Tree: 24fce0be86

devx-1.4.0

master

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '24fce0be86'

${ noResults }

Commit Graph

34 Commits (24fce0be8632549ecd6061259d00ee786d0a2299)

Author	SHA1	Message	Date
Adam Ierymenko	ab9afbc749	(1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.	10 years ago
Adam Ierymenko	0d4109a9f1	More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.	10 years ago
Adam Ierymenko	c9ee8612e4	Credential TTL (tags/capabilities) should be credential time max delta, since we could get pushed one that is newer.	10 years ago
Adam Ierymenko	74afef8eb1	Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics.	10 years ago
Adam Ierymenko	54489a7f61	rename SAMENESS to DIFFERENCE which is less confusing	10 years ago
Adam Ierymenko	8e3004591b	Add overlooked MATCH_ICMP to rule set.	10 years ago
Adam Ierymenko	7a00036954	Tweak log length to fit JSON for members within two 4096-kb blocks.	10 years ago
Adam Ierymenko	914c42537c	Type fixes.	10 years ago
Adam Ierymenko	297b1b4258	Another tiny API bug fix.	10 years ago
Adam Ierymenko	35ac995d05	Fix setting of v6AssignMode in controller.	10 years ago
Adam Ierymenko	d637988ccf	Fix chicken or egg problem in tags, and better filter debug instrumentation.	10 years ago
Adam Ierymenko	858e8c5217	one more...	10 years ago
Adam Ierymenko	df1ce856c9	A little bit more controller code cleanup.	10 years ago
Adam Ierymenko	b5e0d014ab	Controller bug fixes	10 years ago
Adam Ierymenko	5eaf397a94	Add a debug log feature in the filter, which only works if enabled in Network.cpp.	10 years ago
Adam Ierymenko	1814016eb7	Add daemon thread to controller and move network member cache refreshes there.	10 years ago
Adam Ierymenko	6ecb42b031	docs and null check in controller code	10 years ago
Adam Ierymenko	60bc291414	Add noAutoAssignIps for member of networks.	10 years ago
Adam Ierymenko	ccea3d04d6	Push NETWORK_CONFIG_REFRESH on POSTs to /member/... in controller.	10 years ago
Adam Ierymenko	8e3463d47a	Add length limit to TEE and REDIRECT, and completely factor out old C json-parser to eliminate a dependency.	10 years ago
Adam Ierymenko	8d594f8b53	cleanup	10 years ago
Adam Ierymenko	5f4df0c6a9	Controller cleanup and perf improvements.	10 years ago
Adam Ierymenko	32fa061700	Compute credential TTL et al.	10 years ago
Adam Ierymenko	9a3c652a51	Get rid of expiration in Capability and Tag and move this to NetworkConfig so it can be set network-wide and reset if needed. Also add NetworkConfig field for this and centralize checking of credential time validity.	10 years ago
Adam Ierymenko	b0d888d235	Signing of Capability and Tag objects.	10 years ago
Adam Ierymenko	4dce71879f	.	10 years ago
Adam Ierymenko	212a5af9a5	Capabilities and tags in POST JSON.	10 years ago
Adam Ierymenko	1cadbfb4d1	Little fixes.	10 years ago
Adam Ierymenko	f119c4a456	Cache network members for performance, add network non-persisted fields.	10 years ago
Adam Ierymenko	faa9a06bf5	Controller fixes...	10 years ago
Adam Ierymenko	b7ebf6edbf	Cleanup and log how member was authorized.	10 years ago
Adam Ierymenko	b72847d504	Finally implement network join auth tokens, at least at the protocol level.	10 years ago
Adam Ierymenko	168b86fdcd	Controller docs and API fix.	10 years ago
Adam Ierymenko	a13f4d8353	We now always build the controller in ZeroTier One, at least for desktop and server targets. Also means that ZeroTier One now requires C++11. (Still keeping C++11 out of the core in node/ though.)	10 years ago
Adam Ierymenko	cc808cc2dd	Rules parsing stuff.	10 years ago
Adam Ierymenko	ce001198d8	.	10 years ago
Adam Ierymenko	c0639ccd37	Just about ready to test.	10 years ago
Adam Ierymenko	58701c1ca8	.	10 years ago
Adam Ierymenko	b08ca49580	More controller work -- it builds!	10 years ago
Adam Ierymenko	bd15262e54	Bunch of rule JSON stuff.	10 years ago
Adam Ierymenko	3cb2e1197f	.	10 years ago
Adam Ierymenko	c30f74987f	Starting refactor of controller...	10 years ago
Adam Ierymenko	22e44c762b	More rules engine work: key/value pair matching for microsegmentation.	10 years ago
Adam Ierymenko	6d8de214eb	Docs and controller API version	10 years ago
Adam Ierymenko	2d7c58540f	v6AssignMode bug fix	10 years ago
Adam Ierymenko	951038a304	Ignore /bits in IP assignments and just copy it from the corresponding LAN-local route. Having each managed IP assignment have its own bits field was just a source of user error and poor UX and was completely worthless.	10 years ago
Adam Ierymenko	b9329dc49a	Fix to IPv6 picking for small ranges.	10 years ago
Adam Ierymenko	6e08e1ae97	A few controller changes: (1) assign managed IPs that are assigned regardless of "assign mode" which now only controls auto-assignment or special addressing, (2) support proper issuing of managed IPv6 IPs, (3) support IPv6 auto-assign ranges	10 years ago
Adam Ierymenko	dd1d2b4d00	GitHub issue #343 -- fix authorizedMemberCount	10 years ago
Adam Ierymenko	030dfde38e	Unused printf removal while we are at it.	10 years ago