Home Explore Help
Sign In
cpp
/
ZeroTierOne
mirror of https://github.com/zerotier/ZeroTierOne
2
0
Fork 0
Files Issues 0 Wiki
Tree: 1.10.0
Branches Tags

Commit History

Author SHA1 Message Date
  Adam Ierymenko 9f550292fe Simply network auth logic and always sent error on auth failure even for unknown networks to prevent forensics. 9 years ago
  Adam Ierymenko cc4bacc199 Cleanup, and implement compression disable flag for networks. 9 years ago
  Adam Ierymenko 15c07c58b6 Refactored network config chunking to sign every chunk to prevent stupid DOS attack potential, and implement network config fast propagate (though we probably will not use this for a bit). 9 years ago
  Adam Ierymenko eac3667ec1 Bunch more refactoring and work on revocations, etc. 9 years ago
  Adam Ierymenko 1f74dd4589 Revocation work in progress, add WATCH which is TEE with implicit rate sync (thanks JG@DCVC!), and clean up some cruft in Network. 9 years ago
  Adam Ierymenko d3524f3609 Refactor COM stuff a bit, and respond to COM requests a bit more readily for rapid setup. Will need to revisit later. 9 years ago
  Adam Ierymenko 68e549233d Revise bearer token code in controller, and add relay policy as a meta-data item presented to controller by nodes (to facilitate future meshiness). 9 years ago
  Adam Ierymenko 15402933bc Add physical MTU recommendation hint to network config via API. 9 years ago
  Adam Ierymenko 83abc00aae docs 9 years ago
  Adam Ierymenko ab9afbc749 (1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup. 9 years ago
  Adam Ierymenko ef87069957 Fix gating of multicast GATHER replies since these can come from upstream, etc., and fix an issue with sending ECHO to recheck marginal paths. 9 years ago
  Adam Ierymenko 0d4109a9f1 More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions. 9 years ago
  Adam Ierymenko 16df2c3363 Clean up handling of COMs, network access control, and fix a backward compatiblity issue. 9 years ago
  Adam Ierymenko 1f6b13b7fd Fix bug causing null addresses to get in memberships[] hash. 9 years ago
  Adam Ierymenko daf8a66ced More correct and efficient to initialize member relationship push stuff lazily when member is learned. 9 years ago
  Adam Ierymenko 20278bb9e4 Also send MULTICAST_LIKEs to controllers. 9 years ago
  Adam Ierymenko 1908aa55f5 Refactor MULTICAST_LIKE pushing to eliminate redundant and unnecessary pushes and simplify code. 9 years ago
  Adam Ierymenko eebcf08084 Tweaks to new Path code for dual-stack operation, and other fixes. 9 years ago
  Adam Ierymenko 22271f2a49 Cleanup. 9 years ago
  Adam Ierymenko 8b6d23b9f6 Optimize filter code a bit, and add a network-level setting for what should happen if an unsupported or unknown MATCH is encountered in a rules table. 9 years ago
  Adam Ierymenko 25056de5d3 Also need to send credentials when TEEing and REDIRECTing. 9 years ago
  Adam Ierymenko 994b25af4e Simplify some logic. 9 years ago
  Adam Ierymenko 74afef8eb1 Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics. 9 years ago
  Adam Ierymenko 54489a7f61 rename SAMENESS to DIFFERENCE which is less confusing 9 years ago
  Adam Ierymenko 8e3004591b Add overlooked MATCH_ICMP to rule set. 9 years ago
  Adam Ierymenko cb63babac4 Debug output fixes. 9 years ago
  Adam Ierymenko ac1c127b68 Debug output fixes. 9 years ago
  Adam Ierymenko cb82193333 Debug output fixes. 9 years ago
  Adam Ierymenko f0636ffd4a EXT_FRAME messages should always be accepted if we are the destination for a matching TEE or REDIRECT rule. 9 years ago
  Adam Ierymenko 51a420671f Make rules engine debug a bit more verbose. 9 years ago

Newer Older