github/dynamiclistener
1
0
Fork 1
mirror of https://github.com/rancher/dynamiclistener.git synced 2025-06-24 22:01:33 +00:00
Code Issues Projects Releases Wiki Activity
144 Commits 24 Branches 45 Tags 2.5 MiB
b6f51e5c56
Commit Graph

144 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Krunal Hingu
b6f51e5c56
bump versions for k8s 1.29.3 (#107) 2024-05-03 13:24:08 -04:00
Tom Lebreux
7a349f0e17
Add GHA to test the code (#98) 2024-04-18 09:38:05 -04:00
Tom Lebreux
1eeb4b5b17
Downgrade github.com/prometheus/client_golang to v1.16.0 (#105) 
Fix incompatibility issue with k8s v1.28.6
 2024-04-17 14:53:05 -04:00
Tom Lebreux
7d8524f076
Dependencies bumps (#103) 
* Update module golang.org/x/crypto to v0.22.0

* Update module github.com/rancher/wrangler/v2 to v2.2.0-rc3

---------

Co-authored-by: renovate-rancher[bot] <119870437+renovate-rancher[bot]@users.noreply.github.com>
 2024-04-10 15:30:59 -04:00
Michael Bolot
a1393faa8a
Merge pull request #97 from tomleb/wrangler-bumps-v2.2.0-rc1 
Bump wrangler to v2.2.0-rc1
 2024-03-26 13:47:35 -05:00
Tom Lebreux
7bb1110b59 Bump wrangler to v2.2.0-rc1 2024-03-26 14:45:06 -04:00
Michael Bolot
56e6e37ee5
Merge pull request #96 from tomleb/renovate-bumps-mar25 
Renovate bumps
 2024-03-25 16:03:28 -05:00
Tom Lebreux
bc5ed0e4ce Bump Go to 1.22 2024-03-25 16:51:02 -04:00
Tom Lebreux
b3f1ab27eb Update module golang.org/x/crypto to v0.21.0 2024-03-25 16:50:11 -04:00
renovate-rancher[bot]
6f261cdc0a Update module github.com/stretchr/testify to v1.9.0 2024-03-25 16:47:18 -04:00
renovate-rancher[bot]
f0bbc6c283 Update module github.com/rancher/wrangler/v2 to v2.1.4 2024-03-25 16:46:06 -04:00
Kinara Shah
746c52d537
Merge pull request #87 from chiukapoor/rancher-v1.28 
[v1.28] Bump dependencies to k8s 1.28.6 | Update wrangler to v2.1.3
 2024-02-06 10:08:33 -08:00
Chirayu Kapoor
69578d4219 Bump dependencies to support k8s 1.28 | January Patch 
Signed-off-by: Chirayu Kapoor <chirayu.kapoor@suse.com>
 2024-02-01 01:01:43 +05:30
Caleb Bron
d80ffb5c22
Merge pull request #88 from KevinJoiner/wrangler-v2 
Bumps rancher/wrangler to it's tagged v2 version.
 2024-01-24 08:13:33 -07:00
Kevin Joiner
e6451ba1e8 Bumps rancher/wrangler to it's tagged v2 version. 2024-01-11 16:22:55 -05:00
vardhaman22
0a2d8dff62 retry saving missed secret after intial sync 2023-09-28 09:53:35 -07:00
Kinara Shah
0132d96ec2
Merge pull request #80 from vardhaman22/k8s-1.27.4 
updated deps for k8s 1.27
 2023-08-30 22:23:50 -07:00
vardhaman22
06acb83e5d fix listener call 2023-08-31 10:50:15 +05:30
vardhaman22
10456ff2e6 updated deps for k8s 1.27 2023-08-23 11:45:25 +05:30
Brad Davidson
1c60bf414f Fix deadlock caused by apiserver outage during init 
We had similar code to prevent blocking when calling Update(), but not in the init function.

Ref: https://github.com/rancher/rancher/issues/42278
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-08-15 12:44:26 -07:00
renovate-rancher[bot]
3e7612c2c9 Update module github.com/sirupsen/logrus to v1.9.3 2023-08-15 12:43:48 -07:00
Derek Nola
e6585da47a
Merge pull request #78 from knoppiks/multiple-ca-certs 
Allow multiple (intermediate) CA certs
 2023-08-11 12:43:10 -07:00
Jonas Wagner
6cc9a670e1
Prevent Panic for empty Arrays on Error 
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: Jonas Wagner <jwagner@knoppiks.de>
 2023-07-14 08:28:48 +02:00
Jonas Wagner
8f13b193a1
Use more Verbose name for Listener 
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: Jonas Wagner <jwagner@knoppiks.de
 2023-07-14 08:28:47 +02:00
Jonas Wagner
02304047cf
Enable intermediate CA Certificates 
Signed-off-by: Jonas Wagner <jwagner@knoppiks.de>
 2023-07-10 09:42:17 +02:00
Kevin Joiner
4c1ac9bd4b Removes wait loop for listener certs. 2023-07-06 11:20:27 -07:00
Ricardo Weir
2b62d5cc69
Merge pull request #71 from rancher/deploy-renovate-2023-04-18-11-27-11 
Add initial Renovate configuration
 2023-04-27 10:28:43 -07:00
renovate-rancher[bot]
2ac221e5d6 Add initial Renovate configuration 2023-04-18 11:27:12 +00:00
Ricardo Weir
b7a028fe3f
Merge pull request #69 from rmweir/update-wrangler 
Update wrangler to v1.1.0
 2023-02-22 14:08:10 -07:00
Ricardo Weir
a150115362 Update wrangler to v1.1.0 2023-02-21 15:41:43 -07:00
Michael Bolot
7001abfa1f Bump go version to 1.19 2022-10-19 12:32:07 -07:00
Michael Bolot
3adafb7edb Tests for Marking additional connections as ready 2022-10-19 12:32:07 -07:00
Michael Bolot
e73d5f2fca Marking additional connections as ready 
Most connections were not marked as ready despite having retrieved
a valid cert. This change makes all connections which succesfully
retrieved a cert get marked as ready
 2022-10-19 12:32:07 -07:00
Caleb Bron
401fafb7e6
Merge pull request #64 from w13915984028/fix63 
fix63 use sleep instead of force scheduling
 2022-07-28 13:43:07 -07:00
Jian Wang
bad953b9f0 fix63 use sleep instead of force scheduling 2022-07-27 08:59:22 +02:00
Brad Davidson
8ebd77f8a4 Raise default ExpirationDaysCheck to 90 and extend into cert factory 
Most of our products actually renew at 90 days, so make that the default.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-07-21 14:08:16 -07:00
Brad Davidson
fdf983a935 Don't merge expired certs over the top of an unexpired cert 
Fixes an issue where an expired Kubernetes secret would replace the renewed locally-cached cert after cluster startup.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-07-21 14:08:16 -07:00
Flavio Grossi
7b5997cee9 always use CATTLE_NEW_SIGNED_CERT_EXPIRATION_DAYS when generating a certificate 2022-07-20 12:07:31 -07:00
Lucas Ramage
42d72c2ef2
Merge pull request #56 from rancher/fossa 
Implement drone-plugin-fossa
 2022-07-01 10:58:54 -04:00
Brad Davidson
d2b7e2aaa6 We support IPv6 now, don't skip adding IPv6 address SANs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-05-20 12:21:30 -07:00
Brad Davidson
a30741bb53 Send complete certificate chain, not just the leaf cert 
Also, print a warning when signing may change the issuer.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-05-20 12:21:30 -07:00
Brad Davidson
4df376813d Improve log messages and warn if no cert is available 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-05-20 12:21:30 -07:00
Brad Davidson
9b92d13bcb Fix initial secret not being written to Kubernetes 
Updates to the secret that occurred before the controller was done
syncing were not being written to Kubernetes. Subsequent updates to the
secret would eventually get it written, but Rancher requires that the
cert be written immediately. This was probably an unnecessary
optimization anyway, so back it out in favor of just checking to see if
the secrets controller is available.

Also fixed improper handling of multiple goroutines attempting to create
the Kubernetes secret at the same time; this was also handled eventually
but caused an unnecessary round of extra writes to the secret.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-05-20 12:21:30 -07:00
Brad Davidson
b1d65efb6f Move Kubernetes Secrets storage update to goroutine 
Fixes issue where apiserver outages can block dynamiclistener from accepting new connections.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-05-02 18:48:48 -07:00
Lucas Ramage
5e81b14c1f Implement drone-plugin-fossa 2022-03-31 16:28:22 -04:00
Brian Downs
148d38076d
update config to allow for specifying experiation in days (#53) 2021-12-21 15:38:04 -07:00
Brad Davidson
43f9c3ae0a Fix handling of IPv6 addresses and long hostnames 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-23 23:38:49 -08:00
Brad Davidson
284cc004e8 Fix listenAndServe certificate expiration by preloading certs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-23 23:38:49 -08:00
Kinara Shah
120a37b97a
Merge pull request #51 from nickgerace/quick-fix 
Add README
 2021-11-19 14:29:09 -08:00
Nick Gerace
bbac29e0fa Add README 2021-11-19 13:50:48 -05:00