summaryrefslogtreecommitdiff
path: root/node
AgeCommit message (Collapse)Author
2016-10-13.Adam Ierymenko
2016-10-13typoAdam Ierymenko
2016-10-13.Adam Ierymenko
2016-10-13Fix ICMP match.Adam Ierymenko
2016-10-13Fix filter trace.Adam Ierymenko
2016-10-13cleanupAdam Ierymenko
2016-10-13Remove unused POW code, will revisit later.Adam Ierymenko
2016-10-11Merge branch 'dev' of http://10.6.6.2/zerotier/ZeroTierOne into devAdam Ierymenko
2016-10-11Broke down and added an OR to the rules engine. It is now possible to have a ↵Adam Ierymenko
series of MATCHes that are ORed.
2016-10-07Fix the case for InetAddress::containsAddress for IPv6 route of ::Grant Limberg
2016-10-05Add a tags both equal match.Adam Ierymenko
2016-10-05Make capability flags match more user-friendly and appropriate since "match ↵Adam Ierymenko
any flag" is generally what we want.
2016-10-05Go ahead and loop back packets whose destination is self. Some OSes require ↵Adam Ierymenko
this since they aactually follow the full network path even for local IPs.
2016-09-30Add new rule to rules engine: random match.Adam Ierymenko
2016-09-30Fix deadlock-causing regression in Network.Adam Ierymenko
2016-09-28Fix memory leak.Adam Ierymenko
2016-09-28hashCode() for InetAddressAdam Ierymenko
2016-09-28Check multicast limit on send after NDP emulation code.Adam Ierymenko
2016-09-28TRACE verbosity increase on exceptions in NETWORK_CREDENTIALS.Adam Ierymenko
2016-09-27Send need credential error on more cases.Adam Ierymenko
2016-09-27Clusters can send multiple OKs so we must allow this.Adam Ierymenko
2016-09-27Simply network auth logic and always sent error on auth failure even for ↵Adam Ierymenko
unknown networks to prevent forensics.
2016-09-27TRACE build fix.Adam Ierymenko
2016-09-27Cleanup, and implement compression disable flag for networks.Adam Ierymenko
2016-09-27Refactored network config chunking to sign every chunk to prevent stupid DOS ↵Adam Ierymenko
attack potential, and implement network config fast propagate (though we probably will not use this for a bit).
2016-09-26It now builds.Adam Ierymenko
2016-09-26Bunch more refactoring and work on revocations, etc.Adam Ierymenko
2016-09-23Revocation work in progress, add WATCH which is TEE with implicit rate sync ↵Adam Ierymenko
(thanks JG@DCVC!), and clean up some cruft in Network.
2016-09-20Refactor COM stuff a bit, and respond to COM requests a bit more readily for ↵Adam Ierymenko
rapid setup. Will need to revisit later.
2016-09-15Revise bearer token code in controller, and add relay policy as a meta-data ↵Adam Ierymenko
item presented to controller by nodes (to facilitate future meshiness).
2016-09-14Naming...Adam Ierymenko
2016-09-14Add physical MTU recommendation hint to network config via API.Adam Ierymenko
2016-09-13docsAdam Ierymenko
2016-09-13Implement relay policy, and setting multicast limit to 0 now disables ↵Adam Ierymenko
multicast on the network as would be expected.
2016-09-13Get rid of HELLO rate gate on path since its basically worthless. There are ↵Adam Ierymenko
65535 ports per IP.
2016-09-13Set trustEstablished in a few more places.Adam Ierymenko
2016-09-13Add a few more rate limit gates for anti-DOS hardening.Adam Ierymenko
2016-09-12Rate gate requests for COM.Adam Ierymenko
2016-09-09Set trust established flag in MULTICAST_GATHER.Adam Ierymenko
2016-09-09(1) Public networks now get COMs even though they do not gate with them ↵Adam Ierymenko
since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.
2016-09-09Fix gating of multicast GATHER replies since these can come from upstream, ↵Adam Ierymenko
etc., and fix an issue with sending ECHO to recheck marginal paths.
2016-09-09More refactoring to clean up code, and add a gate function to make sure we ↵Adam Ierymenko
do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.
2016-09-08Clean up handling of COMs, network access control, and fix a backward ↵Adam Ierymenko
compatiblity issue.
2016-09-08Fix bug causing null addresses to get in memberships[] hash.Adam Ierymenko
2016-09-07More correct and efficient to initialize member relationship push stuff ↵Adam Ierymenko
lazily when member is learned.
2016-09-07Also send MULTICAST_LIKEs to controllers.Adam Ierymenko
2016-09-07Turns out we do not need to pass network to receive().Adam Ierymenko
2016-09-07Refactor MULTICAST_LIKE pushing to eliminate redundant and unnecessary ↵Adam Ierymenko
pushes and simplify code.
2016-09-07Tweak some expire times.Adam Ierymenko
2016-09-07Credential TTL (tags/capabilities) should be credential time max delta, ↵Adam Ierymenko
since we could get pushed one that is newer.
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 16:25:06 +0000