mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 10:18:54 +00:00

Files

Thomas Eizinger cd177a6448 fix(gateway): don't remove peer state on disconnect (#10040 )

When the connection to a Client disappears, the Gateway currently clears
all state related to this peer. Whilst eagerly cleaning up memory can be
good, in this case, it may lead to the Client thinking it has access to
a resource when in reality it doesn't.

Just because the connection to a Client failed doesn't mean their access
authorizations are invalid. In case the Client reconnects, it should be
able to just continue sending traffic.

At the moment, this only works if the connection also failed on the
Client and therefore, its view of the world in regards to "which
resources do I have access to" was also reset.

What we are seeing in Sentry reports though is that Clients are
attempting to access these resources, thinking they have access but the
Gateway denies it because it has lost the access authorization state.

2025-08-02 08:27:49 +00:00

bufferpool

refactor(connlib): use a lock-free queue for the buffer pool (#9989 )

2025-07-28 21:39:11 +00:00

dns-over-tcp

chore(connlib): gate more trace logs on debug_assertions (#10026 )

2025-07-28 21:38:23 +00:00

dns-types

build(deps): bump domain from 0.10.4 to 0.11.0 in /rust (#9274 )

2025-05-28 10:37:16 +00:00

etherparse-ext

refactor(rust): move crates into a more sensical hierarchy (#9066 )

2025-05-12 01:04:17 +00:00

ip-packet

refactor(connlib): simplify IpPacket struct (#9795 )

2025-07-29 04:42:57 +00:00

l3-tcp

test(connlib): establish real TCP connections in proptests (#9814 )

2025-07-11 15:10:22 +00:00

l4-tcp-dns-server

chore(rust): bump to Rust 1.88 (#9714 )

2025-07-12 06:42:50 +00:00

l4-udp-dns-server

build(rust): upgrade to Rust 1.85 and Edition 2024 (#8240 )

2025-03-19 02:58:55 +00:00

model

feat(connlib): always use candidates in order of priority (#10063 )

2025-08-01 01:57:29 +00:00

phoenix-channel

fix(connlib): clear join requests on reconnect (#9985 )

2025-07-24 20:41:26 +00:00

snownet

fix(gateway): don't remove peer state on disconnect (#10040 )

2025-08-02 08:27:49 +00:00

socket-factory

refactor(connlib): only enable wire logs in debug builds (#10002 )

2025-07-25 12:24:25 +00:00

tun

ci: update to new cargo sort release (#9354 )

2025-06-02 02:01:09 +00:00

tunnel

fix(gateway): don't remove peer state on disconnect (#10040 )

2025-08-02 08:27:49 +00:00

.gitignore

android: update connlib dependency and integration (#1752 )

2023-07-17 18:50:39 +00:00

README.md

chore(docs): Remove outdated rust/connlib/README.md info (#3099 )

2024-01-03 18:10:52 +00:00

README.md

Connlib

Firezone's connectivity library shared by all clients.

Building Connlib

You shouldn't need to build connlib directly; it's typically built as a dependency of one of the other Firezone components. See READMEs in those directories for relevant instructions.