Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-05-05 | fix(agent): restrict allowed IPsHEADv1.13.2masterdev | Trumeet | |
2021-04-08 | feat(agent): bird: use a concentrated configuration | Trumeet | |
2021-04-04 | fix(agent): disable legacy services before calculating netlink changesv1.13.1 | Trumeet | |
Disabling wg-quick services will remove interfaces, making the predict of netlink changes outdated. | |||
2021-04-04 | fix(central): node form returns to a new form if any fields are invalidv1.13 | Trumeet | |
2021-04-04 | fix(central): does not allow peers with the same link local addresses with nodes | Trumeet | |
Existing conflicts need to be removed manually | |||
2021-04-04 | fix(central): completely rewrite IP validation and compressing | Trumeet | |
2021-04-04 | feat(agent): persistent configuration | Trumeet | |
2021-04-03 | fix(central): editing peer does not handle duplication | Trumeet | |
2021-04-03 | feat(agent): provision WireGuard before BGP | Trumeet | |
2021-04-03 | fix(agent): move WireGuard ip del commands to a separate provisioner to be ↵ | Trumeet | |
executed after all done This resolves conflicts with systemd managed wg-quick legacy services | |||
2021-04-03 | refactor(agent): clarify steps and parallel | Trumeet | |
2021-04-03 | feat(agent): always use sequential execution | Trumeet | |
2021-04-03 | fix(agent): wrong service name when disabling legacy systemd wg-quick units | Trumeet | |
2021-04-03 | fix(agent): some tasks cannot execute in parallel | Trumeet | |
2021-04-03 | feat(agent): use `ip` to operate WireGuard interfaces instead of wg-quick | Trumeet | |
Existing wg-quick services will be automatically removed. Manual inspection may be required. | |||
2021-04-02 | feat(central): add ASN admin page | Trumeet | |
2021-04-02 | docs: copy README to docs/v1.12 | Trumeet | |
2021-04-02 | feat(central): minor UI and wording adjustments | Trumeet | |
2021-04-02 | feat(central): add one peering restriction to the peering policy | Trumeet | |
2021-04-02 | docs: add notice for IPv6 address bracketing | Trumeet | |
2021-04-02 | fix(agent): null pointer while rendering WireGuard configuration | Trumeet | |
getPeerIPv6() will return "" rather than null if the actual value should be null. However, '<#if peer_ipv6??>' in the template will only check it for null, not for empty. Therefore, when peer_ipv6 equals to "", the peer_ipv6_ll will not be set and thus, lead to a null pointer rendering error at wg_conf.ftlh:8. | |||
2021-04-02 | feat(central): support manually re-deployingv1.11 | Trumeet | |
2021-04-02 | fix(central): deadlock if deployment is failed | Trumeet | |
2021-04-02 | feat(central): add nodes admin UI | Trumeet | |
2021-04-02 | feat(central): add logging to ProvisionRemoteServiceImpl | Trumeet | |
There are no clients that handle the result of provisioning. If there is no logging, it would be hard to debug. | |||
2021-04-02 | feat(central): only allow one peer per ASN on the same node | Trumeet | |
If migration failed with duplication keys, manually remove duplicated peers and repair. Check duplicated peers: SELECT id, asn, node, COUNT(*) FROM peer GROUP BY asn, node HAVING COUNT(*) > 1 | |||
2021-04-02 | feat(central): add peering policy to the index | Trumeet | |
2021-04-02 | feat(central): add internal IP unique index | Trumeet | |
If migration failed with duplication keys, manually remove duplicated nodes and repair. | |||
2021-04-02 | feat(central/agent/rpc): completely rewrite of provision handling | Trumeet | |
Now we are shifting from transactional operations (Central tells what to do like provision, reload or unprovision to nodes) to declarative configurations (Central renders a desired state of all BGP sessions and VPN tunnels and the agent will compare the desired state with actual state and merge changes). This greatly simplifies provision process and reduces atomic operations. It also simplifies locks as now, the only lock is deploy lock. However, the current implementation does not support result tracing. That is, all provision results are ignored and the provision status will not be updated nor the user will know whether a peer is successfully provisioned. This will be introduced later. Even if error tracking is more difficult, using this method or communication still results in great benifit in reducing errors. Nodes are now stateless: whenever a deploy is required, it compares all its local state to the desired state. Thus, issues will be likely solved by restarting. Lastly, unprovision operations will not block peer deletion. Their results will also be ignored. Breaking changes: * Not compatible with existing central / agents. They must be upgraded together. * Agents now must not be installed on the same machine. | |||
2021-04-01 | feat(central): implement database auto migration | Trumeet | |
2021-04-01 | feat(central): move database configuration a separate data class | Trumeet | |
2021-04-01 | refactor(central): abstract database pool | Trumeet | |
This enables the project to easily switch to other pools or centrally change pool options without modifying each service or individual classes. | |||
2021-04-01 | feat(central): add debug info for remote proxy calls and log them. This is ↵ | Trumeet | |
useful for debugging | |||
2021-03-31 | feat(central): add sudo and admin panelv1.10 | Trumeet | |
2021-03-30 | fix(central): wg-quick does not support IP switching | Trumeet | |
2021-03-30 | fix(central): move % out of <b> | Trumeet | |
2021-03-29 | fix(central): showconf: use /128 for non-ll ipv6v1.9 | Trumeet | |
2021-03-29 | feat(central): wrap wg keys in <code> | Trumeet | |
2021-03-29 | feat(central): merge table IPv4 and IPv6 for better mobile experience | Trumeet | |
2021-03-29 | feat(central): add CSS and optimize mobile UI | Trumeet | |
2021-03-29 | refactor(central): move getGeneralRenderingHandler to RenderingUtils | Trumeet | |
2021-03-29 | refactor(central): move ASN frontend logic to a separate web API service | Trumeet | |
2021-03-28 | refactor(central): move some common codes outside of ManageHandler | Trumeet | |
2021-03-28 | fix(central): handle HTTPException at a higher level and remove some ↵v1.8 | Trumeet | |
printStackTrace calls | |||
2021-03-27 | fix(central): compress income IPv6 addresses to prevent identical addresses ↵ | Trumeet | |
with different forms from being processed Existing peers are not checked | |||
2021-03-27 | feat(central): move gRPC logic into a separate verticle and fix shutdown issuesv1.7 | Trumeet | |
2021-03-27 | fix(agent): use /128 for non-ll IPv6 addresses | Trumeet | |
2021-03-27 | fix(central): remove unnecessary semicolon in the sample configurations | Trumeet | |
2021-03-27 | feat(central/agent/rpc): upgrade Vert.x to 4.0.3 | Trumeet | |
2021-02-03 | fix(central): do not check duplication for Link-Local IPv6 addressesv1.6 | Trumeet | |