devilutionX-ZeroTierOne

Author	SHA1	Message	Date
Adam Ierymenko	e53f63ca87	Broke down and added an OR to the rules engine. It is now possible to have a series of MATCHes that are ORed.	10 years ago
Adam Ierymenko	45c4ccb153	Add a tags both equal match.	10 years ago
Adam Ierymenko	adeb7e7da0	Make capability flags match more user-friendly and appropriate since "match any flag" is generally what we want.	10 years ago
Adam Ierymenko	988049f39b	Add new rule to rules engine: random match.	10 years ago
Adam Ierymenko	7e4b6b594b	It now builds.	10 years ago
Adam Ierymenko	eac3667ec1	Bunch more refactoring and work on revocations, etc.	10 years ago
Adam Ierymenko	1f74dd4589	Revocation work in progress, add WATCH which is TEE with implicit rate sync (thanks JG@DCVC!), and clean up some cruft in Network.	10 years ago
Adam Ierymenko	15402933bc	Add physical MTU recommendation hint to network config via API.	10 years ago
Adam Ierymenko	5b6d27e659	Implement relay policy, and setting multicast limit to 0 now disables multicast on the network as would be expected.	10 years ago
Adam Ierymenko	0d4109a9f1	More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.	10 years ago
Adam Ierymenko	b5c86b6ba4	Bunch more path refactoring. Peers no longer forget paths, but do not normally use expired paths. Expired paths might still be tried if nothing else is reachable.	10 years ago
Adam Ierymenko	eebcf08084	Tweaks to new Path code for dual-stack operation, and other fixes.	10 years ago
Adam Ierymenko	8b6d23b9f6	Optimize filter code a bit, and add a network-level setting for what should happen if an unsupported or unknown MATCH is encountered in a rules table.	10 years ago
Adam Ierymenko	54489a7f61	rename SAMENESS to DIFFERENCE which is less confusing	10 years ago
Adam Ierymenko	8e3004591b	Add overlooked MATCH_ICMP to rule set.	10 years ago
Adam Ierymenko	ded5a53a6c	Documentation updates, add rules engine revision to network config request meta-data.	10 years ago
Adam Ierymenko	d637988ccf	Fix chicken or egg problem in tags, and better filter debug instrumentation.	10 years ago
Adam Ierymenko	5eaf397a94	Add a debug log feature in the filter, which only works if enabled in Network.cpp.	10 years ago
Adam Ierymenko	95ff057e04	Increase rule limits a little since chunking in netconf can accomodate this.	10 years ago
Adam Ierymenko	2cdda38dc4	It basically works... at least on current controllers.	10 years ago
Adam Ierymenko	ccea3d04d6	Push NETWORK_CONFIG_REFRESH on POSTs to /member/... in controller.	10 years ago
Adam Ierymenko	8e3463d47a	Add length limit to TEE and REDIRECT, and completely factor out old C json-parser to eliminate a dependency.	10 years ago
Adam Ierymenko	e2f783ebbd	.	10 years ago
Adam Ierymenko	4d9b74b171	.	10 years ago
Adam Ierymenko	98152d974a	More cleanup and removal of DeferredPackets, will do the latter in a more elegant way.	10 years ago
Adam Ierymenko	7e6e56e2bc	Bunch of work on pushing and replication of tags and capabilities, and protocol cleanup.	10 years ago
Adam Ierymenko	67cb03742e	Add tag rules and split out rule serialize/deserialize so the code can be reused.	10 years ago
Adam Ierymenko	ecc1324bb0	Rules engine work: capability based security model with tags and capabilities, and some cleanup across other places.	10 years ago
Adam Ierymenko	d3b0081447	Cleanup...	10 years ago
Adam Ierymenko	22e44c762b	More rules engine work: key/value pair matching for microsegmentation.	10 years ago
Adam Ierymenko	eaf6d6c938	Basic L2/L3 filter for rules engine (not integrated yet) and some cleanup.	10 years ago
Adam Ierymenko	9657675755	Plumbing through trusted path stuff to OneService.	10 years ago
Adam Ierymenko	765082fdb6	Trusted path support, and version bump to 1.1.9	10 years ago
Adam Ierymenko	330c80f3f5	Add rule type to match a COM field of the peer by ID and value because this will be powerful.	10 years ago
Adam Ierymenko	e09c1a1c11	Big refactor mostly builds. We now have a uniform backward compatible netconf.	10 years ago
Adam Ierymenko	4446dbde5e	Big refactor in service code to prep for plumbing through route management.	10 years ago
Adam Ierymenko	82635ce606	Add flags and metric to ZT-managed routes.	10 years ago
Adam Ierymenko	9161eebc68	Carry virtual network routes through to API.	10 years ago
Adam Ierymenko	37b89b3944	Add TCP relative sequence number criterion for documentation/posterity.	10 years ago
Adam Ierymenko	8b9519f0af	Simplify a bunch of NetworkConfig stuff by eliminating accessors, also makes network controller easier to refactor.	10 years ago
Adam Ierymenko	69d0562e2c	docs	10 years ago
Adam Ierymenko	7913fa7bbd	Dead code removal.	10 years ago
Adam Ierymenko	0f17077b3d	Merge gateways and routes in netconf since they are the same thing.	10 years ago
Adam Ierymenko	e5cc487b95	Beginning of security doc and kill some obsolete defines in main include file.	10 years ago
Adam Ierymenko	b9dba97fdb	Bunch more refactoring for an even more compact NetworkConfig representation, especially rules.	10 years ago
Adam Ierymenko	246f86dad3	Define an "anchor" as a statically defined device that serves as a network lookup point.	10 years ago
Adam Ierymenko	d736074301	Refactor rules table in-memory structure in new NetworkConfig to permit far more rules with better space efficiency.	10 years ago
Adam Ierymenko	af471af8ef	Shrink NetworkConfig slightly.	10 years ago
Adam Ierymenko	6f854c8391	NetworkConfig refactor part 1	10 years ago
Adam Ierymenko	92f24d1988	Make maximum size of a circuit test structure sane.	10 years ago

1 2 3

134 Commits (8cced06a2dff66300a46e2962cd462f58096b15c)