way to trigger punch backs via lighthouse (#394) Nathan Brown 2021-03-01 19:06:01 -06:00
2a4beb41b9 Routine-local conntrack cache (#391) Wade Simmons 2021-03-01 19:52:17 -05:00
d232ccbfab add metrics for the udp sockets using SO_MEMINFO (#390) Wade Simmons 2021-03-01 19:51:33 -05:00
ecfb40f29c Fix osx for mq changes, this does not implement mq on osx (#395) Nathan Brown 2021-03-01 15:57:05 -06:00
1bae5b2550 more validation in pending hostmap deletes (#344) Wade Simmons 2021-03-01 12:40:46 -05:00
73081d99bc add make smoke-docker (#287) Wade Simmons 2021-03-01 11:15:15 -05:00
e7e6a23cde fix a few typos (#302) Tim Rots 2021-03-01 17:14:34 +01:00
a0583ebdca tun_disabled: reply to ICMP Echo Request (#342) Wade Simmons 2021-03-01 11:09:41 -05:00
27d9a67dda Proper multiqueue support for tun devices (#382) Wade Simmons 2021-02-25 15:01:14 -05:00

Commit Graph Select branches Hide Pull Requests master Mono Color

Commit Graph

Select branches

Hide Pull Requests

master