6285e0d23e
[client] Add netbird.err and netbird.out to debug bundle ( #2971 )
2024-12-03 12:43:17 +01:00
a4826cfb5f
[client] Get static system info once ( #2965 )
...
Get static system info once for Windows, Darwin, and Linux nodes
This should improve startup and peer authentication times
2024-12-03 10:22:04 +01:00
a0bf0bdcc0
Pass IP instead of net to Rosenpass ( #2975 )
2024-12-03 10:13:27 +01:00
dffce78a8c
[client] Fix debug bundle state anonymization test ( #2976 )
2024-12-02 20:19:34 +01:00
c7e7ad5030
[client] Add state file to debug bundle ( #2969 )
2024-12-02 18:04:02 +01:00
5142dc52c1
[client] Persist route selection ( #2810 )
2024-12-02 17:55:02 +01:00
ecb44ff306
[client] Add pprof build tag ( #2964 )
...
* Add pprof build tag
* Change env handling
2024-12-01 19:22:52 +01:00
e4a5fb3e91
Unspecified address: default NetworkTypeUDP4+NetworkTypeUDP6 ( #2804 )
2024-11-30 10:34:52 +01:00
e52d352a48
Update Caddyfile and Docker Compose to support HTTP3 ( #2822 )
2024-11-30 10:26:31 +01:00
f9723c9266
[client] Account different policiy rules for routes firewall rules ( #2939 )
...
* Account different policies rules for routes firewall rules
This change ensures that route firewall rules will consider source group peers in the rules generation for access control policies.
This fixes the behavior where multiple policies with different levels of access was being applied to all peers in a distribution group
* split function
* avoid unnecessary allocation
Co-authored-by: Viktor Liu <17948409+lixmal@users.noreply.github.com >
---------
Co-authored-by: Viktor Liu <17948409+lixmal@users.noreply.github.com >
2024-11-29 17:50:35 +01:00
8efad1d170
Add guide when signing key is not found ( #2942 )
...
Some users face issues with their IdP due to signing key not being refreshed
With this change we advise users to configure key refresh
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
* removing leftover
---------
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2024-11-29 10:06:40 +01:00
a3663fb444
Merge branch 'main' into peers-get-account-refactoring
2024-11-29 10:15:10 +03:00
c6641be94b
[tests] Enable benchmark tests on github actions ( #2961 )
2024-11-28 19:22:01 +01:00
8c4613b456
Merge branch 'main' into peers-get-account-refactoring
2024-11-28 17:41:13 +03:00
89cf8a55e2
[management] Add performance test for login and sync calls ( #2960 )
2024-11-28 14:59:53 +01:00
d66140fc82
Fix merge
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 15:08:42 +03:00
dea6886394
Merge branch 'main' into peers-get-account-refactoring
...
# Conflicts:
# management/server/peer.go
2024-11-28 15:07:52 +03:00
1ba6eb62a6
Retrieve all groups for peers and restrict groups for regular users
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 15:01:44 +03:00
f87bc601c6
Add account locks and remove redundant ephemeral check
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 14:03:08 +03:00
00c3b67182
[management] refactor to use account object instead of separate db calls for peer update ( #2957 )
2024-11-28 11:13:01 +01:00
cde0e51c72
Refactor test names and remove duplicate TestPostgresql_SavePeerStatus
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 12:30:38 +03:00
a22d5041e3
Add missing tests
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 12:21:15 +03:00
fde9f2ffda
Add store locks and prevent fetching setup keys peers when retrieving user peers with empty userID
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-28 12:18:02 +03:00
21561a2b07
Merge branch 'main' into peers-get-account-refactoring
...
# Conflicts:
# management/server/sql_store_test.go
2024-11-27 13:20:14 +03:00
b2139875d9
Merge branch 'nameserver-get-account-refactoring' into peers-get-account-refactoring
...
# Conflicts:
# management/server/account.go
# management/server/http/peers_handler.go
# management/server/peer.go
2024-11-27 13:18:17 +03:00
9203690033
[client] Code cleaning in net pkg and fix exit node feature on Android( #2932 )
...
Code cleaning around the util/net package. The goal was to write a more understandable source code but modify nothing on the logic.
Protect the WireGuard UDP listeners with marks.
The implementation can support the VPN permission revocation events in thread safe way. It will be important if we start to support the running time route and DNS update features.
- uniformize the file name convention: [struct_name] _ [functions] _ [os].go
- code cleaning in net_linux.go
- move env variables to env.go file
2024-11-26 23:34:27 +01:00
9683da54b0
[management] Refactor nameserver groups to use store methods ( #2888 )
2024-11-26 17:39:04 +01:00
2e6bbaca96
Merge branch 'main' into nameserver-get-account-refactoring
...
# Conflicts:
# management/server/sql_store_test.go
# management/server/status/error.go
# management/server/testdata/extended-store.sql
2024-11-26 15:49:31 +03:00
0e48a772ff
[management] Refactor DNS settings to use store methods ( #2883 )
2024-11-26 13:43:05 +01:00
f118d81d32
[management] Refactor policy to use store methods ( #2878 )
2024-11-26 10:46:05 +01:00
72bfc9d07e
Merge branch 'dns-get-account-refactoring' into nameserver-get-account-refactoring
2024-11-25 19:20:53 +03:00
79822cdc15
Merge branch 'policy-get-account-refactoring' into dns-get-account-refactoring
2024-11-25 19:17:38 +03:00
bdb2a76eae
Merge branch 'main' into policy-get-account-refactoring
...
# Conflicts:
# management/server/policy.go
# management/server/posture_checks_test.go
# management/server/sql_store.go
# management/server/sql_store_test.go
# management/server/status/error.go
# management/server/store.go
# management/server/testdata/extended-store.sql
2024-11-25 19:03:55 +03:00
ca12bc6953
[management] Refactor posture check to use store methods ( #2874 )
2024-11-25 16:26:24 +01:00
9810386937
[client] Allow routing to fallback to exclusion routes if rules are not supported ( #2909 )
2024-11-25 15:19:56 +01:00
f1625b32bd
[client] Set up sysctl and routing table name only if routing rules are available ( #2933 )
2024-11-25 15:12:16 +01:00
0ecd5f2118
[client] Test nftables for incompatible iptables rules ( #2948 )
2024-11-25 15:11:56 +01:00
940d0c48c6
[client] Don't return error in userspace mode without firewall ( #2924 )
2024-11-25 15:11:31 +01:00
56cecf849e
Import time package ( #2940 )
2024-11-22 20:40:30 +01:00
05c4aa7c2c
[misc] Renew slack link ( #2938 )
2024-11-22 18:50:47 +01:00
2a5cb16494
[relay] Refactor initial Relay connection ( #2800 )
...
Can support firewalls with restricted WS rules
allow to run engine without Relay servers
keep up to date Relay address changes
2024-11-22 18:12:34 +01:00
9db1932664
[management] Fix getSetupKey call ( #2927 )
2024-11-22 10:15:51 +01:00
1bbabf70b0
[client] Fix allow netbird rule verdict ( #2925 )
...
* Fix allow netbird rule verdict
* Fix chain name
2024-11-21 16:53:37 +01:00
82746d93ee
Use UTC time in test
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-21 17:15:07 +03:00
aa575d6f44
[management] Add activity events to group propagation flow ( #2916 )
2024-11-21 15:10:34 +01:00
f66bbcc54c
[management] Add metric for peer meta update ( #2913 )
2024-11-19 18:13:26 +01:00
5dd6a08ea6
link peer meta update back to account object ( #2911 )
2024-11-19 17:25:49 +01:00
eb5d0569ae
[client] Add NB_SKIP_SOCKET_MARK & fix crash instead of returing an error ( #2899 )
...
* dialer: fix crash instead of returning error
* add NB_SKIP_SOCKET_MARK
2024-11-19 14:14:58 +01:00
0ee56e14d9
fix lint
...
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2024-11-19 10:47:26 +03:00
52ea2e84e9
[management] Add transaction metrics and exclude getAccount time from peers update ( #2904 )
2024-11-19 00:04:50 +01:00
