Commit Graph

250 Commits (acc5fd5c0ad01f5a54d079055e95c1ad355df51d)

Author SHA1 Message Date
freddygv 659ebc05a9 Ensure passthrough addresses get cleaned up
3 years ago
freddygv c31c1158a6 Add failing test
3 years ago
R.B. Boyer b60d89e7ef bulk rewrite using this script
3 years ago
R.B. Boyer 424f3cdd2c
proxycfg: introduce explicit UpstreamID in lieu of bare string (#12125)
3 years ago
Dhia Ayachi e653f81919
reset `coalesceTimer` to nil as soon as the event is consumed (#11924)
3 years ago
freddygv 21f2c2e68d Purge chain if it shouldn't be there
3 years ago
freddygv d26b4860fd Account for new upstreams constraint in tests
3 years ago
freddygv 2fe27b748d Check ingress upstreams when gating chain watches
3 years ago
freddygv 6af9a0d8cf Avoid storing chain without an upstream
3 years ago
freddygv ba12dc215b Clean up chains separately from their watches
3 years ago
freddygv 70d6358426 Store intention upstreams in snapshot
3 years ago
R.B. Boyer 81ea8129d7
proxycfg: ensure all of the watches are canceled if they are cancelable (#11824)
3 years ago
R.B. Boyer 4aabbe529c
proxycfg: use external addresses in tproxy when crossing partition boundaries (#11823)
3 years ago
R.B. Boyer 631c649291
various partition related todos (#11822)
3 years ago
R.B. Boyer 1e02460bd1
re-run gofmt on 1.17 (#11579)
3 years ago
freddygv 0e507492d0 Update proxycfg for ingress service partitions
3 years ago
Freddy 00b5b0a0a2
Update filter chain creation for sidecar/ingress listeners (#11245)
3 years ago
Daniel Upton 50a1f20ff9
xds: prefer fed state gateway definitions if they're fresher (#11522)
3 years ago
freddygv 60066e5154 Exclude default partition from GatewayKey string
3 years ago
freddygv e3666b0bc4 Update GatewayKeys deduplication
3 years ago
freddygv 90ce897456 Store GatewayKey in proxycfg snapshot for re-use
3 years ago
freddygv 4d4ccedb3a Update locality check in proxycfg
3 years ago
freddygv 3a2061544d Fixup partitions assertion
3 years ago
freddygv d28b9052b2 Move the exportingpartitions constant to enterprise
3 years ago
freddygv 448701dbd8 Replace default partition check
3 years ago
freddygv 12923f5ebc PR comments
3 years ago
freddygv a33b6923e0 Account for partitions in xds gen for mesh gw
3 years ago
freddygv 110fae820a Update xds pkg to account for GatewayKey
3 years ago
freddygv 7e65678c52 Update mesh gateway proxy watches for partitions
3 years ago
freddygv 37a16e9487 Replace Split with SplitN
3 years ago
freddygv b9b6447977 Finish removing useInDatacenter
3 years ago
freddygv 62e0fc62c1 Configure sidecars to watch gateways in partitions
3 years ago
Paul Banks 78a00f2e1c Add support for enabling connect-based ingress TLS per listener.
3 years ago
Daniel Nephin eb632c53a2 structs: rename the last helper method.
3 years ago
Daniel Nephin 6d72517682 structs: remove two methods that were only used once each.
3 years ago
Paul Banks 136928a90f Minor PR typo and cleanup fixes
3 years ago
Paul Banks 20d0bf81f7 Revert abandonned changes to proxycfg for Ent test consistency
3 years ago
Paul Banks 659321d008 Handle namespaces in route names correctly; add tests for enterprise
3 years ago
Paul Banks ccbda0c285 Update proxycfg to hold more ingress config state
3 years ago
Paul Banks 4e39f03d5b Add ingress-gateway config for SDS
3 years ago
freddygv 49248a0802 Fixup proxycfg tproxy case
3 years ago
freddygv 95a6db9cfa Account for partitions in ixn match/decision
3 years ago
freddygv 3f3a61c6e1 Fixup manager tests
3 years ago
freddygv 77681b9f6c Pass partition to intention match query
3 years ago
Paul Banks e22cc9c53a Header manip for split legs plumbing
3 years ago
Paul Banks 83fc8723a3 Header manip for service-router plumbed through
3 years ago
Paul Banks f439dfc04f Ingress gateway header manip plumbing
3 years ago
Dhia Ayachi bc0e4f2f46
partition dicovery chains (#10983)
3 years ago
Dhia Ayachi 09197c989c
add partition to SNI when partition is non default (#10917)
3 years ago
freddygv f52bd80f6d Update comment for test function
3 years ago
freddygv af52d21884 Update prepared query cluster SAN validation
3 years ago
freddygv 85878685b7 Fixup proxy config test fixtures
3 years ago
Dhia Ayachi 1950ebbe1f
oss portion of ent #1069 (#10883)
3 years ago
R.B. Boyer 097e1645e3
agent: ensure that most agent behavior correctly respects partition configuration (#10880)
3 years ago
Daniel Nephin 0575498d0d proxycfg: Lookup the agent token as a default
3 years ago
Daniel Nephin b313f495b8 proxycfg: Add a test to show the bug
3 years ago
Freddy 19f6e1ca31
Log the correlation ID when blocking queries fire (#10689)
3 years ago
R.B. Boyer 188e8dc51f
agent/structs: add a bunch more EnterpriseMeta helper functions to help with partitioning (#10669)
3 years ago
freddygv b4c5c58c9b Add TODOs about partition handling
3 years ago
freddygv 47da00d3c7 Validate SANs for passthrough clusters and failovers
3 years ago
Daniel Nephin 10051cf6d3 proxycfg: remove unused method
3 years ago
Daniel Nephin 6bc5255028 proxycfg: move each handler into a seprate file
3 years ago
Daniel Nephin 19d3eeff3c
Merge pull request #9489 from hashicorp/dnephin/proxycfg-state-2
4 years ago
Nitya Dhanushkodi 52043830b4 proxycfg: reference to entry in map should not panic
4 years ago
Daniel Nephin e738fa3b80 Replace type conversion with embedded structs
4 years ago
Daniel Nephin 32c15d9a88 proxycfg: split state into kind-specific types
4 years ago
Daniel Nephin cd05df7157 proxycfg: unmethod hostnameEndpoints
4 years ago
Daniel Nephin 97c6ee00d7 Remove duplicate import
4 years ago
Daniel Nephin 0547d0c046
Merge pull request #9466 from hashicorp/dnephin/proxycfg-state
4 years ago
Nitya Dhanushkodi b8b44419a0
proxycfg: Ensure that endpoints for explicit upstreams in other datacenters are watched in transparent mode (#10391)
4 years ago
Daniel Nephin 016c5611d1 proxycfg: extract two types from state struct
4 years ago
Daniel Nephin 9c40aa729f proxycfg: pass context around where it is needed
4 years ago
Freddy 429f9d8bb8
Add flag for transparent proxies to dial individual instances (#10329)
4 years ago
freddygv c73703c08b Ensure entmeta is encoded in test correlationID
4 years ago
Daniel Nephin 347f3d2128
Merge pull request #10155 from hashicorp/dnephin/config-entry-remove-fields
4 years ago
Mark Anderson 6be9cebad0 Add tests for xds/listeners
4 years ago
Mark Anderson 06f0f79218 Continue working through proxy and agent
4 years ago
Freddy ed1082510d
Fixup discovery chain handling in transparent mode (#10168)
4 years ago
Daniel Nephin 62efaaab21 config-entry: remove Kind and Name field from Mesh config entry
4 years ago
R.B. Boyer 71d45a3460
Support Incremental xDS mode (#9855)
4 years ago
Freddy 078c40425f
Rename "cluster" config entry to "mesh" (#10127)
4 years ago
Daniel Nephin 2a26085b2c connect: do not set QuerySource.Node
4 years ago
Freddy 439a7fce2d
Split Upstream.Identifier() so non-empty namespace is always prepended in ent (#10031)
4 years ago
freddygv 8857195437 Fixup wildcard ent assertion
4 years ago
freddygv 7bd51ff536 Replace TransparentProxy bool with ProxyMode
4 years ago
freddygv b21224a4c8 PR comments
4 years ago
freddygv 49a4a78fd5 Ensure mesh gateway mode override is set for upstreams for intentions
4 years ago
freddygv 5140c3e51f Finish resolving upstream defaults in proxycfg
4 years ago
R.B. Boyer 499fee73b3
connect: add toggle to globally disable wildcard outbound network access when transparent proxy is enabled (#9973)
4 years ago
freddygv 098b9af901 Fixup enterprise tests from tproxy changes
4 years ago
freddygv eb1e0a1751 Cancel watch on all errors
4 years ago
freddygv f4f45af6d0 Merge master and fix upstream config protocol defaulting
4 years ago
freddygv 0da8702f34 PR comments
4 years ago
freddygv a54d6a9010 Update proxycfg for transparent proxy
4 years ago
Daniel Nephin f40b76af2d proxycfg: use rpcclient/health.Client instead of passing around cache name
4 years ago
Daniel Nephin 906834ce8e proxycfg: Use streaming in connect state
4 years ago
Freddy 82c269a7c5
Avoid potential proxycfg/xDS deadlock using non-blocking send
4 years ago
freddygv ec5f75776b Update comments on avoiding proxycfg deadlock
4 years ago
R.B. Boyer 43193a35c6
xds: prevent LDS flaps in mesh gateways due to unstable datacenter lists (#9651)
4 years ago
freddygv 6e443e5536 Retry send after timer fires, in case no updates occur
4 years ago