cpp/ZeroTierOne

Autor	SHA1 Mensaxe	Data
Adam Ierymenko	ab9afbc749 (1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	0d4109a9f1 More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	c9ee8612e4 Credential TTL (tags/capabilities) should be credential time max delta, since we could get pushed one that is newer.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	74afef8eb1 Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	54489a7f61 rename SAMENESS to DIFFERENCE which is less confusing	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	8e3004591b Add overlooked MATCH_ICMP to rule set.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	7a00036954 Tweak log length to fit JSON for members within two 4096-kb blocks.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	914c42537c Type fixes.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	297b1b4258 Another tiny API bug fix.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	35ac995d05 Fix setting of v6AssignMode in controller.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	d637988ccf Fix chicken or egg problem in tags, and better filter debug instrumentation.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	858e8c5217 one more...	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	df1ce856c9 A little bit more controller code cleanup.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	b5e0d014ab Controller bug fixes	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	5eaf397a94 Add a debug log feature in the filter, which only works if enabled in Network.cpp.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	1814016eb7 Add daemon thread to controller and move network member cache refreshes there.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	6ecb42b031 docs and null check in controller code	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	60bc291414 Add noAutoAssignIps for member of networks.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	ccea3d04d6 Push NETWORK_CONFIG_REFRESH on POSTs to /member/... in controller.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	8e3463d47a Add length limit to TEE and REDIRECT, and completely factor out old C json-parser to eliminate a dependency.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	8d594f8b53 cleanup	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	5f4df0c6a9 Controller cleanup and perf improvements.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	32fa061700 Compute credential TTL et al.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	9a3c652a51 Get rid of expiration in Capability and Tag and move this to NetworkConfig so it can be set network-wide and reset if needed. Also add NetworkConfig field for this and centralize checking of credential time validity.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	b0d888d235 Signing of Capability and Tag objects.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	4dce71879f .	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	212a5af9a5 Capabilities and tags in POST JSON.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	1cadbfb4d1 Little fixes.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	f119c4a456 Cache network members for performance, add network non-persisted fields.	%!s(int64=9) %!d(string=hai) anos
Adam Ierymenko	faa9a06bf5 Controller fixes...	%!s(int64=9) %!d(string=hai) anos

Posterior Anterior

Commit History Buscar

Commit History