dynamiclistener

mirror of https://github.com/rancher/dynamiclistener.git synced 2025-06-23 21:37:04 +00:00

Author	SHA1	Message	Date
renovate-rancher[bot]	6cb7335776	Update actions/setup-go action to v5.3.0 (#137 ) Co-authored-by: renovate-rancher[bot] <119870437+renovate-rancher[bot]@users.noreply.github.com>	2025-02-19 19:35:03 -08:00
renovate-rancher[bot]	7d5f0cbf5e	Update actions/checkout action to v4.2.2 (#136 ) Co-authored-by: renovate-rancher[bot] <119870437+renovate-rancher[bot]@users.noreply.github.com>	2025-02-19 19:34:50 -08:00
renovate-rancher[bot]	64779f3d67	Update module github.com/rancher/wrangler to v1.1.2 (#130 ) Co-authored-by: renovate-rancher[bot] <119870437+renovate-rancher[bot]@users.noreply.github.com>	2025-02-19 19:32:30 -08:00
Chad Roberts	d941584b20	Add GITHUB_TOKEN to env for release action (#153 )	2024-11-26 09:55:43 -05:00
Chad Roberts	f3fd177670	Add release.yaml for 0.3 branch (#125 )	2024-11-15 12:20:07 -05:00
Max Sokolovsky	9e2c8269e9	Merge pull request #115 from maxsokolovsky/0.3-remove-drone-file [0.3] Remove the Drone configuration	2024-05-16 10:21:58 -04:00
Max Sokolovsky	64bcbbed34	Remove the Drone configuration	2024-05-15 17:24:02 -04:00
Tom Lebreux	ea3b7aa886	Add GHA to test the code (#100 )	2024-04-22 09:57:02 -04:00
vardhaman22	0a2d8dff62	retry saving missed secret after intial sync	2023-09-28 09:53:35 -07:00
Kinara Shah	0132d96ec2	Merge pull request #80 from vardhaman22/k8s-1.27.4 updated deps for k8s 1.27	2023-08-30 22:23:50 -07:00
vardhaman22	06acb83e5d	fix listener call	2023-08-31 10:50:15 +05:30
vardhaman22	10456ff2e6	updated deps for k8s 1.27	2023-08-23 11:45:25 +05:30
Brad Davidson	1c60bf414f	Fix deadlock caused by apiserver outage during init We had similar code to prevent blocking when calling Update(), but not in the init function. Ref: https://github.com/rancher/rancher/issues/42278 Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2023-08-15 12:44:26 -07:00
renovate-rancher[bot]	3e7612c2c9	Update module github.com/sirupsen/logrus to v1.9.3	2023-08-15 12:43:48 -07:00
Derek Nola	e6585da47a	Merge pull request #78 from knoppiks/multiple-ca-certs Allow multiple (intermediate) CA certs	2023-08-11 12:43:10 -07:00
Jonas Wagner	6cc9a670e1	Prevent Panic for empty Arrays on Error Co-authored-by: Brad Davidson <brad@oatmail.org> Signed-off-by: Jonas Wagner <jwagner@knoppiks.de>	2023-07-14 08:28:48 +02:00
Jonas Wagner	8f13b193a1	Use more Verbose name for Listener Co-authored-by: Brad Davidson <brad@oatmail.org> Signed-off-by: Jonas Wagner <jwagner@knoppiks.de	2023-07-14 08:28:47 +02:00
Jonas Wagner	02304047cf	Enable intermediate CA Certificates Signed-off-by: Jonas Wagner <jwagner@knoppiks.de>	2023-07-10 09:42:17 +02:00
Kevin Joiner	4c1ac9bd4b	Removes wait loop for listener certs.	2023-07-06 11:20:27 -07:00
Ricardo Weir	2b62d5cc69	Merge pull request #71 from rancher/deploy-renovate-2023-04-18-11-27-11 Add initial Renovate configuration	2023-04-27 10:28:43 -07:00
renovate-rancher[bot]	2ac221e5d6	Add initial Renovate configuration	2023-04-18 11:27:12 +00:00
Ricardo Weir	b7a028fe3f	Merge pull request #69 from rmweir/update-wrangler Update wrangler to v1.1.0	2023-02-22 14:08:10 -07:00
Ricardo Weir	a150115362	Update wrangler to v1.1.0	2023-02-21 15:41:43 -07:00
Michael Bolot	7001abfa1f	Bump go version to 1.19	2022-10-19 12:32:07 -07:00
Michael Bolot	3adafb7edb	Tests for Marking additional connections as ready	2022-10-19 12:32:07 -07:00
Michael Bolot	e73d5f2fca	Marking additional connections as ready Most connections were not marked as ready despite having retrieved a valid cert. This change makes all connections which succesfully retrieved a cert get marked as ready	2022-10-19 12:32:07 -07:00
Caleb Bron	401fafb7e6	Merge pull request #64 from w13915984028/fix63 fix63 use sleep instead of force scheduling	2022-07-28 13:43:07 -07:00
Jian Wang	bad953b9f0	fix63 use sleep instead of force scheduling	2022-07-27 08:59:22 +02:00
Brad Davidson	8ebd77f8a4	Raise default ExpirationDaysCheck to 90 and extend into cert factory Most of our products actually renew at 90 days, so make that the default. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-07-21 14:08:16 -07:00
Brad Davidson	fdf983a935	Don't merge expired certs over the top of an unexpired cert Fixes an issue where an expired Kubernetes secret would replace the renewed locally-cached cert after cluster startup. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-07-21 14:08:16 -07:00
Flavio Grossi	7b5997cee9	always use CATTLE_NEW_SIGNED_CERT_EXPIRATION_DAYS when generating a certificate	2022-07-20 12:07:31 -07:00
Lucas Ramage	42d72c2ef2	Merge pull request #56 from rancher/fossa Implement drone-plugin-fossa	2022-07-01 10:58:54 -04:00
Brad Davidson	d2b7e2aaa6	We support IPv6 now, don't skip adding IPv6 address SANs Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-05-20 12:21:30 -07:00
Brad Davidson	a30741bb53	Send complete certificate chain, not just the leaf cert Also, print a warning when signing may change the issuer. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-05-20 12:21:30 -07:00
Brad Davidson	4df376813d	Improve log messages and warn if no cert is available Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-05-20 12:21:30 -07:00
Brad Davidson	9b92d13bcb	Fix initial secret not being written to Kubernetes Updates to the secret that occurred before the controller was done syncing were not being written to Kubernetes. Subsequent updates to the secret would eventually get it written, but Rancher requires that the cert be written immediately. This was probably an unnecessary optimization anyway, so back it out in favor of just checking to see if the secrets controller is available. Also fixed improper handling of multiple goroutines attempting to create the Kubernetes secret at the same time; this was also handled eventually but caused an unnecessary round of extra writes to the secret. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-05-20 12:21:30 -07:00
Brad Davidson	b1d65efb6f	Move Kubernetes Secrets storage update to goroutine Fixes issue where apiserver outages can block dynamiclistener from accepting new connections. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2022-05-02 18:48:48 -07:00
Lucas Ramage	5e81b14c1f	Implement drone-plugin-fossa	2022-03-31 16:28:22 -04:00
Brian Downs	148d38076d	update config to allow for specifying experiation in days (#53 )	2021-12-21 15:38:04 -07:00
Brad Davidson	43f9c3ae0a	Fix handling of IPv6 addresses and long hostnames Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-11-23 23:38:49 -08:00
Brad Davidson	284cc004e8	Fix listenAndServe certificate expiration by preloading certs Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-11-23 23:38:49 -08:00
Kinara Shah	120a37b97a	Merge pull request #51 from nickgerace/quick-fix Add README	2021-11-19 14:29:09 -08:00
Nick Gerace	bbac29e0fa	Add README	2021-11-19 13:50:48 -05:00
Kinara Shah	962b635269	Merge pull request #50 from nickgerace/quick-fix Fix defaultNewSignedCertExpirationDays const	2021-11-19 10:28:49 -08:00
Nick Gerace	f147aa4166	Fix defaultNewSignedCertExpirationDays const This a quick fix for `2644a6ed16`	2021-11-19 12:31:47 -05:00
Kinara Shah	63157c59ce	Merge pull request #46 from nickgerace/days Allow for default expiration days to be loaded from env	2021-11-19 08:59:57 -08:00
Nick Gerace	2644a6ed16	Allow for default expiration days to be loaded from env	2021-11-18 12:38:35 -05:00
Brian Downs	27f4642299	Add ability to force cert regeneration (#43 ) * add ability to force cert regeneration	2021-11-15 13:50:26 -07:00
Caleb Bron	cd5d71f2fe	Merge pull request #44 from cmurphy/fix-type Fix net.Conn type assertion	2021-11-04 13:09:48 -07:00
Colleen Murphy	fb66484384	Fix net.Conn type assertion Don't assert that all connections are wrapped, as they won't be if the CloseConnOnCertChange setting is false. Only run the assertion within a conditional for wrapped connections, where it is safe. This prevents a panic from happening when CloseConnOnCertChange is not used.	2021-10-29 11:03:02 -07:00

1 2 3

137 Commits