1454 Commits

Author	SHA1	Message	Date
Adam Ierymenko	010d0a7d56	Docs and a bit of cleanup. In particular ALL makes no sense for revocations because they have IDs. In that case you would just revoke the COM.	2017-03-13 06:53:23 -07:00
Adam Ierymenko	0f3148bda2	Roots need to respond to lots of WHOISes	2017-03-10 20:08:07 -08:00
Adam Ierymenko	e3b1fc2ac0	Tweak WHOIS path for federation.	2017-03-10 19:52:08 -08:00
Adam Ierymenko	db87d95c1d	getUpstreamPeer issue with interim federated roots	2017-03-10 19:31:51 -08:00
Adam Ierymenko	47166c9614	Sigh. Another thinko.	2017-03-10 17:54:14 -08:00
Adam Ierymenko	ecacdf27a9	Build fix (typo)	2017-03-10 17:45:05 -08:00
Adam Ierymenko	aad6f79efa	Also must mask off counter bits in IV in cryptField.	2017-03-10 17:44:25 -08:00
Adam Ierymenko	0c00b83702	cryptField() used to obscure extended fields in HELLO cannot use mangleKey()	2017-03-10 17:34:41 -08:00
Adam Ierymenko	a97918f812	Windows build fixes.	2017-03-07 13:57:31 -08:00
Adam Ierymenko	5e6a4e5f5e	Send revocations automatically on deauth for instant kill, also fix some issues with the RP.	2017-03-06 15:12:28 -08:00
Adam Ierymenko	d56f740dc6	Now with less bugs.	2017-03-03 13:49:21 -08:00
Adam Ierymenko	a577b8d381	Update how controller handles circuit tests -- save results to filesystem.	2017-03-01 16:33:34 -08:00
Adam Ierymenko	136fddc7f1	Fix FILTER_TRACE breakage.	2017-03-01 15:14:57 -08:00
Adam Ierymenko	ce0c87f8ff	Merge branch 'dev' of http://10.6.6.2/zerotier/ZeroTierOne into dev	2017-03-01 15:12:26 -08:00
Adam Ierymenko	d79585d44d	Circuit tests now report link quality. Also fixed a little thing in revocation propagation.	2017-03-01 15:12:17 -08:00
Grant Limberg	592b628523	comment broken TRACE message	2017-03-01 14:50:28 -08:00
Adam Ierymenko	1d39be61b2	ZeroTier now has link quality measurement. We are not using this yet but decided to put it in to prep for future QoS support and SD-WAN stuff.	2017-03-01 14:36:52 -08:00
Adam Ierymenko	2bf9145ae6	Outgoing side of packet counter for link quality reporting. Also some cleanup and a cluster mode build fix.	2017-03-01 10:22:57 -08:00
Adam Ierymenko	127bcb02ff	Save space in expecting-reply-to tracking.	2017-03-01 09:41:37 -08:00
Adam Ierymenko	2b10a982e9	Match on tag sender equals or tag recipient equals.	2017-02-28 09:22:10 -08:00
Adam Ierymenko	31bece7fa0	Add ipauth handling of IPv6 NDP neighbor solicitations and advertisements. IPv6 works well now with ipauth.	2017-02-28 07:43:40 -08:00
Adam Ierymenko	4436824faf	ipauth characteristic now works with ARP	2017-02-27 17:51:58 -08:00
Adam Ierymenko	9d7ff26f25	Helps if you actually add the ipauth mask to the characteristics mask.	2017-02-23 14:27:31 -08:00
Adam Ierymenko	010dbc8b2b	Merge.	2017-02-23 12:35:20 -08:00
Adam Ierymenko	72653e54f9	Finish wiring up ipauth and macauth to Network filter.	2017-02-23 12:34:17 -08:00
Grant Limberg	93ec86a26e	iOS fixes	2017-02-23 12:26:11 -08:00
Adam Ierymenko	10185e92fa	Certificate of ownership -- used to secure against IP address spoofing, especially for IPv4 and regular IPv6.	2017-02-23 11:47:36 -08:00
Adam Ierymenko	b679ebde3b	Ad-hoc networks, a cool and easy to implement little feature that allows controllerless networks. These only allow IPv6 6plane, no multicast, and the network ID encodes the allowed port range.	2017-02-22 15:32:55 -08:00
Adam Ierymenko	afba19e01c	When deciding whether to send PUSH_DIRECT_PATHS we should check global trust flag, not the one passed into receive().	2017-02-16 09:44:04 -08:00
Adam Ierymenko	af4e79735c	Fix "orbit" semantics. Federation works.	2017-02-13 16:38:21 -08:00
Adam Ierymenko	969e09210d	Fix loading of existing moons.	2017-02-13 16:14:48 -08:00
Adam Ierymenko	4b11566505	Integrate moon concept into http config bus, and clean up that code quite a bit.	2017-02-13 14:27:08 -08:00
Adam Ierymenko	e4b6611201	Only accept world updates from upstreams.	2017-02-13 09:46:34 -08:00
Adam Ierymenko	e6840a1863	Can't erase from vector using const_iterator on some C++ compilers.'	2017-02-13 09:26:05 -08:00
Adam Ierymenko	42f28bce52	Cleanup and make moons (federated roots) a little easier to deal with.	2017-02-13 09:03:48 -08:00
Adam Ierymenko	cdc289fa9c	Tags work.	2017-02-07 14:06:40 -08:00
Adam Ierymenko	672f17c6e9	Add a mask and value range to the IP tos rule field. This allows TOS to be matched more usefully. This will break anyone using tos in the beta, but nobody seems to be and its pre-release so now is the time.	2017-02-07 09:33:39 -08:00
Adam Ierymenko	723a9a6e9a	Small additional efficiency improvement.	2017-02-06 17:20:22 -08:00
Adam Ierymenko	59ba7c8bf5	Improve efficiency of pushCredentials() method since it gets called a lot.	2017-02-06 17:10:20 -08:00
Adam Ierymenko	78d548458b	Capabilities basically work but need to refactor a bit for performance reasons.	2017-02-06 16:38:48 -08:00
Adam Ierymenko	9ddc2a4331	Add a break action to rules engine to make capabilities easier to use.	2017-02-06 14:00:49 -08:00
Adam Ierymenko	435e4c4695	Fix HELLO parse bug.	2017-02-06 12:06:10 -08:00
Adam Ierymenko	21f4a97c35	CSPRNG performance improvement, self test build fix.	2017-02-06 11:49:41 -08:00
Adam Ierymenko	e0d63c50db	One more tweak after thinking about related keys and key stream reuse. Just a precaution.	2017-02-06 07:45:57 -08:00
Adam Ierymenko	803f74634a	Tweak how we do crypto of the masked portions of HELLO just to be more "boring" in the DJB sense.	2017-02-06 07:39:38 -08:00
Adam Ierymenko	f85a630a64	Docs and a small build fix in debug mode.	2017-02-06 07:17:45 -08:00
Adam Ierymenko	43182f8f57	Docs, code cleanup, and protect the extra new fields of HELLO with encryption as a precaution.	2017-02-05 16:19:03 -08:00
Adam Ierymenko	594cb1fad8	Small fix for duplicates in world definitions.	2017-02-04 19:29:39 -08:00
Adam Ierymenko	3587aa1ea7	Add and send certificates of representation to tell people what our valid upstreams are. These are not used yet but will be needed for future privacy modes, etc. Also some cleanup.	2017-02-04 13:17:00 -08:00
Adam Ierymenko	beb642faa5	Stub out CAN_REACH.	2017-02-04 10:21:31 -08:00