|
|
010d0a7d56
|
Docs and a bit of cleanup. In particular ALL makes no sense for revocations because they have IDs. In that case you would just revoke the COM.
|
2017-03-13 06:53:23 -07:00 |
|
|
|
0f3148bda2
|
Roots need to respond to lots of WHOISes
|
2017-03-10 20:08:07 -08:00 |
|
|
|
e3b1fc2ac0
|
Tweak WHOIS path for federation.
|
2017-03-10 19:52:08 -08:00 |
|
|
|
db87d95c1d
|
getUpstreamPeer issue with interim federated roots
|
2017-03-10 19:31:51 -08:00 |
|
|
|
47166c9614
|
Sigh. Another thinko.
|
2017-03-10 17:54:14 -08:00 |
|
|
|
ecacdf27a9
|
Build fix (typo)
|
2017-03-10 17:45:05 -08:00 |
|
|
|
aad6f79efa
|
Also must mask off counter bits in IV in cryptField.
|
2017-03-10 17:44:25 -08:00 |
|
|
|
0c00b83702
|
cryptField() used to obscure extended fields in HELLO cannot use mangleKey()
|
2017-03-10 17:34:41 -08:00 |
|
|
|
a97918f812
|
Windows build fixes.
|
2017-03-07 13:57:31 -08:00 |
|
|
|
5e6a4e5f5e
|
Send revocations automatically on deauth for instant kill, also fix some issues with the RP.
|
2017-03-06 15:12:28 -08:00 |
|
|
|
d56f740dc6
|
Now with less bugs.
|
2017-03-03 13:49:21 -08:00 |
|
|
|
a577b8d381
|
Update how controller handles circuit tests -- save results to filesystem.
|
2017-03-01 16:33:34 -08:00 |
|
|
|
136fddc7f1
|
Fix FILTER_TRACE breakage.
|
2017-03-01 15:14:57 -08:00 |
|
|
|
ce0c87f8ff
|
Merge branch 'dev' of http://10.6.6.2/zerotier/ZeroTierOne into dev
|
2017-03-01 15:12:26 -08:00 |
|
|
|
d79585d44d
|
Circuit tests now report link quality. Also fixed a little thing in revocation propagation.
|
2017-03-01 15:12:17 -08:00 |
|
|
|
592b628523
|
comment broken TRACE message
|
2017-03-01 14:50:28 -08:00 |
|
|
|
1d39be61b2
|
ZeroTier now has link quality measurement. We are not using this yet but decided to put it in to prep for future QoS support and SD-WAN stuff.
|
2017-03-01 14:36:52 -08:00 |
|
|
|
2bf9145ae6
|
Outgoing side of packet counter for link quality reporting. Also some cleanup and a cluster mode build fix.
|
2017-03-01 10:22:57 -08:00 |
|
|
|
127bcb02ff
|
Save space in expecting-reply-to tracking.
|
2017-03-01 09:41:37 -08:00 |
|
|
|
2b10a982e9
|
Match on tag sender equals or tag recipient equals.
|
2017-02-28 09:22:10 -08:00 |
|
|
|
31bece7fa0
|
Add ipauth handling of IPv6 NDP neighbor solicitations and advertisements. IPv6 works well now with ipauth.
|
2017-02-28 07:43:40 -08:00 |
|
|
|
4436824faf
|
ipauth characteristic now works with ARP
|
2017-02-27 17:51:58 -08:00 |
|
|
|
9d7ff26f25
|
Helps if you actually add the ipauth mask to the characteristics mask.
|
2017-02-23 14:27:31 -08:00 |
|
|
|
010dbc8b2b
|
Merge.
|
2017-02-23 12:35:20 -08:00 |
|
|
|
72653e54f9
|
Finish wiring up ipauth and macauth to Network filter.
|
2017-02-23 12:34:17 -08:00 |
|
|
|
93ec86a26e
|
iOS fixes
|
2017-02-23 12:26:11 -08:00 |
|
|
|
10185e92fa
|
Certificate of ownership -- used to secure against IP address spoofing, especially for IPv4 and regular IPv6.
|
2017-02-23 11:47:36 -08:00 |
|
|
|
b679ebde3b
|
Ad-hoc networks, a cool and easy to implement little feature that allows controllerless networks. These only allow IPv6 6plane, no multicast, and the network ID encodes the allowed port range.
|
2017-02-22 15:32:55 -08:00 |
|
|
|
afba19e01c
|
When deciding whether to send PUSH_DIRECT_PATHS we should check global trust flag, not the one passed into receive().
|
2017-02-16 09:44:04 -08:00 |
|
|
|
af4e79735c
|
Fix "orbit" semantics. Federation works.
|
2017-02-13 16:38:21 -08:00 |
|
|
|
969e09210d
|
Fix loading of existing moons.
|
2017-02-13 16:14:48 -08:00 |
|
|
|
4b11566505
|
Integrate moon concept into http config bus, and clean up that code quite a bit.
|
2017-02-13 14:27:08 -08:00 |
|
|
|
e4b6611201
|
Only accept world updates from upstreams.
|
2017-02-13 09:46:34 -08:00 |
|
|
|
e6840a1863
|
Can't erase from vector using const_iterator on some C++ compilers.'
|
2017-02-13 09:26:05 -08:00 |
|
|
|
42f28bce52
|
Cleanup and make moons (federated roots) a little easier to deal with.
|
2017-02-13 09:03:48 -08:00 |
|
|
|
cdc289fa9c
|
Tags work.
|
2017-02-07 14:06:40 -08:00 |
|
|
|
672f17c6e9
|
Add a mask and value range to the IP tos rule field. This allows TOS to be matched more usefully. This will break anyone using tos in the beta, but nobody seems to be and its pre-release so now is the time.
|
2017-02-07 09:33:39 -08:00 |
|
|
|
723a9a6e9a
|
Small additional efficiency improvement.
|
2017-02-06 17:20:22 -08:00 |
|
|
|
59ba7c8bf5
|
Improve efficiency of pushCredentials() method since it gets called a lot.
|
2017-02-06 17:10:20 -08:00 |
|
|
|
78d548458b
|
Capabilities basically work but need to refactor a bit for performance reasons.
|
2017-02-06 16:38:48 -08:00 |
|
|
|
9ddc2a4331
|
Add a break action to rules engine to make capabilities easier to use.
|
2017-02-06 14:00:49 -08:00 |
|
|
|
435e4c4695
|
Fix HELLO parse bug.
|
2017-02-06 12:06:10 -08:00 |
|
|
|
21f4a97c35
|
CSPRNG performance improvement, self test build fix.
|
2017-02-06 11:49:41 -08:00 |
|
|
|
e0d63c50db
|
One more tweak after thinking about related keys and key stream reuse. Just a precaution.
|
2017-02-06 07:45:57 -08:00 |
|
|
|
803f74634a
|
Tweak how we do crypto of the masked portions of HELLO just to be more "boring" in the DJB sense.
|
2017-02-06 07:39:38 -08:00 |
|
|
|
f85a630a64
|
Docs and a small build fix in debug mode.
|
2017-02-06 07:17:45 -08:00 |
|
|
|
43182f8f57
|
Docs, code cleanup, and protect the extra new fields of HELLO with encryption as a precaution.
|
2017-02-05 16:19:03 -08:00 |
|
|
|
594cb1fad8
|
Small fix for duplicates in world definitions.
|
2017-02-04 19:29:39 -08:00 |
|
|
|
3587aa1ea7
|
Add and send certificates of representation to tell people what our valid upstreams are. These are not used yet but will be needed for future privacy modes, etc. Also some cleanup.
|
2017-02-04 13:17:00 -08:00 |
|
|
|
beb642faa5
|
Stub out CAN_REACH.
|
2017-02-04 10:21:31 -08:00 |
|
