Commit Graph

98 Commits (main)

Author SHA1 Message Date
lornasong edf4610ed9
[Cloud][CC-6925] Updates to pushing server state (#19682)
1 year ago
Dan Stough 20f43d81bf
test: update certs for 10 year expiry (#19481)
1 year ago
Chris S. Kim 92ce814693
Remove old build tags (#19128)
1 year ago
hashicorp-copywrite[bot] 5fb9df1640
[COMPLIANCE] License changes (#18443)
1 year ago
Samantha f019457815
tlsutil: Fix check TLS configuration (#17481)
1 year ago
skpratt a35cafa728
update tests for fips (#17592)
2 years ago
Ronald b64674623e
Copyright headers for missing files/folders (#16708)
2 years ago
Matt Keeler 085c0addc0
Protobuf Refactoring for Multi-Module Cleanliness (#16302)
2 years ago
Dan Stough f1436109ea
[OSS] security: update go to 1.20.1 (#16263)
2 years ago
Kyle Schochenmaier bf0f61a878
removes ioutil usage everywhere which was deprecated in go1.16 (#15297)
2 years ago
Derek Menteer cf114d029f
Regenerate test certificates. (#15218)
2 years ago
Derek Menteer 693c8a4706 Allow peering endpoints to bypass verify_incoming.
2 years ago
freddygv 5fbb26525b Add awareness of server mode to TLS configurator
2 years ago
freddygv 650e1e32e0 Update TLS configurator for peering traffic
2 years ago
Pablo Ruiz García 1f293e5244
Added new auto_encrypt.grpc_server_tls config option to control AutoTLS enabling of GRPC Server's TLS usage
2 years ago
R.B. Boyer bb4d4040fb
server: ensure peer replication can successfully use TLS over external gRPC (#13733)
2 years ago
DanStough 95250e7915 Update go version to 1.18.1
3 years ago
Mike Morris f8a2ae2606
agent: convert listener config to TLS types (#12522)
3 years ago
Dan Upton b36d4e16b6
Support per-listener TLS configuration ⚙️ (#12504)
3 years ago
Dhia Ayachi 2801785710
regenerate expired certs (#11462)
3 years ago
Daniel Nephin 4afc24268d tlsutil: only AuthorizerServerConn when VerifyIncomingRPC is true
3 years ago
Daniel Nephin 3f873d2257 rpc: include error for AuthorizeServerConn failures
3 years ago
Daniel Nephin 1502547e38 Revert "Merge pull request #10588 from hashicorp/dnephin/config-fix-ports-grpc"
3 years ago
Hans Hasselberg 13238dbab6
tls: consider presented intermediates during server connection tls handshake. (#10964)
3 years ago
Evan Culver 79c7e73618
rpc: authorize raft requests (#10925)
3 years ago
Daniel Nephin 7d73fd7ae5 rename GRPC->XDS where appropriate
3 years ago
Daniel Nephin dce59d9277 fix 64-bit aligment for 32-bit platforms
3 years ago
Daniel Nephin 7470647b85
Merge pull request #10497 from hashicorp/dnephin/tls-cert-exploration-3
3 years ago
R.B. Boyer a2876453a5
connect/ca: cease including the common name field in generated certs (#10424)
3 years ago
Daniel Nephin dc67042eac Invert the logic of outgoingRPCTLSDisabled
3 years ago
Daniel Nephin 39f282c425 tlsutil: inline verifyIncomingHTTPS
3 years ago
Daniel Nephin a25c817478 tlsutil: remove indirection and duplication
3 years ago
Daniel Nephin 13e5448c17 tlsutil: remove unnecessary getter functions
3 years ago
Daniel Nephin 66ba2e2463 tlsutil: unexport and remove indirection
3 years ago
Daniel Nephin d09027caf6 tlsutils: more test cases for OutgoingTLSConfigForCheck
3 years ago
Daniel Nephin 486b97e2c9 tlsutil: fix default server name for health checks
3 years ago
Daniel Nephin a920936c86 tlsutil: convert tests for OutgoingTLSConfigForCheck to a table
3 years ago
Daniel Nephin 2aad3f80fb tlsutil: reduce interface provided to auto-config
4 years ago
Daniel Nephin 1ba5acb284 tlsutil: un-ptr and document the manual struct
4 years ago
Daniel Nephin 6289b68247 tlsutil: document Configurator and some of its fields
4 years ago
Daniel Nephin a4432bb0b4 tlsutil: un-ptr and add godoc to autoTLs struct
4 years ago
Daniel Nephin 08cd772626 tlsutil: remove unused method
4 years ago
Daniel Nephin 8d9d6c6a09 tlsutil: unexport two types
4 years ago
Daniel Nephin bca33d818f tlsutil: remove the RLock from log
4 years ago
Daniel Nephin bcf23cd1b4 tlsutil: Un-method Configurator.check
4 years ago
Daniel Nephin b3fa778d91 tlsutil: fix a panic
4 years ago
Daniel Nephin 6f51984313 tlsutil: un-embed the RWMutex
4 years ago
Daniel Nephin bbb9a73d9b tlsutil: fix a test for go1.16
4 years ago
Hans Hasselberg 53e9c134af
introduce certopts (#9606)
4 years ago
Christopher Broglie f0307c73e5 Add support for configuring TLS ServerName for health checks
4 years ago