cpp/ZeroTierOne

Author	SHA1 Message	Date
Adam Ierymenko	cc4bacc199 Cleanup, and implement compression disable flag for networks.	9 years ago
Adam Ierymenko	15c07c58b6 Refactored network config chunking to sign every chunk to prevent stupid DOS attack potential, and implement network config fast propagate (though we probably will not use this for a bit).	9 years ago
Adam Ierymenko	7e4b6b594b It now builds.	9 years ago
Adam Ierymenko	eac3667ec1 Bunch more refactoring and work on revocations, etc.	9 years ago
Adam Ierymenko	1f74dd4589 Revocation work in progress, add WATCH which is TEE with implicit rate sync (thanks JG@DCVC!), and clean up some cruft in Network.	9 years ago
Adam Ierymenko	d3524f3609 Refactor COM stuff a bit, and respond to COM requests a bit more readily for rapid setup. Will need to revisit later.	9 years ago
Adam Ierymenko	5b6d27e659 Implement relay policy, and setting multicast limit to 0 now disables multicast on the network as would be expected.	9 years ago
Adam Ierymenko	8ef0e4bbaf Get rid of HELLO rate gate on path since its basically worthless. There are 65535 ports per IP.	9 years ago
Adam Ierymenko	0da9a9a3e0 Set trustEstablished in a few more places.	9 years ago
Adam Ierymenko	cba37c6107 Add a few more rate limit gates for anti-DOS hardening.	9 years ago
Adam Ierymenko	ea1da3321a Rate gate requests for COM.	9 years ago
Adam Ierymenko	debc4c45ee Set trust established flag in MULTICAST_GATHER.	9 years ago
Adam Ierymenko	ab9afbc749 (1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.	9 years ago
Adam Ierymenko	ef87069957 Fix gating of multicast GATHER replies since these can come from upstream, etc., and fix an issue with sending ECHO to recheck marginal paths.	9 years ago
Adam Ierymenko	0d4109a9f1 More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.	9 years ago
Adam Ierymenko	16df2c3363 Clean up handling of COMs, network access control, and fix a backward compatiblity issue.	9 years ago
Adam Ierymenko	c7a4da3dd3 Turns out we do not need to pass network to receive().	9 years ago
Adam Ierymenko	1908aa55f5 Refactor MULTICAST_LIKE pushing to eliminate redundant and unnecessary pushes and simplify code.	9 years ago
Adam Ierymenko	a7d988745b Use ECHO instead of HELLO where possible.	9 years ago
Adam Ierymenko	b5c86b6ba4 Bunch more path refactoring. Peers no longer forget paths, but do not normally use expired paths. Expired paths might still be tried if nothing else is reachable.	9 years ago
Adam Ierymenko	48a374c82c (1) fix crazy bug introduced in doRENDEZVOUS(), (2) reclaim Paths after paths[] condense, (3) fix an edge case around symmetric NAT and external IP change detection.	9 years ago
Adam Ierymenko	4992ac2d9f Cluster sub-optimal is in fact necessary...	9 years ago
Adam Ierymenko	4f8253dcdb Tweaks to path handling...	9 years ago
Adam Ierymenko	e8f6b4b5d3 Rest of big Path canonicalization refactor.	9 years ago
Adam Ierymenko	74afef8eb1 Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics.	9 years ago
Adam Ierymenko	f0636ffd4a EXT_FRAME messages should always be accepted if we are the destination for a matching TEE or REDIRECT rule.	9 years ago
Adam Ierymenko	cd3683f2ba Fix a missing receive().	9 years ago
Adam Ierymenko	347ebcd899 Set trust flag in network controllers if remote query is accepted to allow NATed network controllers to better traverse.	9 years ago
Adam Ierymenko	c476285bd6 Harden PUSH_DIRECT_PATHS and simplify things by only doing it on receive when hops>0 and trust has been established.	9 years ago
Adam Ierymenko	0ee4d3554a Stub out USER_MESSAGE.	9 years ago

Newer Older

Commit History Find

Commit History