Bump github.com/slackhq/nebula from 1.6.1 to 1.9.3

[dependabot[bot]]

Bumps github.com/slackhq/nebula from 1.6.1 to 1.9.3.

Release notes

Sourced from github.com/slackhq/nebula's releases.

Release v1.9.3

Fixed

• Initialize messageCounter to 2 instead of verifying later. (#1156)

Release v1.9.2

Fixed

• Ensure messageCounter is set before handshake is complete. (#1154)

Release v1.9.1

Fixed

• Fixed a potential deadlock in GetOrHandshake. (#1151)

Release v1.9.0

Deprecated

• This release adds a new setting default_local_cidr_any that defaults to true to match previous behavior, but will default to false in the next release (1.10). When set to false, local_cidr is matched correctly for firewall rules on hosts acting as unsafe routers, and should be set for any firewall rules you want to allow unsafe route hosts to access. See the issue and example config for more details. (#1071, #1099)

Added

• Nebula now has an official Docker image nebulaoss/nebula that is distroless and contains just the nebula and nebula-cert binaries. You can find it here: https://hub.docker.com/r/nebulaoss/nebula (#1037)

• Experimental binaries for loong64 are now provided. (#1003)

• Added example service script for OpenRC. (#711)

• The SSH daemon now supports inlined host keys. (#1054)

• The SSH daemon now supports certificates with sshd.trusted_cas. (#1098)

Changed

• Config setting tun.unsafe_routes is now reloadable. (#1083)

• Small documentation and internal improvements. (#1065, #1067, #1069, #1108, #1109, #1111, #1135)

• Various dependency updates. (#1139, #1138, #1134, #1133, #1126, #1123, #1110, #1094, #1092, #1087, #1086, #1085, #1072, #1063, #1059, #1055, #1053, #1047, #1046, #1034, #1022)

... (truncated)

Changelog

Sourced from github.com/slackhq/nebula's changelog.

[1.9.3] - 2024-06-06

Fixed

• Initialize messageCounter to 2 instead of verifying later. (#1156)

[1.9.2] - 2024-06-03

Fixed

• Ensure messageCounter is set before handshake is complete. (#1154)

[1.9.1] - 2024-05-29

Fixed

• Fixed a potential deadlock in GetOrHandshake. (#1151)

[1.9.0] - 2024-05-07

Deprecated

• This release adds a new setting default_local_cidr_any that defaults to true to match previous behavior, but will default to false in the next release (1.10). When set to false, local_cidr is matched correctly for firewall rules on hosts acting as unsafe routers, and should be set for any firewall rules you want to allow unsafe route hosts to access. See the issue and example config for more details. (#1071, #1099)

Added

• Nebula now has an official Docker image nebulaoss/nebula that is distroless and contains just the nebula and nebula-cert binaries. You can find it here: https://hub.docker.com/r/nebulaoss/nebula (#1037)

• Experimental binaries for loong64 are now provided. (#1003)

• Added example service script for OpenRC. (#711)

• The SSH daemon now supports inlined host keys. (#1054)

• The SSH daemon now supports certificates with sshd.trusted_cas. (#1098)

Changed

• Config setting tun.unsafe_routes is now reloadable. (#1083)

• Small documentation and internal improvements. (#1065, #1067, #1069, #1108, #1109, #1111, #1135)

... (truncated)

Commits

• b14bad5 v1.9.3 (#1160)
• 4c066d8 initialize messageCounter to 2 instead of verifying later (#1156)
• 249ae41 v1.9.2 (#1155)
• d9cae9e ensure messageCounter is set before handshake is complete (#1154)
• a92056a v1.9.1 (#1152)
• 4eb1da0 remove deadlock in GetOrHandshake (#1151)
• 50b24c1 v1.9.0 (#1137)
• c0130f8 Bump the golang-x-dependencies group with 4 updates (#1138)
• f19a286 Bump google.golang.org/protobuf in the protobuf-dependencies group (#1139)
• fd1906b minor text fixes (#1135)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
github.com/slackhq/nebula	[>= 1.7.a, < 1.8]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dopey]

I think this requires go1.22

[hslatman]

I think this requires go1.22

Yeah, I think so too. Also see https://github.com/slackhq/nebula/blob/master/go.mod#L3-L5.

Besides that, I also must finish https://github.com/smallstep/certificates/pull/1662, as it broke the build before.

[hslatman]

@dependabot recreate

[dependabot[bot]]

Looks like github.com/slackhq/nebula is up-to-date now, so this is no longer needed.