Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | [backport-735-v0.8.x] backport AWS signature verification refactoring | Alex Auvolat | 2024-03-01 | 6 | -255/+431 |
| | |||||
* | Merge pull request 'Security: backport #737 to the v0.8.x branch' (#740) ↵ | Alex | 2024-03-01 | 5 | -73/+176 |
|\ | | | | | | | | | | | from backport-737-0.8.x into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/740 | ||||
| * | [fix-auth-ct-eq] use consant time comparison for awsv4 signature verificationbackport-737-0.8.x | Alex Auvolat | 2024-02-29 | 1 | -3/+3 |
| | | |||||
| * | [fix-auth-ct-eq] use argon2 hashing and verification for admin/metrics token ↵ | Alex Auvolat | 2024-02-29 | 4 | -70/+173 |
|/ | | | | checking | ||||
* | Merge pull request 'Backport woodpecker CI to v0.8.x branch' (#741) from ↵ | Alex | 2024-02-29 | 4 | -288/+139 |
|\ | | | | | | | | | | | woodpecker-0.8.x into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/741 | ||||
| * | [woodpecker-0.8.x] backport woodpecker CI to v0.8.x branchwoodpecker-0.8.x | Alex Auvolat | 2024-02-29 | 4 | -288/+139 |
|/ | |||||
* | Merge pull request 'Garage v0.8.5' (#687) from rel-0.8.5 into main-0.8.xv0.8.5 | Alex | 2024-01-16 | 13 | -87/+87 |
|\ | | | | | | | Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/687 | ||||
| * | Bump version to 0.8.5 | Alex Auvolat | 2024-01-16 | 13 | -87/+87 |
|/ | |||||
* | Merge pull request 'monitoring: finer histogram boundaries in prometheus ↵ | Alex | 2024-01-15 | 1 | -1/+8 |
|\ | | | | | | | | | | | metrics (fix #531)' (#686) from fix-531 into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/686 | ||||
| * | monitoring: finer histogram boundaries in prometheus metrics (fix #531) | Alex Auvolat | 2024-01-15 | 1 | -1/+8 |
| | | |||||
* | | Merge pull request '0.8.x: config: refactor secret sourcing' (#685) from ↵ | Alex | 2024-01-15 | 9 | -276/+336 |
|\ \ | |/ |/| | | | | | | | secret-sourcing into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/685 | ||||
| * | config: additional tests for secret sourcing | Alex Auvolat | 2024-01-15 | 1 | -2/+40 |
| | | |||||
| * | config: refactor secret sourcing | Alex Auvolat | 2024-01-15 | 9 | -276/+298 |
|/ | |||||
* | Merge pull request 'Add allow_world_readable_secrets option to config file' ↵ | Alex | 2024-01-15 | 2 | -5/+89 |
|\ | | | | | | | | | | | (#663) from PicNoir/garage:nin/world-readable-conf-file into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/663 | ||||
| * | Add allow_world_readable_secrets option to config file | Félix Baylac Jacqué | 2023-10-26 | 2 | -5/+89 |
|/ | | | | | | | | | | | | | | | | | | | Sometimes, the secret files permissions checks gets in the way. It's by no mean complete, it doesn't take the Posix ACLs into account among other things. Correctly checking the ACLs would be too involving (see https://git.deuxfleurs.fr/Deuxfleurs/garage/issues/658#issuecomment-7102) and would likely still fail in some weird chmod settings. We're adding a new configuration file key allowing the user to disable this permission check altogether. The (already existing) env variable counterpart always take precedence to this config file option. That's useful in cases where the configuration file is static and cannot be easily altered. Fixes https://git.deuxfleurs.fr/Deuxfleurs/garage/issues/658 Co-authored-by: Florian Klink <flokli@flokli.de> | ||||
* | Merge pull request 's3 api: add missing CORS headers to PostObject responses ↵ | Alex | 2023-10-26 | 1 | -3/+10 |
|\ | | | | | | | | | | | (fix #609)' (#656) from fix-cors-post-object into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/656 | ||||
| * | s3 api: add missing CORS headers to PostObject responses (fix #609)fix-cors-post-object | Alex Auvolat | 2023-10-20 | 1 | -3/+10 |
|/ | |||||
* | Merge pull request 'Add support for specifying `rpc_secret_file`, ↵ | Alex | 2023-10-19 | 5 | -25/+57 |
|\ | | | | | | | | | | | `metrics_token_file` and `admin_token_file` using environment variables' (#643) from networkException/garage:token-file-env into main-0.8.x Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/643 | ||||
| * | garage: support specifying token / secret as environment variables | networkException | 2023-10-19 | 3 | -5/+29 |
| | | | | | | | | | | this patch adds support for specifying the `rpc_secret_file`, `metrics_token_file` and `admin_token_file` as environment variables. | ||||
| * | garage: fix admin-token description | networkException | 2023-10-19 | 1 | -1/+1 |
| | | |||||
| * | util: move reading secret file into seperate helper | networkException | 2023-10-19 | 1 | -16/+19 |
| | | | | | | | | | | | | this patch moves the logic to read a secret file (and check for correct permissions) from `secret_from_file` into a new `read_secret_file` helper. | ||||
| * | docs: add documentation for specifying token / secret file as environment ↵ | networkException | 2023-10-19 | 1 | -3/+8 |
| | | | | | | | | variables | ||||
* | | Merge pull request 'Move convert_db command into main garage binary' (#645) ↵ | Alex | 2023-10-10 | 5 | -30/+32 |
|\ \ | |/ |/| | | | | | | | from convert-db-main-binary into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/645 | ||||
| * | Move convert_db command into main garage binaryconvert-db-main-binary | Alex Auvolat | 2023-10-10 | 5 | -30/+32 |
|/ | |||||
* | Merge pull request 'Add support for binding to unix domain sockets' (#640) ↵ | Alex | 2023-10-03 | 14 | -36/+213 |
|\ | | | | | | | | | | | from networkException/garage:unix-sockets into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/640 | ||||
| * | doc: add documentation for specifying unix socket paths | networkException | 2023-10-03 | 1 | -0/+7 |
| | | |||||
| * | api: allow custom unix bind mode and use 0o220 for admin server | networkException | 2023-10-03 | 4 | -4/+8 |
| | | |||||
| * | everywhere: support unix sockets when binding in various places | networkException | 2023-09-29 | 6 | -28/+108 |
| | | | | | | | | | | this patch implements binding to paths as a unix socket for generic server and web server. | ||||
| * | config: allow using paths for unix domain sockets in various places | networkException | 2023-09-29 | 1 | -4/+5 |
| | | | | | | | | | | | | | | this patch updates the config format to also allow paths in bind addresses for unix domain sockets. this has been added to all apis except rpc. | ||||
| * | util: add helper sum type for unix and tcp socket addresses | networkException | 2023-09-29 | 2 | -0/+45 |
| | | | | | | | | | | this patch introduces a new sum type that can represent either a tcp socket address or a unix domain socket path. | ||||
| * | cargo: add hyperlocal as a dependency | networkException | 2023-09-29 | 4 | -1/+41 |
| | | |||||
* | | Merge pull request 'doc: update endpoint_url documentation' (#641) from ↵ | Alex | 2023-10-02 | 4 | -8/+11 |
|\ \ | |/ |/| | | | | | | | flokli/garage:aws-endpoint-url into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/641 | ||||
| * | doc: update endpoint_url documentation | Florian Klink | 2023-10-02 | 4 | -8/+11 |
|/ | | | | | | | | | | | Since `awscli` `>=1.29.0` or `>=2.13.0` it is now possible to use the `AWS_ENDPOINT_URL` environment variable, or the `endpoint_url` config key to override the endpoint URL. This means, the aws bash function to wrap with --endpoint-url is not necessary anymore. Update invocations to reflect that. https://docs.aws.amazon.com/sdkref/latest/guide/feature-ss-endpoints.html https://github.com/aws/aws-cli/issues/4454#issuecomment-1626116607 | ||||
* | Merge pull request 'prez-ocp' (#636) from prez-ocp into main | Alex | 2023-09-21 | 75 | -0/+19773 |
|\ | | | | | | | Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/636 | ||||
| * | add ocp2023 presentationprez-ocp | Alex Auvolat | 2023-09-19 | 71 | -0/+19772 |
| | | |||||
| * | doc: update sticker | Alex Auvolat | 2023-09-18 | 4 | -0/+1 |
|/ | |||||
* | Merge pull request 'Fix multiple shutdown issues' (#633) from fix-shutdown ↵ | Alex | 2023-09-12 | 2 | -19/+26 |
|\ | | | | | | | | | | | into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/633 | ||||
| * | fix hang on shutdown | Alex Auvolat | 2023-09-12 | 1 | -9/+9 |
| | | |||||
| * | Fix error when none of S3/K2V/WEB/ADMIN server is started (fix #613) | Alex Auvolat | 2023-09-12 | 1 | -10/+17 |
|/ | |||||
* | Merge pull request 'fix 32-bit build' (#632) from fix-32bit into main | Alex | 2023-09-11 | 1 | -2/+2 |
|\ | | | | | | | Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/632 | ||||
| * | fix 32-bit buildfix-32bit | Alex Auvolat | 2023-09-11 | 1 | -2/+2 |
|/ | |||||
* | Merge pull request 'use statvfs instead of mount list to determine free ↵ | Alex | 2023-09-11 | 4 | -45/+39 |
|\ | | | | | | | | | | | data/meta space (fix #611)' (#631) from fix-free-space into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/631 | ||||
| * | use statvfs instead of mount list to determine free data/meta space (fix #611) | Alex Auvolat | 2023-09-11 | 4 | -45/+39 |
|/ | |||||
* | Merge pull request 'make lmdb's map_size configurable (fix #628)' (#630) ↵ | Alex | 2023-09-11 | 6 | -12/+81 |
|\ | | | | | | | | | | | from configurable-map-size into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/630 | ||||
| * | config: make block_size and sled_cache_capacity expressable as strings | Alex Auvolat | 2023-09-11 | 7 | -28/+69 |
| | | |||||
| * | make lmdb's map_size configurable (fix #628) | Alex Auvolat | 2023-09-11 | 6 | -2/+30 |
|/ | |||||
* | Merge pull request 'Revert netapp to 0.5.2 to avoid rmp-serde upgrade that ↵ | Alex | 2023-09-05 | 13 | -123/+100 |
|\ | | | | | | | | | | | breaks things' (#627) from hold-netapp-0.5.2 into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/627 | ||||
| * | update version to 0.8.4v0.8.4hold-netapp-0.5.2 | Alex Auvolat | 2023-09-05 | 13 | -89/+88 |
| | | |||||
| * | Revert netapp update, hold to version 0.5.2 that uses rmp-serde 0.15 | Alex Auvolat | 2023-09-05 | 3 | -38/+16 |
|/ | |||||
* | Merge pull request 'Garage v0.8.3' (#619) from next-0.8 into mainv0.8.3 | Alex | 2023-08-29 | 23 | -130/+159 |
|\ | | | | | | | Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/619 |