Joseph Henry
880a99adf8
Minor edits to comments
2022-10-25 14:17:23 -07:00
Joseph Henry
3b11915eab
Merge remote-tracking branch 'origin/expose-surface-addresses' into dev
2022-10-25 13:55:21 -07:00
travis laduke
82c799b9d1
Expose surface addresses in info json
...
Surface Addresses are the addresses that
the roots report back to you.
This is helpful for trouble shooting.
If you're behind NAT, the source port is different
than what zerotier is bound to.
If the list of surface address ports is larger than the list of
bound addresses, you are probably behind symmetric NAT.
Anways this can be added to later with a more simple
"easy" or "hard" nat computed message somewhere.
2022-10-25 11:25:21 -07:00
Joseph Henry
e1f60e3f83
Behavioral changes to multipath balance modes (See: #1745 and #1753 )
2022-10-09 23:07:16 -07:00
Joseph Henry
bc521504ca
Improved multipath link monitoring
2022-09-20 14:27:34 -07:00
Joseph Henry
0797adf223
Improve output of bond list command
2022-09-16 13:43:34 -07:00
Joseph Henry
50e131a4ff
Partial fix for discrepancy between docs and implementation
2022-09-15 15:56:23 -07:00
Grant Limberg
d7030b6e9c
html & unicode -> svg for sso logo
2022-06-08 16:17:28 -07:00
Grant Limberg
e1ca3c995d
this should not be quoted
2022-06-08 09:26:37 -07:00
Grant Limberg
c329fab966
add isError
to sso template variables
2022-05-16 09:25:36 -07:00
Grant Limberg
4c22793850
Embed default template in service
2022-05-13 16:18:34 -07:00
Grant Limberg
da74b9651c
Wire up inja for html template processing
2022-05-13 15:55:48 -07:00
Grant Limberg
c4df88354b
updates for macOS for inja support
2022-05-13 09:51:37 -07:00
Grant Limberg
b65c1ed3a0
Add inja
...
Requries update to C++17 standard
2022-05-13 09:34:15 -07:00
Grant Limberg
b329fb68a9
Cleanup rust-analyzer warnings
2022-05-12 21:04:16 -07:00
Grant Limberg
da179d9930
Clean up error flow for sso
...
error messages can now propagate to the user's browser
2022-05-12 17:00:43 -07:00
Grant Limberg
4151749dc9
Handle sso token exchange errors in zerotier client
2022-05-11 19:59:58 -07:00
Joseph Henry
55ec325961
Add localSocket to listpeers JSON output
2022-04-28 15:58:12 -07:00
Joseph Henry
caf1de3bcf
Allow TCP fallback when multipath is enabled
2022-04-28 11:12:04 -07:00
Joseph Henry
a9ad2924ac
Re-add user-configurable TCP fallback
2022-04-28 11:05:54 -07:00
Grant Limberg
1c464c2da1
fix potential cstring leaks
2022-04-15 09:16:02 -07:00
Grant Limberg
c2cfb4d1dc
remove stray #endif
2022-04-13 17:47:56 -07:00
Adam Ierymenko
f0b0172434
Merge branch 'master' into dev
2022-04-13 19:55:22 -04:00
Grant Limberg
23ef742e08
Fix for #1626
...
Port used for PortMapping was not properly randomized causing multiple clients on the same lan to request the same UPnP port, and not all routers handle this gracefully.
Also fixes issue where the portmapper wasn't started at all if a secondary port wasn't specified, or if the tertiary port was manually specified.
2022-04-13 13:53:42 -07:00
Joseph Henry
1294767b44
Fix ZT_SSO_SUPPORTED flag behavior. Allow disabling for embedded targets.
2022-04-13 10:05:49 -07:00
Joseph Henry
04b77773c4
Remove Synology-specific IP add block
2022-03-31 22:01:50 -07:00
Joseph Henry
6f4a69703b
Fix ZT_SSO_SUPPORTED flag behavior. Allow disabling for embedded targets.
2022-03-31 21:45:38 -07:00
Grant Limberg
73ec8cddd7
Show sso errors on the last step of the oidc process
2022-03-21 17:30:03 -04:00
Grant Limberg
3f19e7d73c
Show sso errors on the last step of the oidc process
2022-03-10 13:08:35 -08:00
Adam Ierymenko
93076dde56
Fix merged OneService.
2022-03-10 15:57:15 -05:00
Adam Ierymenko
3e78785dea
Merge OneService changes from master.
2022-03-10 15:50:01 -05:00
Adam Ierymenko
68c9398f71
Merge branch 'master' into dev
2022-03-10 15:48:47 -05:00
Joseph Henry
59b392af10
Merge pull request #1572 from zerotier/configurable-tcp-proxy
...
make TCP fallback relay address configurable
2022-03-07 09:17:43 -08:00
Grant Limberg
ecde26c823
fix http return value from one service when nework list is empty
2022-03-04 12:35:11 -08:00
Adam Ierymenko
567969d33c
1.8.6 with a UI non-responsiveness fix.
2022-03-04 14:54:51 -05:00
Grant Limberg
3cbea6c898
make TCP fallback relay address configurable
2022-03-02 11:44:04 -08:00
Joseph Henry
8148c658cf
Remove bonds for peers that have fully expired. Remove notion of bond health
2022-03-02 09:55:23 -08:00
Joseph Henry
566ac113e4
Merge branch 'dev' of https://github.com/zerotier/zerotierone into dev
2022-02-07 10:10:24 -08:00
Joseph Henry
926b2e168e
Add external listening addr/port pairs to status output (ticket #1555 )
2022-02-07 10:08:02 -08:00
Grant Limberg
f511c9c938
fix compile errors on non-sso platforms
2022-02-03 10:07:25 -08:00
Grant Limberg
aa97aabb4e
for now, only enable sso on certain platforms
...
mac, windows, linux x86/x86_64/aarch64
2022-02-01 11:07:37 -08:00
Grant Limberg
d719137565
temp workaround for oidc auth dropping issue
...
Add a method to "kick" the refresh thread and re-post the tokens in the case where the thread is somehow still running & controller pushes out an AUTH_REQUIRED. This situation happens in a corner case still under investigation where the controller pushes out many copies of the network config repeatedly
2022-01-20 09:44:56 -08:00
Grant Limberg
953e62f103
Clean up some extraneous output in release mode
2022-01-05 11:55:47 -08:00
Grant Limberg
dceba1f2f1
Merge branch 'dev' into zeroidc
2022-01-05 08:35:15 -08:00
Grant Limberg
cc6c48fca8
Merge pull request #1525 from StephenCWills/lowercase-windows-headers
...
Use lowercase when including Windows headers
2022-01-04 17:11:51 -08:00
staphen
1c956494a4
Use lowercase when including Windows headers
2021-12-29 16:29:08 -05:00
Grant Limberg
057356a725
Just some comments
2021-12-16 22:07:17 -08:00
Grant Limberg
2435ab70ab
remove some extra verbose logging
...
... and baby you got a full flow goin on
2021-12-16 12:37:22 -08:00
Grant Limberg
f489862500
update final page text a smidge
2021-12-16 12:20:31 -08:00
Grant Limberg
2642fa1ee2
Return HTML instead of blank page when auth is successful!
2021-12-16 12:06:16 -08:00
Grant Limberg
2293b0703f
Can get Central JSON bundle back to zerotier-one window
2021-12-16 11:37:58 -08:00
Grant Limberg
b567e91f68
fix
2021-12-15 14:36:50 -08:00
Grant Limberg
eee31605b1
Merge branch 'dev' into zeroidc
2021-12-15 14:17:26 -08:00
Grant Limberg
df9a7497b1
refactor out the separate AuthInfo struct
...
consolidated everything into the single IDC struct. Should help keep from rotating the pkce token as often & causing issues with the login window flapping
2021-12-15 14:16:17 -08:00
Joseph Henry
8019f13479
Merge branch 'dev' of https://github.com/zerotier/zerotierone into dev
2021-12-14 15:31:29 -08:00
Joseph Henry
1c6fd4125d
Fix custom policy parsing bug mentioned in issue #1507
2021-12-14 11:49:43 -08:00
Travis LaDuke
afdc91f21f
Convince macOS to do ipv6 dns lookups
...
Puts a value into System Config, similar to how DNS push works.
closes #1466
https://apple.stackexchange.com/questions/309430/ipv6-dns-resolution-on-macos-high-sierra
2021-12-13 12:34:41 -08:00
Grant Limberg
2ee595553a
Merge branch 'dev' into zeroidc
2021-12-08 12:35:36 -08:00
Grant Limberg
2d4fe9e6d0
Get oidc lib compiled into main binary on Windows
2021-12-08 12:14:15 -08:00
Joseph Henry
983336911c
Remove obsolete documentation
2021-12-07 09:14:54 -08:00
Grant Limberg
1192b1b422
refresh token run loop
...
Need central-side work to complete
2021-12-03 15:44:04 -08:00
Grant Limberg
43c528fdb6
Get expiry time out of access token & propagate
2021-12-03 11:32:29 -08:00
Grant Limberg
4ce810b421
On our way to processing tokens
2021-12-01 16:57:18 -08:00
Grant Limberg
730482e62f
encode network ID into sso state param
2021-12-01 15:02:21 -08:00
Grant Limberg
663a09b38d
oidc stuff coming across the wire properly and generating a working login URL
2021-12-01 13:01:32 -08:00
Grant Limberg
eaccce743f
moar plumbing progress
2021-12-01 12:07:05 -08:00
Grant Limberg
7cce23ae79
wip
2021-12-01 10:44:29 -08:00
Grant Limberg
a33d7c64fe
more fixin
2021-11-30 17:27:13 -08:00
Grant Limberg
d15516f0ef
query fix & controller build fix
2021-11-30 16:18:34 -08:00
Grant Limberg
4a1d6f4cc8
get central controller docker builds working again
2021-11-30 15:22:31 -08:00
Grant Limberg
6393a4beec
progress
2021-11-30 14:22:25 -08:00
Grant Limberg
5f548705dd
lots more refactoring
2021-11-29 14:11:29 -08:00
Grant Limberg
87fdd644d4
cleanup some ifdef'd things
2021-11-18 13:36:09 -08:00
Grant Limberg
2e356613ec
Refactor NetworkState into object with accessor methods
2021-11-18 12:39:55 -08:00
Adam Ierymenko
01bf3b8245
1.8.1 merge of changes in master
2021-10-28 14:46:38 -04:00
Joseph Henry
b277e04efa
Remove vestigial bonding parameters
2021-10-18 20:52:49 -07:00
Grant Limberg
27ce787fbd
fix central docker launch without redis
2021-09-15 09:21:41 -07:00
Adam Ierymenko
1b8917a57c
Fix for MacOS interface setup and config timing bugs.
2021-09-09 09:30:48 -04:00
Adam Ierymenko
d7ba2957cd
Tear down routes before devices when leaving a network or shutting down.
2021-09-02 17:56:06 -04:00
Joseph Henry
e1af003e4f
Consolidation of multipath logic. Better system separation
2021-09-01 21:37:49 -07:00
Adam Ierymenko
5005244d1b
Mac install fixes, remove obsolete stuff, and write local.conf via API for new UI integration.
2021-09-01 21:55:54 -04:00
Adam Ierymenko
11b352458e
Pick a new random secondary port if we are offline for more than path-timeout seconds (COMA problem workaround).
2021-08-31 16:47:00 -04:00
Adam Ierymenko
958420ee44
Fix Windows slowness on API query bug.
2021-08-23 11:58:02 -04:00
Travis LaDuke
db29c3ac13
Don't use v6 source addresses for v4 routes
...
and vice versa.
For issue #1104
With some printf debugging, I was seeing:
here, src fe80::3c7a:2dff:fe0c:21ed, target 10.147.20.0, matchingPrefixBits 0, mostMatchingPrefixBits 0
here, src fd8b:d512:4fd6:255:3c99:932f:2fda:6eff, target 10.147.20.0, matchingPrefixBits 0, mostMatchingPrefixBits 0
and (matchingPrefixBits >= mostMatchingPrefixBits) would be true
Then on mac, somewhere downstream from there, the default route would
get messed up:
default via 92:29:f1:6f:2f:76 dev en0
2021-08-03 16:21:18 -07:00
Travis LaDuke
740c77a488
Add more help for local.conf
2021-07-16 14:20:30 -07:00
Grant Limberg
364ad87e2b
add ssoEnabled flag to network config
2021-06-05 13:44:45 -07:00
Grant Limberg
e6b4fb5af7
add "ssoRedirectURL" to local.conf
...
plumbed it through to the central controller code
2021-06-04 16:29:03 -07:00
Grant Limberg
4fed56443e
secondary ports are no longer based on the node ID and fully randomized instead
2021-05-27 15:41:11 -07:00
Adam Ierymenko
2c1d7f3dcc
CLI printing of URL.
2021-05-25 12:58:33 -04:00
Adam Ierymenko
8bb5bc736d
Merge branch 'dev' of github.com:zerotier/ZeroTierOne into dev
2021-05-24 22:58:36 -04:00
Adam Ierymenko
b270d527f4
Basic plumbing for authentication requirement and piping through of URL information.
2021-05-24 22:58:17 -04:00
Joseph Henry
11ddbc6f30
Fix (some) compile-time warnings on Linux
2021-05-03 19:35:28 -07:00
Adam Ierymenko
5262a2f753
Merge branch 'dev' of github.com:zerotier/ZeroTierOne into dev
2021-03-16 13:50:12 -04:00
Adam Ierymenko
79e2fd4586
Automatically detect Ethernet tap friendly name in Windows shouldBind stuff.
2021-03-16 10:12:55 -04:00
Joseph Henry
353905394e
Fix interface blacklisting in shouldBindInterface
2021-03-09 12:34:01 -08:00
Pablo Hinojosa
d3fd0d3916
Show the port number which is not able to connect
2021-03-09 02:25:41 +01:00
Adam Ierymenko
a1b6cc44fc
Revert wireguard blacklist by default... turns out we have people who depend on that. may revisit.
2021-02-02 17:09:35 -05:00
bradleydiggs
a401b21f3d
blacklists wg# (WireGuard) interfaces by default
...
On certain OSes (Linux & Apple) tun#, tap#, and of course zt# are blacklisted by default, this adds wg# to the list as WireGuard is a similar popular service with wg# being the default adapter name(s) by convention.
2021-01-14 02:45:42 -06:00
Joseph Henry
3db328cc94
Fix minor semantic typo in error trace message
2020-11-29 16:57:30 -08:00
Grant Limberg
0a8b692482
fix device binding & possible loopback issue on FreeBSD
2020-11-25 12:03:17 -08:00