João "Pisco" Fernandes
66efd3f2bb
TUN-8407: Upgrade go to version 1.22.2
2024-05-07 16:58:57 +01:00
Devin Carr
687682120c
TUN-8333: Bump go-jose dependency to v4
2024-04-10 09:49:40 -07:00
chungthuang
8e69f41833
TUN-7934: Update quic-go to a version that queues datagrams for better throughput and drops large datagram
...
Remove TestUnregisterUdpSession
2024-01-03 13:01:01 +00:00
Chung-Ting
12dd91ada1
TUN-8052: Update go to 1.21.5
...
Also update golang.org/x/net and google.golang.org/grpc to fix vulnerabilities,
although cloudflared is using them in a way that is not exposed to those risks
2023-12-15 12:17:21 +00:00
Chung-Ting
8068cdebb6
TUN-8006: Update quic-go to latest upstream
2023-12-04 17:09:40 +00:00
Devin Carr
81fe0bd12b
TUN-7628: Correct Host parsing for Access
...
Will no longer provide full hostname with path from provided
`--hostname` flag for cloudflared access to the Host header field.
This addresses certain issues caught from a security fix in go
1.19.11 and 1.20.6 in the net/http URL parsing.
2023-07-25 09:33:11 -07:00
Devin Carr
1b0b6bf7a8
TUN-7589: Remove legacy golang.org/x/crypto/ssh/terminal package usage
...
Package has been moved to golang.org/x/term
2023-07-17 19:02:15 +00:00
Devin Carr
85eee4849f
TUN-7586: Upgrade go-jose/go-jose/v3 and core-os/go-oidc/v3
...
Removes usages of gopkg.in/square/go-jose.v2 and gopkg.in/coreos/go-oidc.v2 packages.
2023-07-17 19:02:03 +00:00
Devin Carr
9426b60308
TUN-7227: Migrate to devincarr/quic-go
...
The lucas-clemente/quic-go package moved namespaces and our branch
went stale, this new fork provides support for the new quic-go repo
and applies the max datagram frame size change.
Until the max datagram frame size support gets upstreamed into quic-go,
this can be used to unblock go 1.20 support as the old
lucas-clemente/quic-go will not get go 1.20 support.
2023-05-10 19:44:15 +00:00
Devin Carr
38cd455e4d
TUN-7373: Streaming logs override for same actor
...
To help accommodate web browser interactions with websockets, when a
streaming logs session is requested for the same actor while already
serving a session for that user in a separate request, the original
request will be closed and the new request start streaming logs
instead. This should help with rogue sessions holding on for too long
with no client on the other side (before idle timeout or connection
close).
2023-04-21 11:54:37 -07:00
Devin Carr
69eb9698b5
TUN-7356: Bump golang.org/x/net package to 0.7.0
2023-04-07 09:41:23 -07:00
Devin Carr
207f4e2c8d
TUN-7066: Bump coredns to v1.10.0
...
closes #857
2023-01-26 09:30:08 -08:00
Devin Carr
794e8e622f
TUN-6724: Migrate to sentry-go from raven-go
2023-01-11 15:48:03 +00:00
Devin Carr
887e486a63
TUN-7057: Remove dependency github.com/gorilla/mux
2022-12-24 21:05:51 -07:00
Devin Carr
1fe4878264
TUN-6937: Bump golang.org/x/* packages to new release tags
2022-11-14 17:25:11 +00:00
Sudarsan Reddy
de07da02cd
TUN-6772: Add a JWT Validator as an ingress verifier
...
This adds a new verifier interface that can be attached to ingress.Rule.
This would act as a middleware layer that gets executed at the start of
proxy.ProxyHTTP.
A jwt validator implementation for this verifier is also provided. The
validator downloads the public key from the access teams endpoint and
uses it to verify the JWT sent to cloudflared with the audtag (clientID)
information provided in the config.
2022-09-22 08:42:25 +00:00
Devin Carr
013bdbd10c
TUN-6718: Bump go and go-boring 1.18.6
2022-09-19 15:18:59 +00:00
Bas Westerbaan
11cbff4ff7
RTG-1339 Support post-quantum hybrid key exchange
...
Func spec: https://wiki.cfops.it/x/ZcBKHw
2022-09-07 19:32:53 +00:00
cthuang
bad2e8e812
TUN-6666: Define packet package
...
This package defines IP and ICMP packet, decoders, encoder and flow
2022-08-24 11:36:57 +01:00
Sudarsan Reddy
046a30e3c7
TUN-6637: Upgrade go version and quic-go
2022-08-08 15:49:10 +01:00
Devin Carr
2a177e0fc4
TUN-6583: Remove legacy --ui flag
2022-07-20 16:17:29 -07:00
Nuno Diegues
e8fe34773c
TUN-6158: Update golang.org/x/crypto
2022-05-02 09:34:39 +01:00
Nuno Diegues
b12272529f
TUN-5995: Update prometheus to 1.12.1 to avoid vulnerabilities
2022-04-06 11:13:12 +00:00
cthuang
8a5343d0a5
TUN-5675: Remove github.com/dgrijalva/jwt-go dependency by upgrading coredns version
2022-01-25 15:24:13 +00:00
João Oliveirinha
74556bcd7d
TUN-5547: Bump golang x/net package to fix http2 transport bugs
2022-01-17 11:13:25 +00:00
cthuang
7024d193c9
TUN-5405: Update net package to v0.0.0-20211109214657-ef0fda0de508
...
This version contains fix to https://github.com/golang/go/issues/43989
2021-11-10 17:20:13 +00:00
cthuang
2ca4633f89
TUN-5286: Upgrade crypto/ssh package to fix CVE-2020-29652
2021-10-22 16:50:35 +00:00
cthuang
d54c8cc745
TUN-5129: Use go 1.17 and copy .git folder to docker build to compute version
2021-09-21 15:50:35 +00:00
Sudarsan Reddy
414cb12f02
TUN-4961: Update quic-go to latest
...
- Updates fips-go to be the latest on cfsetup.yaml
- Updates sumtype's x/tools to be latest to avoid Internal: nil pkg
errors with fips.
2021-08-27 12:26:00 +01:00
Sudarsan Reddy
1082ac1c36
TUN-4922: Downgrade quic-go library to 0.20.0
2021-08-13 15:45:13 +01:00
Sudarsan Reddy
ed024d0741
TUN-4597: Add a QUIC server skeleton
...
- Added a QUIC server to accept streams
- Unit test for this server also tests ALPN
- Temporary echo capability for HTTP ConnectionType
2021-08-03 10:03:47 +00:00
Igor Postelnik
a8ae6de213
TUN-3924: Removed db-connect command. Added a placeholder handler for this command that informs users that command is no longer supported.
2021-02-17 20:13:51 -06:00
Igor Postelnik
ce22dd681a
TUN-3195: Don't colorize console logs when stderr is not a terminal
2021-01-21 17:03:51 -06:00
Rachel Williams
d8ebde37ca
TUN-3201: Create base cloudflared UI structure
2020-09-17 11:52:07 +04:00
Igor Postelnik
741cd66c9e
TUN-3375: Upgrade coredns and prometheus dependencies
2020-09-09 13:14:38 -05:00
Adam Chalmers
7acea1ac99
TUN-3375: Upgrade x/text and gorilla websocket deps
2020-09-09 12:07:35 -05:00
Adam Chalmers
a99780ed9d
TUN-3161: Upgrade golang.org/x/ deps
2020-07-06 16:42:48 +00:00
Adam Chalmers
6e761cb7ae
TUN-3090: Upgrade crypto dep
2020-06-12 00:03:09 -05:00
Adam Chalmers
2cf327ba01
TUN-2943: Copy certutil from edge into cloudflared
2020-05-04 17:37:29 -05:00
Dalton
a37da2b165
AUTH-2394 added socks5 proxy
2020-04-07 13:30:28 -05:00
Areg Harutyunyan
6624a24040
TUN-2748: Insecure randomness vulnerability in github.com/miekg/dns
2020-03-05 13:52:45 +00:00
Ashcon Partovi
759cd019be
Add db-connect, a SQL over HTTPS server
2019-11-12 20:34:39 +00:00
Chung-Ting Huang
13bf65ce4e
TUN-2506: Expose active streams metrics
2019-11-07 14:09:31 -06:00
Nick Vollmar
e5335b6c1b
TUN-2502: Switch to go modules
2019-11-04 15:05:02 -06:00
Michael Borkenstein
91d9dca34e
AUTH-2105: Adds support for local forwarding. Refactor auditlogger creation.
...
AUTH-2088: Adds dynamic destination routing
2019-10-10 15:25:03 -05:00
Adam Chalmers
4e1df1a211
TUN-2243: Revert "STOR-519: Add db-connect, a SQL over HTTPS server"
...
This reverts commit 5da2109811
.
2019-08-26 16:50:12 -05:00
Ashcon Partovi
5da2109811
STOR-519: Add db-connect, a SQL over HTTPS server
2019-08-20 13:13:29 -05:00
Austin Cherry
fa17b0200f
AUTH-1557: Short Lived Certs
2019-05-07 11:21:11 -05:00
Areg Harutyunyan
bab7583a97
TUN-1734: Pin packages at exact versions
2019-04-17 18:16:56 -05:00
Marek Vavruša
781e1fef7b
TUN-1615: revert miekg/dns to last known working revision
...
The last known good commit is 6da3249dfb57fbaa16efafcd8744cee8809d80cd before the first release tag.
2019-03-17 20:40:18 -07:00