Home Explore Help
Sign In
cpp
/
ZeroTierOne
mirror of https://github.com/zerotier/ZeroTierOne
2
0
Fork 0
Files Issues 0 Wiki
Tree: 1.4.0.1
Branches Tags

Commit History

Author SHA1 Message Date
  Adam Ierymenko cba37c6107 Add a few more rate limit gates for anti-DOS hardening. 9 years ago
  Adam Ierymenko ea1da3321a Rate gate requests for COM. 9 years ago
  Adam Ierymenko debc4c45ee Set trust established flag in MULTICAST_GATHER. 9 years ago
  Adam Ierymenko ab9afbc749 (1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup. 9 years ago
  Adam Ierymenko ef87069957 Fix gating of multicast GATHER replies since these can come from upstream, etc., and fix an issue with sending ECHO to recheck marginal paths. 9 years ago
  Adam Ierymenko 0d4109a9f1 More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions. 9 years ago
  Adam Ierymenko 16df2c3363 Clean up handling of COMs, network access control, and fix a backward compatiblity issue. 9 years ago
  Adam Ierymenko c7a4da3dd3 Turns out we do not need to pass network to receive(). 9 years ago
  Adam Ierymenko 1908aa55f5 Refactor MULTICAST_LIKE pushing to eliminate redundant and unnecessary pushes and simplify code. 9 years ago
  Adam Ierymenko a7d988745b Use ECHO instead of HELLO where possible. 9 years ago
  Adam Ierymenko b5c86b6ba4 Bunch more path refactoring. Peers no longer forget paths, but do not normally use expired paths. Expired paths might still be tried if nothing else is reachable. 9 years ago
  Adam Ierymenko 48a374c82c (1) fix crazy bug introduced in doRENDEZVOUS(), (2) reclaim Paths after paths[] condense, (3) fix an edge case around symmetric NAT and external IP change detection. 9 years ago
  Adam Ierymenko 4992ac2d9f Cluster sub-optimal is in fact necessary... 9 years ago
  Adam Ierymenko 4f8253dcdb Tweaks to path handling... 9 years ago
  Adam Ierymenko e8f6b4b5d3 Rest of big Path canonicalization refactor. 9 years ago
  Adam Ierymenko 74afef8eb1 Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics. 9 years ago
  Adam Ierymenko f0636ffd4a EXT_FRAME messages should always be accepted if we are the destination for a matching TEE or REDIRECT rule. 9 years ago
  Adam Ierymenko cd3683f2ba Fix a missing receive(). 9 years ago
  Adam Ierymenko 347ebcd899 Set trust flag in network controllers if remote query is accepted to allow NATed network controllers to better traverse. 9 years ago
  Adam Ierymenko c476285bd6 Harden PUSH_DIRECT_PATHS and simplify things by only doing it on receive when hops>0 and trust has been established. 9 years ago
  Adam Ierymenko 0ee4d3554a Stub out USER_MESSAGE. 9 years ago
  Adam Ierymenko 0a7a33ef8f Instantaneous blacklisting and credential revocation. 9 years ago
  Adam Ierymenko 7036831203 Sign Dictionary in doNETWORK_CONFIG_REQUEST. 9 years ago
  Adam Ierymenko 0dfc08b317 Tidy up a few minor protocol things, improve documentation in Packet.hpp. 9 years ago
  Adam Ierymenko faa9a06bf5 Controller fixes... 9 years ago
  Adam Ierymenko d166b494ee Rule parse fix. 9 years ago
  Adam Ierymenko c9d7845fea Minor bug fix and some instrumentation stuff for testing. 9 years ago
  Adam Ierymenko e1310a764a More cleanup and removal of cruft due to obsolete network-specific relays (will be replaced with federation stuff). 9 years ago
  Adam Ierymenko dee7f75f7e Minor cleanup. 9 years ago
  Adam Ierymenko 774c7e0ea5 Put CONFIG_REFRESH back. 9 years ago

Newer Older