Mitchell Hashimoto
b88023c607
connect/proxy: don't start public listener if 0 port
2018-06-14 09:42:21 -07:00
Mitchell Hashimoto
27aa0743ec
connect/proxy: use the right variable for loading the new service
2018-06-14 09:42:20 -07:00
Mitchell Hashimoto
b28e2b8622
connect/proxy: don't require proxy ID
2018-06-14 09:42:20 -07:00
Paul Banks
957aaf69ab
Make Service logger log to right place again
2018-06-14 09:42:17 -07:00
Paul Banks
69b668c951
Make connect client resolver resolve trust domain properly
2018-06-14 09:42:17 -07:00
Paul Banks
834ed1d25f
Fixed many tests after rebase. Some still failing and seem unrelated to any connect changes.
2018-06-14 09:42:16 -07:00
Mitchell Hashimoto
9435d8088c
command/connect/proxy: set proxy ID from env var if set
2018-06-14 09:42:14 -07:00
Paul Banks
02ab461dae
TLS watching integrated into Service with some basic tests.
...
There are also a lot of small bug fixes found when testing lots of things end-to-end for the first time and some cleanup now it's integrated with real CA code.
2018-06-14 09:42:07 -07:00
Paul Banks
554f367dad
Fix build error introduced in bad merge of TLS stuff
2018-06-14 09:42:07 -07:00
Paul Banks
8b38cdaba1
Add TODO for false-sharing
2018-06-14 09:42:07 -07:00
Paul Banks
4c1b82834b
Add support for measuring tx/rx packets through proxied connections.
2018-06-14 09:42:06 -07:00
Paul Banks
2b1660fdf7
Fix tests and listeners to work with Config changes (splitting host and port fields)
2018-06-14 09:42:05 -07:00
Paul Banks
072b2a79ca
Support legacy watch.HandlerFunc type for backward compat reduces impact of change
2018-06-14 09:42:05 -07:00
Paul Banks
eca94dcc92
Working proxy config reload tests
2018-06-14 09:42:05 -07:00
Paul Banks
6f566f750e
Basic watch
support for connect proxy config and certificate endpoints.
...
- Includes some bug fixes for previous `api` work and `agent` that weren't tested
- Needed somewhat pervasive changes to support hash based blocking - some TODOs left in our watch toolchain that will explicitly fail on hash-based watches.
- Integration into `connect` is partially done here but still WIP
2018-06-14 09:42:05 -07:00
Paul Banks
53dc914d21
Refactor reloadableTLSConfig and verifyier shenanigans into simpler dynamicTLSConfig
2018-06-14 09:42:05 -07:00
Paul Banks
216e74b4ad
Connect verification and AuthZ
2018-06-14 09:42:05 -07:00
Paul Banks
93ff59a132
Fix racy connect network tests that always fail in Docker due to listen races
2018-06-14 09:42:04 -07:00
Paul Banks
9d11cd9bf4
Fix various test failures and vet warnings.
...
Intention de-duplication in previously merged PR actualy failed some tests that were not caught be me or CI. I ran the test files for state changes but they happened not to trigger this case so I made sure they did first and then fixed. That fixed some upstream intention endpoint tests that I'd not run as part of testing the previous fix.
2018-06-14 09:41:58 -07:00
Paul Banks
51b1bc028d
Rework connect/proxy and command/connect/proxy. End to end demo working again
2018-06-14 09:41:57 -07:00
Paul Banks
67669abf82
Remove old connect client and proxy implementation
2018-06-14 09:41:56 -07:00
Paul Banks
2d6a2ce1e3
connect.Service based implementation after review feedback.
2018-06-14 09:41:56 -07:00
Paul Banks
800deb693c
Original proxy and connect.Client implementation. Working end to end.
2018-06-14 09:41:56 -07:00
Mitchell Hashimoto
a360c5cca4
agent/consul: basic sign endpoint not tested yet
2018-06-14 09:41:51 -07:00
Mitchell Hashimoto
d4e232f69b
connect: create connect package for helpers
2018-06-14 09:41:50 -07:00