Tags: RyanL-29/firezone
Tags
fix(connlib): match exact domains before wildcard ones (firezone#6809) Currently, the order in which connlib matches against the patterns of DNS resources is not specified. We simply iterate over all patterns and take the first one that matches. Due to the iteration order of `HashMap`s, this also isn't deterministic. With this patch, we introduce a defined order in which we attempt to match a particular domain against the defined DNS resources: - Resources without wildcards are always prioritised over wildcard domains - Single-char wildcards (`?`) take priority over label wildcards (`*`) - Label wildcards (`*`) take priority over catch-all wildcards (`**`) By matching against the DNS resources in a defined order, we ensure that DNS resources that overlap always resolve to the most specific resource. --------- Signed-off-by: Thomas Eizinger <[email protected]> Co-authored-by: Reactor Scram <[email protected]>
fix(connlib): match exact domains before wildcard ones (firezone#6809) Currently, the order in which connlib matches against the patterns of DNS resources is not specified. We simply iterate over all patterns and take the first one that matches. Due to the iteration order of `HashMap`s, this also isn't deterministic. With this patch, we introduce a defined order in which we attempt to match a particular domain against the defined DNS resources: - Resources without wildcards are always prioritised over wildcard domains - Single-char wildcards (`?`) take priority over label wildcards (`*`) - Label wildcards (`*`) take priority over catch-all wildcards (`**`) By matching against the DNS resources in a defined order, we ensure that DNS resources that overlap always resolve to the most specific resource. --------- Signed-off-by: Thomas Eizinger <[email protected]> Co-authored-by: Reactor Scram <[email protected]>
refactor(android): Fix Kotlin compile warnings (firezone#6773) Somehow these snuck in. I would turn on warnings-as-errors but we are using deprecated functions that don't have good replacements.
refactor(android): Fix Kotlin compile warnings (firezone#6773) Somehow these snuck in. I would turn on warnings-as-errors but we are using deprecated functions that don't have good replacements.
revert: "chore(connlib): don't add routes for DNS sentinel servers" (f… …irezone#6775) Reverts firezone#6755 The problem was that ipv6 dns sentinel range falls outside the dns resources ipv6 range..
docs: Add ServerAliveInterval as workaround for firezone#6347 (firezo… …ne#6689) Setting the SSH ServerAliveInterval should prevent the issue seen in firezone#6347 until firezone#6335 is merged
chore: use ubuntu-22.04-runners (firezone#6626) Looks like the ubuntu-20.04-arm runner is no longer available 👎
chore: add changelogs for Android 1.3.2 and GUI 1.3.1 (firezone#6599) In preparation for 1.3.1 --------- Signed-off-by: Gabi <[email protected]> Co-authored-by: Thomas Eizinger <[email protected]>
chore: add changelogs for Android 1.3.2 and GUI 1.3.1 (firezone#6599) In preparation for 1.3.1 --------- Signed-off-by: Gabi <[email protected]> Co-authored-by: Thomas Eizinger <[email protected]>
chore: add changelogs for Android 1.3.2 and GUI 1.3.1 (firezone#6599) In preparation for 1.3.1 --------- Signed-off-by: Gabi <[email protected]> Co-authored-by: Thomas Eizinger <[email protected]>
PreviousNext