infinitytier.git - Fork of ZeroTier (mirror of https://github.com/vyos/infinitytier.git)

Age	Commit message (Collapse)	Author
2017-03-01	Circuit tests now report link quality. Also fixed a little thing in ↵	Adam Ierymenko
	revocation propagation.
2017-03-01	Outgoing side of packet counter for link quality reporting. Also some ↵	Adam Ierymenko
	cleanup and a cluster mode build fix.
2017-02-23	Certificate of ownership -- used to secure against IP address spoofing, ↵	Adam Ierymenko
	especially for IPv4 and regular IPv6.
2017-02-13	Fix "orbit" semantics. Federation works.	Adam Ierymenko

2017-02-13	Fix loading of existing moons.	Adam Ierymenko

2017-02-13	Only accept world updates from upstreams.	Adam Ierymenko

2017-02-13	Cleanup and make moons (federated roots) a little easier to deal with.	Adam Ierymenko

2017-02-07	Tags work.	Adam Ierymenko

2017-02-06	Fix HELLO parse bug.	Adam Ierymenko

2017-02-06	Docs and a small build fix in debug mode.	Adam Ierymenko

2017-02-05	Docs, code cleanup, and protect the extra new fields of HELLO with ↵	Adam Ierymenko
	encryption as a precaution.
2017-02-04	Add and send certificates of representation to tell people what our valid ↵	Adam Ierymenko
	upstreams are. These are not used yet but will be needed for future privacy modes, etc. Also some cleanup.
2017-02-04	Stub out CAN_REACH.	Adam Ierymenko

2017-01-30	Fix to cluster network configs.	Adam Ierymenko

2017-01-30	Implement cross cluster sharing of network configs to make clusters able to ↵	Adam Ierymenko
	actually join networks.
2017-01-27	Fix moon persistence.	Adam Ierymenko

2017-01-27	Add comments to join ("orbit") moons.	Adam Ierymenko

2017-01-27	little fix	Adam Ierymenko

2017-01-27	Extend in-band world updates to handle moons too.	Adam Ierymenko

2017-01-27	Replace piecemeal designation of upstreams with the concept of moons, which ↵	Adam Ierymenko
	is simpler and easier to use and inherits all the cool live update stuff of worlds (now called planets) and global roots.
2017-01-09	Wire up VERB_USER_MESSAGE in core.	Adam Ierymenko

2016-11-22	Replace long callback arg list with struct, and implement path whitelisting, ↵	Adam Ierymenko
	path blacklisting, and local.conf support for roles.
2016-11-18	Rate gate expensive validation of new identities in HELLO.	Adam Ierymenko

2016-11-18	Do packet MAC check before locallyValidate(), and add timing measurement in ↵	Adam Ierymenko
	selftest.
2016-11-17	Add notion of upstream that is separate from root in Topology, etc.	Adam Ierymenko

2016-11-10	Refactor controller to permit sending of pushes as well as just replies to ↵	Adam Ierymenko
	config requests.
2016-10-13	Remove unused POW code, will revisit later.	Adam Ierymenko

2016-09-28	TRACE verbosity increase on exceptions in NETWORK_CREDENTIALS.	Adam Ierymenko

2016-09-27	Send need credential error on more cases.	Adam Ierymenko

2016-09-27	Clusters can send multiple OKs so we must allow this.	Adam Ierymenko

2016-09-27	Simply network auth logic and always sent error on auth failure even for ↵	Adam Ierymenko
	unknown networks to prevent forensics.
2016-09-27	Cleanup, and implement compression disable flag for networks.	Adam Ierymenko

2016-09-27	Refactored network config chunking to sign every chunk to prevent stupid DOS ↵	Adam Ierymenko
	attack potential, and implement network config fast propagate (though we probably will not use this for a bit).
2016-09-26	It now builds.	Adam Ierymenko

2016-09-26	Bunch more refactoring and work on revocations, etc.	Adam Ierymenko

2016-09-23	Revocation work in progress, add WATCH which is TEE with implicit rate sync ↵	Adam Ierymenko
	(thanks JG@DCVC!), and clean up some cruft in Network.
2016-09-20	Refactor COM stuff a bit, and respond to COM requests a bit more readily for ↵	Adam Ierymenko
	rapid setup. Will need to revisit later.
2016-09-13	Implement relay policy, and setting multicast limit to 0 now disables ↵	Adam Ierymenko
	multicast on the network as would be expected.
2016-09-13	Get rid of HELLO rate gate on path since its basically worthless. There are ↵	Adam Ierymenko
	65535 ports per IP.
2016-09-13	Set trustEstablished in a few more places.	Adam Ierymenko

2016-09-13	Add a few more rate limit gates for anti-DOS hardening.	Adam Ierymenko

2016-09-12	Rate gate requests for COM.	Adam Ierymenko

2016-09-09	Set trust established flag in MULTICAST_GATHER.	Adam Ierymenko

2016-09-09	(1) Public networks now get COMs even though they do not gate with them ↵	Adam Ierymenko
	since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.
2016-09-09	Fix gating of multicast GATHER replies since these can come from upstream, ↵	Adam Ierymenko
	etc., and fix an issue with sending ECHO to recheck marginal paths.
2016-09-09	More refactoring to clean up code, and add a gate function to make sure we ↵	Adam Ierymenko
	do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.
2016-09-08	Clean up handling of COMs, network access control, and fix a backward ↵	Adam Ierymenko
	compatiblity issue.
2016-09-07	Turns out we do not need to pass network to receive().	Adam Ierymenko

2016-09-07	Refactor MULTICAST_LIKE pushing to eliminate redundant and unnecessary ↵	Adam Ierymenko
	pushes and simplify code.
2016-09-07	Use ECHO instead of HELLO where possible.	Adam Ierymenko