github-personal/firezone
1
0
Fork 0
mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
370a0e4b4e19d3105e980877ea19d1c083591ebf
firezone/rust
History
Thomas Eizinger 370a0e4b4e fix(snownet): invalidate allocation on invalid credentials (#4537) 
When a relay restarts, our local credentials will be invalid and no
amount of retrying can fix this.

Currently, the `Allocation` can end up in busy-looping state if:

1. The allocation would be due for a refresh
2. The relay was restarted
3. We haven't received new credentials yet because we haven't made a new
connection attempt that uses the same relay

The above was observed in #4521 and results in log-spam of:

> Invalid credentials, refusing to re-authenticate refresh

One part of the state machine correctly discards the message instead of
re-sending it. Unfortunately, the result of (1) means there is still a
timer that fires and attempts to refresh the allocation.

To stop this busy-looping behaviour, we need to invalidate the
allocation if we detect that our credentials are wrong. This will also
invalidate the candidates which will fail any connection that is
currently using this relay. This would have likely already happened
before because a relay that is restarted would have lost all channel
bindings and thus, the ICE timeout will kick-in.
2024-04-08 22:55:00 +00:00
..
client-tunnel
refactor(client-tunnel): remove redundant main (#4478)
2024-04-03 21:55:55 +00:00
connlib
fix(snownet): invalidate allocation on invalid credentials (#4537)
2024-04-08 22:55:00 +00:00
firezone-cli-utils
chore(rust): remove unused dependencies (#4475)
2024-04-03 14:11:02 +00:00
gateway
fix(gateway): don't errenously suspend eventloop (#4486)
2024-04-03 17:24:38 -06:00
gui-client
build(deps): Bump reqwest from 0.12.1 to 0.12.2 in /rust (#4436)
2024-04-08 13:57:56 +00:00
http-health-check
build(deps): Bump clap from 4.5.3 to 4.5.4 in /rust (#4433)
2024-04-02 18:31:17 +00:00
http-test-server
chore: apply lints consistently across workspace (#4357)
2024-03-28 06:09:22 +00:00
linux-client
refactor(linux-client): extract all code to firezone-client-tunnel (#4448)
2024-04-02 16:59:29 +00:00
phoenix-channel
chore(rust): enforce no wildcard matching (#4491)
2024-04-08 12:06:37 +00:00
relay
chore(rust): enforce no wildcard matching (#4491)
2024-04-08 12:06:37 +00:00
snownet-tests
chore: apply lints consistently across workspace (#4357)
2024-03-28 06:09:22 +00:00
.dockerignore
refactor(portal): Don't pin session token to user_agent or remote_ip (#2195)
2023-09-30 07:40:57 -07:00
.gitignore
Implement basic STUN server (#1603)
2023-05-10 07:58:32 -07:00
Cargo.lock
build(deps): Bump swift-bridge from 0.1.52 to 0.1.53 in /rust (#4541)
2024-04-08 14:56:00 +00:00
Cargo.toml
build(deps): Bump swift-bridge from 0.1.52 to 0.1.53 in /rust (#4541)
2024-04-08 14:56:00 +00:00
clippy.toml
chore: apply lints consistently across workspace (#4357)
2024-03-28 06:09:22 +00:00
docker-compose-dev.yml
chore(docker): Fix docker image local builds (#4127)
2024-03-14 00:06:10 +00:00
docker-init.sh
chore(ci): enforce shellscript formatting and style (#3679)
2024-02-21 01:01:32 +00:00
Dockerfile
build(rust): Use Rust base image and bump to 1.77 (#4401)
2024-03-31 15:01:27 +00:00
README.md
chore(ci): enforce shellscript formatting and style (#3679)
2024-02-21 01:01:32 +00:00
rust-toolchain.toml
build(rust): Use Rust base image and bump to 1.77 (#4401)
2024-03-31 15:01:27 +00:00

README.md

Rust development guide

Firezone uses Rust for all data plane components. This directory contains the Linux and Windows clients, and low-level networking implementations related to STUN/TURN.

We target the last stable release of Rust using rust-toolchain.toml. If you are using rustup, that is automatically handled for you. Otherwise, ensure you have the latest stable version of Rust installed.

Reference in New Issue View Git Blame Copy Permalink