Adam Ierymenko
|
8c9b73f67b
|
Make Salsa20 variable-round, allowing for Salsa20/12 to be used for Packet encrypt and decrypt. Profiling analysis found that Salsa20 encrypt was accounting for a nontrivial percentage of CPU time, so it makes sense to cut this load fundamentally. There are no published attacks against Salsa20/12, and DJB believes 20 rounds to be overkill. This should be more than enough for our needs. Obviously incorporating ASM Salsa20 is among the next steps for performance.
|
2013-10-18 17:39:48 -04:00 |
|
Adam Ierymenko
|
fbf6ab5d4d
|
Bug fixes: inverted sense bug, printf format bug.
|
2013-10-18 16:27:07 -04:00 |
|
Adam Ierymenko
|
e13d4df9ab
|
Forgot to set defaults if multicast parameters are unset.
|
2013-10-18 15:50:31 -04:00 |
|
Adam Ierymenko
|
fb7d9b1029
|
Oops we needed _r in there...
|
2013-10-18 15:00:55 -04:00 |
|
Adam Ierymenko
|
5ef758bbd4
|
Eliminate unused private field (compiler warning).
|
2013-10-18 14:27:37 -04:00 |
|
Adam Ierymenko
|
ca93b4a1ac
|
Clean up some stuff, including a few spots where exceptions were not being handled correctly.
|
2013-10-18 14:16:53 -04:00 |
|
Adam Ierymenko
|
03b909603a
|
Clean up the awful Network::Config mess and break that out into NetworkConfig.
|
2013-10-18 13:20:34 -04:00 |
|
Adam Ierymenko
|
5a8f213c23
|
Work in progress...
|
2013-10-18 12:01:48 -04:00 |
|
Adam Ierymenko
|
b10871cedc
|
More work in netconf cleanup.
|
2013-10-18 11:01:41 -04:00 |
|
Adam Ierymenko
|
9f107dbd4e
|
Work in progress on cleaning up netconf mess in node code...
|
2013-10-18 09:48:02 -04:00 |
|
Adam Ierymenko
|
e6eb65be00
|
Netconf support for ARP and NDP caching TTLs.
|
2013-10-17 16:49:31 -04:00 |
|
Adam Ierymenko
|
d0dbd869c9
|
Increase verbosity of multicast tracing and fix tap build problem / GitHub Issue #19
|
2013-10-17 15:20:43 -04:00 |
|
Adam Ierymenko
|
797bba04dd
|
Get rid of not used and maybe never to be used Filter code.
|
2013-10-17 13:07:53 -04:00 |
|
Adam Ierymenko
|
ce14ba9004
|
Take the 0.6.0 opportunity to add flags to a few protocol verbs and do a bit more cleanup. Also fix it so certificates wont be accepted unless they are newer than existing ones.
|
2013-10-17 06:41:52 -04:00 |
|
Adam Ierymenko
|
7e7e28f5f7
|
Add support for pushing network config refresh hints from a MEMORY queue table. That ways it will be possible for network changes to take effect almost immediately across all active peers.
|
2013-10-17 05:37:01 -04:00 |
|
Adam Ierymenko
|
46f868bd4f
|
Lots of cleanup, more work on certificates, some security fixes.
|
2013-10-16 17:47:26 -04:00 |
|
Adam Ierymenko
|
58fa6cab43
|
Auto-pushing of membership certs on: MULTICAST_FRAME,FRAME,MULTICAST_LIKE and on receipt of MULTICAST_LIKE.
|
2013-10-07 17:00:53 -04:00 |
|
Adam Ierymenko
|
4d594b24bc
|
Automagically push netconf certs -- Network support.
|
2013-10-07 16:13:52 -04:00 |
|
Adam Ierymenko
|
b4ae1adfbf
|
Break out certificate of membership into its own class.
|
2013-10-07 15:29:03 -04:00 |
|
Adam Ierymenko
|
dcbc9c8ddd
|
Rename error code for no membership certificate.
|
2013-10-07 15:21:40 -04:00 |
|
Adam Ierymenko
|
430882327e
|
Couple of small fixes, works again with new ID code.
|
2013-10-07 15:00:38 -04:00 |
|
Adam Ierymenko
|
2fa2796f2a
|
Another tweak, hopefully final, to reduce variance on identity generation times.
|
2013-10-07 14:31:13 -04:00 |
|
Adam Ierymenko
|
343b7f44fc
|
Old algo for ID derivation was not in fact memory-hard since Salsa20 is seekable, so take two.
|
2013-10-07 12:48:27 -04:00 |
|
Adam Ierymenko
|
0c8614b9c6
|
Add a second arg to idtool generate to make generating both secret and public easier, add new supernode identities after generating them, fix known good and bad IDs in selftest.
|
2013-10-07 09:36:20 -04:00 |
|
Adam Ierymenko
|
5fa7a92048
|
Allocate genmem[] since its too big for the stack on some systems.
|
2013-10-06 05:28:25 -04:00 |
|
Adam Ierymenko
|
bc715fbd51
|
Make new identity hashcash algo memory hard, and tweak generation time a bit. Current hashcash cost should be overkill for what we need but still tolerable to users.
|
2013-10-05 14:15:59 -04:00 |
|
Adam Ierymenko
|
4267e7da93
|
Remove a whole bunch of now-unnecessary cruft from Topology and PacketDecoder.
|
2013-10-05 10:19:12 -04:00 |
|
Adam Ierymenko
|
0e43e5e8f2
|
Rest of work on new hashcash based identity scheme.
|
2013-10-05 07:00:55 -04:00 |
|
Adam Ierymenko
|
b0187f4472
|
Hashcash-based identity, work in progress... committing to test speed on other boxes.
|
2013-10-05 06:00:47 -04:00 |
|
Adam Ierymenko
|
588a47be89
|
Some API improvements to C25519 in preparation for that thing I woke up thinking about at 4am.
|
2013-10-05 05:26:38 -04:00 |
|
Adam Ierymenko
|
ea4e1136dd
|
Flesh out membership certificate with signature, better serialize/deserialize, and rename parameter to qualifier to make better conceptual sense.
|
2013-10-04 12:24:21 -04:00 |
|
Adam Ierymenko
|
bb4a96c630
|
Add more info to remote multicast trace (debug facility).
|
2013-10-03 14:53:15 -04:00 |
|
Adam Ierymenko
|
c7590634e8
|
Eliminate a lot of redundant WHOIS requests, clean up WHOIS clutter in TRACE, flesh out multicast tracing a bit.
|
2013-10-03 14:38:07 -04:00 |
|
Adam Ierymenko
|
58538500f2
|
Clean up some routine stuff like pings, and stop keeping links open forever even if there are no frames passing between them.
|
2013-10-02 16:12:10 -04:00 |
|
Adam Ierymenko
|
2cfa76fa8b
|
Multicast propagation is now working from non-supernodes, and working quite well. Time for some more simulation before 0.5.0!
|
2013-10-02 13:50:42 -04:00 |
|
Adam Ierymenko
|
929ed5d8b8
|
Merge branch 'adamierymenko-dev' of /Users/api/Code/local-ZeroTierOne into adamierymenko-dev
|
2013-10-01 17:19:36 -04:00 |
|
Adam Ierymenko
|
4b6ec872c7
|
More multicast fixes.
|
2013-10-01 17:19:24 -04:00 |
|
Adam Ierymenko
|
676f391ccf
|
Multicast debug changes.
|
2013-10-01 16:31:46 -04:00 |
|
Adam Ierymenko
|
3443b203e4
|
Each peer now tracks the last time it announced multicast LIKEs independently and does so frequently enough to prevent expires. Also add a multicast debug facility for use on the testnet.
|
2013-10-01 16:01:36 -04:00 |
|
Adam Ierymenko
|
1a76455986
|
Fix for multicast propagation to prevent buildup of frames ping-ponging between supernodes.
|
2013-09-30 17:10:34 -04:00 |
|
Adam Ierymenko
|
e72a1de0d5
|
Fix bug in next hop selection.
|
2013-09-30 16:31:22 -04:00 |
|
Adam Ierymenko
|
20832a0562
|
Send reset of OK(HELLO) in both places where it gets composed.
|
2013-09-30 14:55:10 -04:00 |
|
Adam Ierymenko
|
9db7939d38
|
Make new multicast depth and prefix bits parameters configurable.
|
2013-09-30 13:51:56 -04:00 |
|
Adam Ierymenko
|
4ecb9369b5
|
Fix for multicast propagation -- supernodes must always keep propagating. Also fix mac-tap build on new version of Xcode CL tools. Must use old llvm-g++ instead of clang for i686 -mkernel.
|
2013-09-30 11:05:35 -04:00 |
|
Adam Ierymenko
|
0dca9964bf
|
Whew, it builds!
|
2013-09-27 16:03:13 -04:00 |
|
Adam Ierymenko
|
4e010da54b
|
Work in progress...
|
2013-09-26 17:45:19 -04:00 |
|
Adam Ierymenko
|
24bad9f3d1
|
More work in progress in new multicast propagation...
|
2013-09-25 17:41:49 -04:00 |
|
Adam Ierymenko
|
f3128a18fe
|
Work in progress...
|
2013-09-25 10:55:27 -04:00 |
|
Adam Ierymenko
|
5557a8192d
|
Work in progress...
|
2013-09-24 17:35:05 -04:00 |
|
Adam Ierymenko
|
bddbf4d276
|
Work in progress...
|
2013-09-24 12:44:15 -04:00 |
|