Releases · cloudflare/gokeyless

06 Apr 16:20

v1.6.6

bb79ea6

v1.6.6

Changelog

5b78b34 Add explicit import as required by go 1.17 (#295)
8690614 Add function to access remote connection pool (#311)
bbb1c46 Add missing tags to protocol reference
233a981 Adjust logging and metrics to match earlier versions (#297)
eeea3b5 Better timeout handling (#299)
8d296e6 Bump golang.org/x/crypto from 0.0.0-20201221181555-eec23a3978ad to 0.1.0
7b22d2e Bump golang.org/x/net from 0.1.0 to 0.7.0
85d125c Bump gopkg.in/yaml.v2 from 2.2.2 to 2.2.8
4c30a19 Enable concurrent outstanding RPC requests (#300)
3497362 Enable configuration of maxConnPendingRequests (#291)
d4df7ff Fix protocol reference
2693c99 Merge pull request #289 from cloudflare/nicky/readme-updates
6fe9f93 Merge pull request #303 from cloudflare/dependabot/go_modules/gopkg.in/yaml.v2-2.2.8
2f23be9 Merge pull request #304 from cloudflare/nicky/misc-err-handling
b42ffe1 Merge pull request #305 from cloudflare/nicky/eof
1a9e350 Merge pull request #308 from jyn514/patch-1
b0d09c4 Merge pull request #309 from jyn514/protocool
6283573 Merge pull request #310 from cloudflare/nicky/conn-closed-func
d032fad Merge pull request #312 from cloudflare/dependabot/go_modules/golang.org/x/crypto-0.1.0
7106a15 Merge pull request #313 from cloudflare/dependabot/go_modules/golang.org/x/net-0.7.0
9876502 Merge pull request #314 from cloudflare/nicky/goreleaser-pkcs11
baf9921 Merge pull request #315 from cloudflare/nicky/bump-deps
efe7771 Remove connection pools (#292)
705f0cb Remove internal ECDSA package (#283)
dea0289 Restore the request by opcode metrics (#298)
5fe30ce Restore timeout handling to connection read and write (#293)
1c828f2 Return early if we cannot set the deadline (#296)
bb79ea6 SECENG-9843 start publishing rpm packages via goreleaser
9685871 Separate forwarding and expand concurrency (#290)
a3b3963 Update go.yml
7545d34 Upgrade deps to avoid go mod tidy error (#307)
10bef9f add func to check if conn is closed
ee2afff add goreleaser snapshot and release action, enable pkcs11 in goreleaser builds
ce70013 add some error wrapping
329b43a bump go version in ci
6006312 bump go version to 1.17 in go.mod
46ea7a6 certmetrics: add label indicating where the cert came from (e.g. filepath)
1349e10 chore: bump dependencies
854e370 downgrade log level of noisy EOF errors
c68eba9 update deb packaging to use gz
c663d10 update readme to point to HSM portion of developer docs

Assets 7

23 Mar 18:18

nickysemenza

v1.6.5

85efd4e

v1.6.5

Changelog

85efd4e empty commit to allow for new release

Assets 5

17 Mar 23:41

nickysemenza

v1.6.4

18a5af6

v1.6.4

Summary

Azure Managed HSM support (https://developers.cloudflare.com/ssl/keyless-ssl/hardware-security-modules/azure-managed-hsm)
Google Cloud HSM support (https://developers.cloudflare.com/ssl/keyless-ssl/hardware-security-modules/google-cloud-hsm)
OpenTracing
Minor fixes, CI improvements, etc.

Changelog

92fec07 Add additional span for wait between write and response. (#280)
cd1c948 Emit certificate expiration metrics for client certificates used in handshake
1250f59 Fix ZoneID json tag
fbb660d Merge pull request #275 from mitalirawat/mitali/SECENG-7134
ddafcb2 Merge pull request #276 from nickysemenza/allow-unknown-protocol-tags
463b231 Merge pull request #277 from nickysemenza/add-opentracing
851ae38 Merge pull request #278 from nickysemenza/fix-protocol-bytes-size
b35b1f4 Merge pull request #279 from bvwells/patch-1
a3cb6f2 Merge pull request #281 from cloudflare/add-gh-action
1c0fca1 Merge pull request #284 from cloudflare/nicky/ci-improvements
1c05176 Revamp connections to avoid runtime calls (#282)
18a5af6 add goreleaser config
23ac0f4 allow Unmarshaling of protocol.Operation with unknown tags
87d9804 cleanup log levels
b490db3 emit metrics for peer certificates, server certificate and fix function name
9f23d91 explicitly check pkcs11 and azure uri formats, add links to azure docs
d5f52c4 feat: add opentracing + jaeger
8487818 feat: support for using keys in google KMS
9b2a902 feat: support using private keys on Azure Key Vault / Managed HSM
99a5454 fix reversed IsPKCS11URI value
a4447fd fix: correctly calculate protocol.Operation Bytes() size
3bdb599 replace TravisCI wit GH Actions
db3637d update Actions to only run lint once to avoid duplicated warnings

Assets 5

07 Jul 18:22

lgarofalo

v1.6.3

cdf0b58

v1.6.3

Adjust log level of remote server lookup message

Assets 2

29 Jun 16:31

wbl

v1.6.2

6c49d1c

v1.6.2

DNS package update

This release updates dependency that had a vulnerability

Assets 2

19 Nov 19:07

cbroglie

v1.6.1

9594971

v1.6.1

Changes:

Package the renewed the Keyless CA certificate
Fix panic when using max-sessions=1 with HSMs
Fix panic when no key pair is found on a HSM with the given object/id

Assets 2

16 Oct 21:16

cbroglie

v1.6.0

48ab42b

v1.6.0

Changes:

Upgrade ThalesIgnite/crypto11 package to v1.2.0
Adopt Go modules

Assets 2

12 Sep 20:41

cbroglie

1.5.3

e70e019

v1.5.3

This is a hotfix release to prevent the resource pool used for managing HSM sessions from closing idle sessions, which could lead to CKR_OBJECT_HANDLE_INVALID errors .

Assets 2

13 Jul 20:15

cbroglie

1.5.2

04886f2

v1.5.2

Changes:

Fix regression in sysv init scripts (introduced in 1.5.0)
Reduce cardinality of histogram metrics to reduce prometheus server load

Assets 2

05 Jul 19:05

cbroglie

1.5.1

b3ce625

v1.5.1

Add dependency on libtool

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Changelog

Changelog

Summary

Changelog

Releases: cloudflare/gokeyless

v1.6.6

Changelog

v1.6.5

Changelog

v1.6.4

Summary

Changelog

v1.6.3

v1.6.2

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1