gogrlx/nats-server
1
0
Fork 0
mirror of https://github.com/gogrlx/nats-server.git synced 2026-04-02 03:38:42 -07:00
Code Issues Packages Projects Releases Wiki Activity
4,394 Commits 30 Branches 48 Tags
ocsp-dev
Commit Graph

2829 Commits

Author SHA1 Message Date
Waldemar Quevedo
46eccd7658 WIP: NATS Server + OCSP Support 
Signed-off-by: Waldemar Quevedo <wally@synadia.com>
Signed-off-by: Jaime Piña <jaime@synadia.com>
 2021-04-29 17:59:34 -07:00
Derek Collison
be5445e916 Bump version 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-29 16:05:03 -07:00
Ivan Kozlovic
ffccc2e1bd [FIXED] TLS: default ciphers not set when tls enabled from command line 
If running the server with command lines:
```
nats-server --tlsverify --tlscert "cert.pem" --tlskey "key.pem"
```
the default ciphers would not be set, however, they would using this
equivalent config:
```
tls: {
   verify: true
   cert_file: "cert.pem"
   key_file: "key.pem"
}
```

Reported by @DavidSimner

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-29 12:50:23 -06:00
Ivan Kozlovic
53a14eb5d1 Merge pull request #2163 from nats-io/msg_loop 
[FIXED] Message loop with cluster, leaf nodes and queue subs
 2021-04-29 10:02:17 -06:00
Derek Collison
cb773f984b Merge pull request #2166 from nats-io/lngwr 
[FIXED] JetStream pull based message delivery could drop responses.
 2021-04-29 08:14:45 -07:00
Ivan Kozlovic
72f29cc514 Merge pull request #2164 from nats-io/mqtt_cluster_placement 
[FIXED] MQTT: asset placement in origin cluster
 2021-04-29 08:50:54 -06:00
Derek Collison
96072d66f0 Internal JetStream callbacks for message delivery across GWs could lose responses. 
For internal callbacks we can not rely on the GW routed reply tracking
since internal clients can change who receives vs sends response.

Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-29 07:27:44 -07:00
Ivan Kozlovic
01ff1b76c1 Fixed comments 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-28 19:32:16 -06:00
Ivan Kozlovic
552cc737f1 [FIXED] MQTT: asset placement in origin cluster 
In a setup with shared system account and a cluster of leaf nodes,
the JS requests did not contain the origin cluster, which caused
assets to possibly be created in the HUB. With this change, the
assets will be created in the origin cluster.

Also, removed use of acc.JetStreamEnabled() but instead fail
start of the server if mqtt is enabled in standalone mode and JS
is not enabled. If JS is enabled, we will get proper error if
account has no JS enabled.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-28 19:28:00 -06:00
Ivan Kozlovic
e2e3de9977 [FIXED] Message loop with cluster, leaf nodes and queue subs 
In a setup with a cluster of servers to which 2 different leaf nodes
attach to, and queue subs are attached to one of the leaf, if the
leaf server is restarted and reconnects to another server in the
cluster, there was a risk for an infinite message loop between
some servers in the "hub" cluster.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-28 17:11:51 -06:00
Matthias Hanel
a67704e245 [fixed] crash when using nats-resolver without system account (#2162) 
* [fixed] crash when using nats-resolver without system account

Fixes #2160
Will raise an error instead

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-04-26 20:50:56 -04:00
Matthias Hanel
4430a55eed [added] leaf deny exports/imports to varz monitoring (#2159) 
* [added] leaf deny exports/imports to varz monitoring

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-04-26 16:34:09 -04:00
Jaime Piña
4d04f281fc Randomize leafnode route URLs and add option to disable 2021-04-23 14:59:15 -07:00
Matthias Hanel
a8346465e5 Merge pull request #2157 from nats-io/nil-leader 
fix unit test crashing when leader was nil caused by quorum reformation
 2021-04-23 14:26:00 -04:00
Ivan Kozlovic
8d4102c404 Merge pull request #2093 from shkim-will/flush_client_only 
[CHANGED] Flush in place only if producer and consumer are client connections
 2021-04-23 09:18:56 -06:00
Matthias Hanel
ae4374fcd0 fix unit test crashing when leader was nil caused by quorum reformation 
Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-04-22 20:35:00 -04:00
Ivan Kozlovic
38dcc79b3b Release v2.2.2 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-22 11:14:09 -06:00
scottf
486df98373 close tempfiles, fix path print 2021-04-22 12:47:21 -04:00
Ivan Kozlovic
96546040a3 Merge pull request #2151 from nats-io/fix_2126 
[IMPROVED] MQTT error message when client connects with websocket
 2021-04-22 09:27:43 -06:00
Ivan Kozlovic
d0fd62c83b [IMPROVED] MQTT error message when client connects with websocket 
Websocket is currently not supported for MQTT clients. When a
client tries to connect with websocket protocol to the MQTT port,
the error message: `mid:9 - not connected` would be logged, which
is not really telling.

The server will now guess if the connection was websocket and report
a more appropriate error message, such as:
```
invalid connection, websocket currently not supported
```

Resolves #2126

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-22 09:03:47 -06:00
Derek Collison
2ac05785c3 Do not persist or snapshot consumer state after a restore. 
This can lead to a data race and is not needed after being applied.

Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 18:50:38 -07:00
Matthias Hanel
eb3af67031 Delaying stream/consumer error response when there is no contact to meta 
this gives a stream/consumer leader time to respond first

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-04-21 20:24:43 -04:00
Derek Collison
c9c70dea33 Fix race 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 16:17:58 -07:00
Derek Collison
3418847881 Merge pull request #2146 from nats-io/chblock 
Make sure to not have the raft layer block on apply channel on exit.
 2021-04-21 15:58:50 -07:00
Derek Collison
2ddb95867e Merge pull request #2145 from nats-io/overlap 
Check for overlapping subjects on stream update.
 2021-04-21 15:55:31 -07:00
Derek Collison
0678e649d3 Make sure to not have the raft layer block on apply channel on exit. 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 15:52:54 -07:00
Derek Collison
50fabe261d Check for overlapping subjects on stream update. 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 15:38:38 -07:00
Waldemar Quevedo
c9ab7ce8a1 Fix for data race when disabling JS running out of resources 
Signed-off-by: Waldemar Quevedo <wally@synadia.com>
 2021-04-21 14:26:52 -07:00
Ivan Kozlovic
ea21e86996 Merge pull request #2136 from nats-io/fix_leafnode_puballowed_race 
[FIXED] Possible panic due to concurrent access to unlocked map
 2021-04-21 13:54:32 -06:00
Derek Collison
3788822f82 Updates based on feedback 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 12:41:11 -07:00
Derek Collison
9f1bc5882c Make sure to return no consumer if we are still waiting on a leader to be elected. 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 12:13:10 -07:00
Derek Collison
a301d3a892 Check direct consumers directly, stream state back to previous behavior 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 09:40:04 -07:00
Derek Collison
cc776302a0 2.2.2-beta.11 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 08:48:49 -07:00
Derek Collison
b5521053e6 Make sure to clean up ephemerals across a Gateway. 
Also report direct consumers in num consumers in stream info.

Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 08:47:55 -07:00
Derek Collison
d31041ecd9 2.2.2-beta.10 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 06:57:07 -07:00
Derek Collison
a181238cf0 Fix for consumer on restore being deleted 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-21 06:54:54 -07:00
William
084b0a29c8 apply review - rephrase 2021-04-21 12:31:55 +09:00
Ivan Kozlovic
32f1a58b09 Move cas in prunePubPermsCache() itself and clear with atomic.Store 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-20 21:18:13 -06:00
Ivan Kozlovic
1014041be3 [FIXED] Possible panic due to concurrent access to unlocked map 
This could happen when a leafnode has permissions set and another
connection (client, etc..) is about to assign a message to the
leafnode while the leafnode itself is receiving messages and they
both check permissions at the same time.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-20 21:18:13 -06:00
Derek Collison
a3f66508dd Merge pull request #2138 from nats-io/ports 
Use lower ports to not collide with -1s
 2021-04-20 20:15:24 -07:00
Derek Collison
e31361e6a2 Use lower ports to not collide with -1s 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 20:10:29 -07:00
Derek Collison
518ff9be14 Concurrent multiple durable subscribers would cause unpredictable behaviors. 
Upgraded to current Go client.

Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 19:50:24 -07:00
Derek Collison
7ac0ff6674 Merge pull request #2135 from nats-io/panic 
Check that we have mirror still to not panic and deadlock/hang
 2021-04-20 17:13:16 -07:00
Derek Collison
5707c1132c Move to dynamic ports 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 17:08:47 -07:00
Matthias Hanel
4d112af6c1 Fix account resolver lock ordering on shutdown 
This is benign as the inversion was between start and stop.

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-04-20 20:08:14 -04:00
Derek Collison
ef7a811a71 Check that we have mirror still to not panic and deadlock/hang 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 16:41:41 -07:00
Derek Collison
902b9dec12 Merge pull request #2131 from nats-io/updates 
General Updates and Stability Improvements
 2021-04-20 13:52:39 -07:00
Derek Collison
5aa3dd7761 Put back direct consumer subject prefix 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 13:35:48 -07:00
Derek Collison
0a3e54c88a Fix subscription leaks for mirrors and sources for streams as well as flow control subjects for consumers. 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 12:13:07 -07:00
Jaime Piña
e12181cb83 Return not ready for connection reason 
Currently, we use ReadyForConnections in server tests to wait for the
server to be ready. However, when this fails we don't get a clue about
why it failed.

This change adds a new unexported method called readyForConnections that
returns an error describing which check failed. The exported
ReadyForConnections version works exactly as before. The unexported
version gets used in internal tests only.
 2021-04-20 11:45:08 -07:00