From 147d0b9c2da59e2fb7f7dfa0a7a7d5ec0efead62 Mon Sep 17 00:00:00 2001 From: Paul Lorenz Date: Thu, 25 May 2023 16:12:36 -0400 Subject: [PATCH] Update changelog and deps --- CHANGELOG.md | 52 +++++++++++++++++++++++++++++++++++++++------------- go.mod | 6 +++--- go.sum | 12 ++++++------ 3 files changed, 48 insertions(+), 22 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 628acd157..881899f4f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -16,6 +16,7 @@ * `-k/--client-key` allows a key to be supplied to login (used with `-c/--client-cert`) * Config type changes * address fields in `intercept.v1`, `host.v1`, and `host.v2` config types now permit hostnames with underscores. +* Edge Router/Tunneler now supports setting default UDP idle timeout/check interval ## Event Changes @@ -181,19 +182,40 @@ Example output: } ``` -## Component Updates and Bug Fixes +## ER/T UDP Settings + +The edge router tunneler now allows configuring a timeout and check interval for tproxy UDP intercepts. By default intercepted UDP +connections will be closed after five minutes of no traffic, checking every thirty seconds. The configuration is done in the router +config file, in the options for the tunnel module. Note that these configuration options only apply to tproxy intercepts, not to +proxy or host side UDP connections. + +Example configuration: -* github.com/openziti/channel/v2: [v2.0.58 -> v2.0.64](https://github.com/openziti/channel/compare/v2.0.58...v2.0.64) +```yaml +listeners: + - binding: tunnel + options: + mode: tproxy + udpIdleTimeout: 10s + udpCheckInterval: 5s +``` + +## Component Updates and Bug Fixes +* github.com/openziti/agent: [v1.0.10 -> v1.0.13](https://github.com/openziti/agent/compare/v1.0.10...v1.0.13) +* github.com/openziti/channel/v2: [v2.0.58 -> v2.0.78](https://github.com/openziti/channel/compare/v2.0.58...v2.0.78) * [Issue #98](https://github.com/openziti/channel/issues/98) - Set default connect timeout to 5 seconds -* github.com/openziti/edge: [v0.24.239 -> v0.24.300](https://github.com/openziti/edge/compare/v0.24.239...v0.24.300) +* github.com/openziti/edge: [v0.24.239 -> v0.24.309](https://github.com/openziti/edge/compare/v0.24.239...v0.24.309) + * [Issue #1503](https://github.com/openziti/edge/issues/1503) - Support configurable UDP idle timeout and check interval for tproxy in edge router tunneler * [Issue #1471](https://github.com/openziti/edge/issues/1471) - UDP intercept connections report incorrect local/remote addresses, making confusing events * [Issue #629](https://github.com/openziti/edge/issues/629) - emit entity change events * [Issue #1295](https://github.com/openziti/edge/issues/1295) - Ensure DB migrations work properly in a clustered setup (edge) * [Issue #1418](https://github.com/openziti/edge/issues/1418) - Checks for session edge router availablility are inefficient -* github.com/openziti/edge-api: [v0.25.11 -> v0.25.18](https://github.com/openziti/edge-api/compare/v0.25.11...v0.25.18) -* github.com/openziti/fabric: [v0.22.87 -> v0.23.11](https://github.com/openziti/fabric/compare/v0.22.87...v0.23.11) +* github.com/openziti/edge-api: [v0.25.11 -> v0.25.24](https://github.com/openziti/edge-api/compare/v0.25.11...v0.25.24) +* github.com/openziti/fabric: [v0.22.87 -> v0.23.29](https://github.com/openziti/fabric/compare/v0.22.87...v0.23.29) + * [Issue #724](https://github.com/openziti/fabric/issues/724) - Controller should be notified of forwarding faults on links + * [Issue #725](https://github.com/openziti/fabric/issues/725) - If reroute fails, circuit should be torn down * [Issue #706](https://github.com/openziti/fabric/issues/706) - Fix panic in link close * [Issue #700](https://github.com/openziti/fabric/issues/700) - Additional Health Checks exposed on Edge Router * [Issue #595](https://github.com/openziti/fabric/issues/595) - Add include filtering for V3 usage metrics @@ -203,15 +225,19 @@ Example output: * [Issue #582](https://github.com/openziti/fabric/issues/582) - Ensure DB migrations work properly in a clustered setup (fabric) * [Issue #668](https://github.com/openziti/fabric/issues/668) - Add network.Run watchdog, to warn if processing is delayed -* github.com/openziti/foundation/v2: [v2.0.21 -> v2.0.22](https://github.com/openziti/foundation/compare/v2.0.21...v2.0.22) -* github.com/openziti/identity: [v1.0.45 -> v1.0.48](https://github.com/openziti/identity/compare/v1.0.45...v1.0.48) -* github.com/openziti/runzmd: [v1.0.20 -> v1.0.21](https://github.com/openziti/runzmd/compare/v1.0.20...v1.0.21) -* github.com/openziti/sdk-golang: [v0.18.76 -> v0.20.20](https://github.com/openziti/sdk-golang/compare/v0.18.76...v0.20.20) -* github.com/openziti/storage: [v0.1.49 -> v0.2.2](https://github.com/openziti/storage/compare/v0.1.49...v0.2.2) -* github.com/openziti/transport/v2: [v2.0.72 -> v2.0.77](https://github.com/openziti/transport/compare/v2.0.72...v2.0.77) -* github.com/openziti/metrics: [v1.2.19 -> v1.2.21](https://github.com/openziti/metrics/compare/v1.2.19...v1.2.21) -* github.com/openziti/secretstream: v0.1.7 (new) +* github.com/openziti/foundation/v2: [v2.0.21 -> v2.0.24](https://github.com/openziti/foundation/compare/v2.0.21...v2.0.24) +* github.com/openziti/identity: [v1.0.45 -> v1.0.54](https://github.com/openziti/identity/compare/v1.0.45...v1.0.54) +* github.com/openziti/runzmd: [v1.0.20 -> v1.0.24](https://github.com/openziti/runzmd/compare/v1.0.20...v1.0.24) +* github.com/openziti/sdk-golang: [v0.18.76 -> v0.20.51](https://github.com/openziti/sdk-golang/compare/v0.18.76...v0.20.51) + * [Issue #407](https://github.com/openziti/sdk-golang/issues/407) - Allowing filtering which edge router urls the sdk uses + * [Issue #394](https://github.com/openziti/sdk-golang/issues/394) - SDK does not recover from API session expiration (during app/computer suspend) + +* github.com/openziti/storage: [v0.1.49 -> v0.2.6](https://github.com/openziti/storage/compare/v0.1.49...v0.2.6) +* github.com/openziti/transport/v2: [v2.0.72 -> v2.0.88](https://github.com/openziti/transport/compare/v2.0.72...v2.0.88) +* github.com/openziti/metrics: [v1.2.19 -> v1.2.25](https://github.com/openziti/metrics/compare/v1.2.19...v1.2.25) +* github.com/openziti/secretstream: v0.1.8 (new) * github.com/openziti/ziti: [v0.27.9 -> v0.28.0](https://github.com/openziti/ziti/compare/v0.27.9...v0.28.0) + * [Issue #1112](https://github.com/openziti/ziti/issues/1112) - `ziti pki create` creates CA's and intermediates w/ the same DN * [Issue #1087](https://github.com/openziti/ziti/issues/1087) - re-enable CI in forks * [Issue #1013](https://github.com/openziti/ziti/issues/1013) - docker env password is renewed at each `docker-compose up` * [Issue #1077](https://github.com/openziti/ziti/issues/1077) - Show auth-policy name on identity list instead of id diff --git a/go.mod b/go.mod index b4a09ff32..726e1bf45 100644 --- a/go.mod +++ b/go.mod @@ -22,13 +22,13 @@ require ( github.com/michaelquigley/pfxlog v0.6.10 github.com/openziti/agent v1.0.13 github.com/openziti/channel/v2 v2.0.78 - github.com/openziti/edge v0.24.304 + github.com/openziti/edge v0.24.309 github.com/openziti/edge-api v0.25.24 - github.com/openziti/fabric v0.23.27 + github.com/openziti/fabric v0.23.29 github.com/openziti/foundation/v2 v2.0.24 github.com/openziti/identity v1.0.54 github.com/openziti/runzmd v1.0.24 - github.com/openziti/sdk-golang v0.20.49 + github.com/openziti/sdk-golang v0.20.51 github.com/openziti/storage v0.2.6 github.com/openziti/transport/v2 v2.0.88 github.com/openziti/xweb/v2 v2.0.2 diff --git a/go.sum b/go.sum index 7964ae1f2..8a255f275 100644 --- a/go.sum +++ b/go.sum @@ -725,12 +725,12 @@ github.com/openziti/channel/v2 v2.0.78 h1:zY6olGzk0i7RdwnQQYV4J3aJmtuWqpTNUpbCKr github.com/openziti/channel/v2 v2.0.78/go.mod h1:yajD/OlGYESMURbogY+myEUZ49fWERPbIhU6kcDnQHE= github.com/openziti/dilithium v0.3.3 h1:PLgQ6PMNLSTzCFbX/h98cmudgz/cU6TmjdSv5NAPD8k= github.com/openziti/dilithium v0.3.3/go.mod h1:vsCjI2AU/hon9e+dLhUFbCNGesJDj2ASgkySOcpmvjo= -github.com/openziti/edge v0.24.304 h1:ktxsiU/ykZlP+IaQpDbF2fsMVigi53IoXu60tzcBUMo= -github.com/openziti/edge v0.24.304/go.mod h1:lfw3H/8gzuTdfkJ9HkKTMbwtRzUuBTfzLJTfQkxNu6o= +github.com/openziti/edge v0.24.309 h1:EGZZ7GqI6/2y8zoNc0Tb11DpHtDG3YTNMUChulFTDL4= +github.com/openziti/edge v0.24.309/go.mod h1:UDlCvgpuzQ6FFugSK0Sim7214c1O+7ahiOX5tvhJaP4= github.com/openziti/edge-api v0.25.24 h1:XrF3AtF9mnJXgG7rSV2M50Dj/EKUkBUaDdb9/n2TDHI= github.com/openziti/edge-api v0.25.24/go.mod h1:rmEkj8jAkBTUhhgE/GFXije6bpFbd2P9TzdxTqZlXI8= -github.com/openziti/fabric v0.23.27 h1:xD2A46a4pc/pZZvOuWrIosOecHL+orNQuF5JVsEiJlc= -github.com/openziti/fabric v0.23.27/go.mod h1:OTJncC5IA56+Fa/L80jyxZZ1tR0rkRc/hxSbbrLs5UQ= +github.com/openziti/fabric v0.23.29 h1:FbAeUhfkNGYPNCYo3BFzRByvMTKhscxJEQxYU0BJJdA= +github.com/openziti/fabric v0.23.29/go.mod h1:/M8URo+qloi39qG0QWvXTgtpiPPneNYOjR+VvywS0cw= github.com/openziti/foundation/v2 v2.0.24 h1:cNJCbh4o9E+7mtSUDo7ZBuMoPjJAilDWgr7X8ntRz/Q= github.com/openziti/foundation/v2 v2.0.24/go.mod h1:H0w/ldKyE0ynwpIwt68k2rhMwt874IVxPQcimMuHJ3s= github.com/openziti/identity v1.0.54 h1:1O/i3hnm5oCuHlOXesx4+aC2bXeTGoT+Rg1l2xZF14Y= @@ -741,8 +741,8 @@ github.com/openziti/metrics v1.2.25 h1:acD/J/DcWgfbhmKS/s3HDvpt/1WS3QBZPeeGBZHbj github.com/openziti/metrics v1.2.25/go.mod h1:s2r1FS+wUdJ3LXp1qJK6777iQ8gPWXE2HFfDsiJo1/Y= github.com/openziti/runzmd v1.0.24 h1:jSwfqpA6SLCtpDUzdQl92gECc08itE8eFeHYdaJu4tY= github.com/openziti/runzmd v1.0.24/go.mod h1:NX3EPWMDZPIPNUztDOkLrV6akqdC/P/X0UUeAL63V58= -github.com/openziti/sdk-golang v0.20.49 h1:Ci/t+vod43aQF66wuIVYJBHPsNkeUllQ/6deXPpoAgY= -github.com/openziti/sdk-golang v0.20.49/go.mod h1:TJO7F1mFfWX2p6kCBtIx+7jS+kwX01ZkkxsZQxDJwCE= +github.com/openziti/sdk-golang v0.20.51 h1:oVqo9kyh8OKtAAX4yrJIJa5nn6qZDvpfUqOlBPnqb14= +github.com/openziti/sdk-golang v0.20.51/go.mod h1:Ecgf8vgPSLOP7EgQgb3juv2UwsKbu37G1NHSqioTUCs= github.com/openziti/secretstream v0.1.8 h1:AgPHLDuXTiM1apHQmBvwvSW1vbQqAm7wUJDHqkQ/6Nk= github.com/openziti/secretstream v0.1.8/go.mod h1:qcF8EmSX5SAT8k2pzsDI4bWugopv9AA+ltgWDrcAAEw= github.com/openziti/storage v0.2.6 h1:/pbIRzDwrczMWRVkN75PfwAXFbArplIqhpRsUrsUOBc=