extern/netbird
1
0
Fork 0
mirror of https://github.com/netbirdio/netbird.git synced 2025-08-04 13:22:03 +02:00
Code Issues Packages Projects Releases Wiki Activity
1,632 Commits 222 Branches 251 Tags
c384874d7d2e28fb56fb768e87b5bff3ee79dc5f
Commit Graph

1632 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
bcmmbaga
c384874d7d fix tests 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-25 15:04:57 +03:00
bcmmbaga
b815393180 fix lint 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-25 13:02:08 +03:00
bcmmbaga
41b212f610 Refactor store 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-25 12:53:20 +03:00
bcmmbaga
16174f0478 Refactor route, setupkey, nameserver and dns to get record(s) from store 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-25 12:52:42 +03:00
bcmmbaga
d14b855670 Refactor user permissions and retrieves PAT 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-24 22:57:04 +03:00
bcmmbaga
eab85644cd Refactor retrieval of policy and posture checks 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-24 21:57:33 +03:00
bcmmbaga
7561706627 add GetGroupByID from store and refactor 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-24 19:55:33 +03:00
bcmmbaga
1ffe89d20d add GetGroupByName from store 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-24 16:36:57 +03:00
bcmmbaga
28840383e1 refactor 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-24 13:30:13 +03:00
bcmmbaga
d9f612d623 remove locks 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-23 20:12:57 +03:00
bcmmbaga
7601a17150 fix tests 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-22 23:44:10 +03:00
bcmmbaga
8f98adddf6 refactor handlers to use GetAccountIDFromToken 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-22 15:14:31 +03:00
bcmmbaga
26dd045da5 Merge branch 'main' into refactor-get-account-by-token 2024-09-20 14:08:09 +03:00
bcmmbaga
4d9bb7ea35 refactor getAccountWithAuthorizationClaims to return account id 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-20 14:07:44 +03:00
Bethuel Mmbaga
35c892aea3 [management] Restrict accessible peers to user-owned peers for non-admins (#2618) 
* Restrict accessible peers to user-owned peers for non-admin users

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* add tests

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* add service user test

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* reuse account from token

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* return error when peer not found

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

---------

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-20 12:36:58 +03:00
Zoltan Papp
fc4b37f7bc Exit from processConnResults after all tries (#2621) 
* Exit from processConnResults after all tries

If all server is unavailable then the server picker never return
because we never close the result channel.
Count the number of the results and exit when we reached the
expected size
v0.29.4 		2024-09-19 13:49:28 +02:00
Zoltan Papp
6f0fd1d1b3 - Increase queue size and drop the overflowed messages (#2617) 
- Explicit close the net.Conn in user space wgProxy when close the wgProxy
- Add extra logs
 2024-09-19 13:49:09 +02:00
bcmmbaga
9631cb4fb3 fix tests 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 19:05:21 +03:00
bcmmbaga
8f9c54f6c2 remove GetUserByID from account manager 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 17:03:04 +03:00
bcmmbaga
f60a4234b1 revert handles change 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 16:40:47 +03:00
bcmmbaga
021fc8f33e fix merge 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 16:11:20 +03:00
bcmmbaga
a4c4158bcf Merge branch 'main' into refactor-get-account-by-token 2024-09-18 16:03:55 +03:00
bcmmbaga
720d36a290 refactor getAccountWithAuthorizationClaims 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 15:55:52 +03:00
bcmmbaga
ccab3b427f refactor getAccountFromToken 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-18 14:24:39 +03:00
bcmmbaga
e5d55d3c10 refactor handlers to get account when necessary 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-17 23:15:54 +03:00
bcmmbaga
3cf1b02f31 refactor jwt groups extractor 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-17 18:18:59 +03:00
Zoltan Papp
28cbb4b70f [client] Cancel the context of wg watcher when the go routine exit (#2612) v0.29.3 0.29.3 2024-09-17 12:10:17 +02:00
Zoltan Papp
1104c9c048 [client] Fix race condition while read/write conn status in peer conn (#2607) 2024-09-17 11:15:14 +02:00
Maycon Santos
5bc601111d [relay] Add health check attempt threshold (#2609) 
* Add health check attempt threshold for receiver

* Add health check attempt threshold for sender
 2024-09-17 10:04:17 +02:00
Zoltan Papp
b74951f29e [client] Enforce permissions on Win (#2568) 
Enforce folder permission on Windows, giving only administrators and system access to the NetBird folder.
 2024-09-16 22:42:37 +02:00
Zoltan Papp
97e10e440c Fix leaked server connections (#2596) 
Fix leaked server connections

close unused connections in the client lib
close deprecated connection in the server lib
The Server Picker is reusable in the guard if we want in the future. So we can support the server address changes.

---------

Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>

* Add logging

---------

Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>
 2024-09-16 16:11:10 +02:00
pascal-fischer
6c50b0c84b [management] Add transaction to addPeer (#2469) 
This PR removes the GetAccount and SaveAccount operations from the AddPeer and instead makes use of gorm.Transaction to add the new peer.
 2024-09-16 15:47:03 +02:00
bcmmbaga
258b30cf48 refactor access control middleware and user access by JWT groups 
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-16 13:33:36 +03:00
pascal-fischer
730dd1733e [signal] Fix signal active peers metrics (#2591) 2024-09-15 16:46:55 +02:00
Bethuel Mmbaga
82739e2832 [management] fix legacy decrypting of empty values (#2595) 
* allow legacy decrypting on empty values

* validate source size and padding limits

* added tests

---------

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>
 2024-09-15 16:22:46 +02:00
Maycon Santos
fa7767e612 Fix get management and signal state race condition (#2570) 
* Fix get management and signal state race condition

* fix get full status lock
 2024-09-15 16:07:26 +02:00
benniekiss
f1171198de [management] Add command flag to set metrics port for signal and relay service, and update management port (#2599) 
* add flags to customize metrics port for relay and signal

* change management default metrics port to match other services
 2024-09-14 10:34:32 +02:00
Zoltan Papp
9e041b7f82 Fix blocked net.Conn Close call (#2600) 2024-09-14 10:27:37 +02:00
Zoltan Papp
b4c8cf0a67 Change heartbeat timeout (#2598) 2024-09-14 10:12:54 +02:00
Carlos Hernandez
1ef51a4ffa [client] Ensure engine is stopped before starting it back (#2565) 
Before starting a new instance of the engine, check if it is nil and stop the current instance
 2024-09-13 16:46:59 +02:00
Maycon Santos
f6d57e7a96 [misc] Support configurable max log size with var NB_LOG_MAX_SIZE_MB (#2592) 
* Support configurable max log size with var NB_LOG_MAX_SIZE_MB

* add better logs
v0.29.2 		2024-09-12 19:56:55 +02:00
Zoltan Papp
ab892b8cf9 Fix wg handshake checking (#2590) 
* Fix wg handshake checking

* Ensure in the initial handshake reading

* Change the handshake period
 2024-09-12 19:18:02 +02:00
Gianluca Boiano
33c9b2d989 fix: install.sh: avoid call of netbird executable after rpm installation (#2589) 2024-09-12 17:32:47 +02:00
Bethuel Mmbaga
170e842422 [management] Add accessible peers endpoint (#2579) 
* move accessible peer to separate endpoint in api doc

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* add endpoint to get accessible peers

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* Update management/server/http/api/openapi.yml

Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com>

* Update management/server/http/api/openapi.yml

Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com>

* Update management/server/http/peers_handler.go

Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com>

---------

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com>
 2024-09-12 16:19:27 +03:00
Maycon Santos
4c130a0291 Update Go version to 1.23 (#2588) 2024-09-12 13:46:28 +02:00
Maycon Santos
afb9673bc4 [misc] Update core github actions (#2584) 2024-09-11 21:49:05 +02:00
Bethuel Mmbaga
cf6210a6f4 [management] Add GCM encryption and migrate legacy encrypted events (#2569) 
* Add AES-GCM encryption

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* migrate legacy encrypted data to AES-GCM encryption

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* Refactor and use transaction when migrating data

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* Add events migration tests

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* fix lint

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* skip migrating record on error

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

* Preallocate capacity for nonce to avoid allocations in Seal

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>

---------

Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>
 2024-09-11 20:09:57 +03:00
Maycon Santos
c59a39d27d Update service package version (#2582) v0.29.1 2024-09-11 19:05:10 +02:00
Maycon Santos
47adb976f8 Remove pre-release step from workflow (#2583) 2024-09-11 18:59:19 +02:00
Zoltan Papp
9cfc8f8aa4 [relay] change log levels (#2580) 2024-09-11 18:36:19 +02:00