syncthing/lib/connections
Jakob Borg 2dc2aa5d21
lib/connections, lib/tlsutil: Handle certName in Go 1.15 (fixes #6867) (#6868)
Our authentication is based on device ID (certificate fingerprint) but
we also check the certificate name for ... historical extra security
reasons. (I don't think this adds anything but it is what it is.) Since
that check breaks in Go 1.15 this change does two things:

- Adds a manual check for the peer certificate CommonName, and if they
  are equal we are happy and don't call the more advanced
  VerifyHostname() function. This allows our old style certificates to
  still pass the check.

- Adds the cert name "syncthing" as a DNS SAN when generating the
  certificate. This is the correct way nowadays and makes VerifyHostname()
  happy in Go 1.15 as well, even without the above patch.
2020-07-30 13:36:11 +02:00
..
registry lib/connections: Add QUIC protocol support (fixes #5377) (#5737) 2019-05-29 09:56:40 +02:00
connections_test.go lib/connections: Correctly fixup port in IPv6 listen URLs (#6786) 2020-06-22 16:47:15 +01:00
debug.go all, lib/logger: Refactor SetDebug calls (#6054) 2019-10-04 13:03:34 +02:00
deprecated.go Remove KCP (fixes #4737) (#4741) 2018-02-09 11:40:57 +01:00
lan_test.go all: Remove global events.Default (ref #4085) (#5886) 2019-08-15 16:29:37 +02:00
limiter_test.go lib/connections: Improve write rate limiting (fixes #5138) (#5996) 2019-09-04 11:12:17 +01:00
limiter.go lib/connections: Improve write rate limiting (fixes #5138) (#5996) 2019-09-04 11:12:17 +01:00
quic_dial.go lib/connections: Add noquic tag 2020-07-30 09:42:02 +02:00
quic_listen.go lib/connections: Add noquic tag 2020-07-30 09:42:02 +02:00
quic_misc.go lib/connections: Add noquic tag 2020-07-30 09:42:02 +02:00
relay_dial.go all: Use context in lib/dialer (#6177) 2019-11-26 07:39:51 +00:00
relay_listen.go lib/connections: React to listeners going up and down faster (#6590) 2020-05-11 15:02:22 +02:00
service.go lib/connections, lib/tlsutil: Handle certName in Go 1.15 (fixes #6867) (#6868) 2020-07-30 13:36:11 +02:00
structs.go lib/connections: React to listeners going up and down faster (#6590) 2020-05-11 15:02:22 +02:00
tcp_dial.go lib/connections: Try TCP punchthrough (fixes #4259) (#5753) 2020-06-16 09:17:07 +02:00
tcp_listen.go lib/connections: Try TCP punchthrough (fixes #4259) (#5753) 2020-06-16 09:17:07 +02:00
util.go lib/connections: Correctly fixup port in IPv6 listen URLs (#6786) 2020-06-22 16:47:15 +01:00