Adam Ierymenko
|
bf2b9e3692
|
Auto-authorize new members on public networks properly.
|
9 years ago |
|
Adam Ierymenko
|
0d066e3b08
|
Fix JSON parse bug in REDIRECT target.
|
9 years ago |
|
Adam Ierymenko
|
fe530548bb
|
Fix MATCH_RANDOM in controller.
|
9 years ago |
|
Adam Ierymenko
|
a54c2b438c
|
Basic support for streaming of changes via stdout from controller.
|
9 years ago |
|
Adam Ierymenko
|
ccdd4ffda7
|
Move split() to OSUtils since it is not used in core.
|
9 years ago |
|
Adam Ierymenko
|
25f9c294dc
|
Small bug fix and warning removal.
|
9 years ago |
|
Adam Ierymenko
|
07b2a3818c
|
Fix TTL scaling in cert.
|
9 years ago |
|
Adam Ierymenko
|
15c6e2ec70
|
Fix member deauthorization time threshold bug.
|
9 years ago |
|
Adam Ierymenko
|
e26bee45fb
|
Multithreading in network controller. Threads are only started if controller is used.
|
9 years ago |
|
Adam Ierymenko
|
1b10d3413a
|
Use circuit breaker only for requests.
|
9 years ago |
|
Adam Ierymenko
|
f0fcd222a1
|
Actually push updates when things change.
|
9 years ago |
|
Adam Ierymenko
|
298e4a9f14
|
Also avoid sending tags and caps to old members since there is no point.
|
9 years ago |
|
Adam Ierymenko
|
226123ca08
|
Refactor controller to permit sending of pushes as well as just replies to config requests.
|
9 years ago |
|
Adam Ierymenko
|
5ebf5077f5
|
Log last meta-data in controller, and ease up just a bit on keepalives.
|
9 years ago |
|
Adam Ierymenko
|
1ebfca666d
|
Memo-ize some computed stuff to control CPU utilization.
|
9 years ago |
|
Adam Ierymenko
|
3d948a930e
|
Send a blanket rule to old versions. New versions will still bidirecitonally enforce on the inbound side.
|
9 years ago |
|
Adam Ierymenko
|
4524899e4d
|
Update LM time on members on request.
|
9 years ago |
|
Adam Ierymenko
|
360c84e035
|
Minor fixes.
|
9 years ago |
|
Adam Ierymenko
|
4868d21526
|
Bug fixes in controller refactor.
|
9 years ago |
|
Adam Ierymenko
|
a78d7311a6
|
Fix network list API call.
|
9 years ago |
|
Adam Ierymenko
|
08ff666e99
|
.
|
9 years ago |
|
Adam Ierymenko
|
0d108d37f6
|
.
|
9 years ago |
|
Adam Ierymenko
|
b03c7b2f30
|
Refactor controller to use split-out DB for better performance and less ugly.
|
9 years ago |
Grant Limberg
|
8ffae313fd
|
add new files & remove old ones from VS project. Now builds & runs on Windows again
|
10 years ago |
|
Adam Ierymenko
|
2cb760e0ac
|
Fix ICMP json.
|
10 years ago |
|
Adam Ierymenko
|
2d6a4e5974
|
cleanup
|
10 years ago |
|
Adam Ierymenko
|
e53f63ca87
|
Broke down and added an OR to the rules engine. It is now possible to have a series of MATCHes that are ORed.
|
10 years ago |
|
Adam Ierymenko
|
45c4ccb153
|
Add a tags both equal match.
|
10 years ago |
|
Adam Ierymenko
|
adeb7e7da0
|
Make capability flags match more user-friendly and appropriate since "match any flag" is generally what we want.
|
10 years ago |
|
Adam Ierymenko
|
988049f39b
|
Add new rule to rules engine: random match.
|
10 years ago |
|
Adam Ierymenko
|
f0794e09b7
|
Controller cleanup.
|
10 years ago |
|
Adam Ierymenko
|
1eeebba2f7
|
Drop old /active path from network.
|
10 years ago |
|
Adam Ierymenko
|
2fc3d12fb6
|
Minor tweaks to member code in controller, and fix Linux build.
|
10 years ago |
|
Adam Ierymenko
|
7e4b6b594b
|
It now builds.
|
10 years ago |
|
Adam Ierymenko
|
1f74dd4589
|
Revocation work in progress, add WATCH which is TEE with implicit rate sync (thanks JG@DCVC!), and clean up some cruft in Network.
|
10 years ago |
|
Adam Ierymenko
|
68e549233d
|
Revise bearer token code in controller, and add relay policy as a meta-data item presented to controller by nodes (to facilitate future meshiness).
|
10 years ago |
|
Adam Ierymenko
|
ab9afbc749
|
(1) Public networks now get COMs even though they do not gate with them since they will need them to push auth for multicast stuff, (2) added a bunch of rate limit circuit breakers for anti-DOS, (3) cleanup.
|
10 years ago |
|
Adam Ierymenko
|
0d4109a9f1
|
More refactoring to clean up code, and add a gate function to make sure we do not handle OK packets we did not expect. This hardens up a few potential edge cases around security, since such messages might be used to e.g. pollute a cache and DOS under certain conditions.
|
10 years ago |
|
Adam Ierymenko
|
c9ee8612e4
|
Credential TTL (tags/capabilities) should be credential time max delta, since we could get pushed one that is newer.
|
10 years ago |
|
Adam Ierymenko
|
74afef8eb1
|
Think through and refine a few things in rules, especially edge case TEE and REDIRECT behavior and semantics.
|
10 years ago |
|
Adam Ierymenko
|
54489a7f61
|
rename SAMENESS to DIFFERENCE which is less confusing
|
10 years ago |
|
Adam Ierymenko
|
8e3004591b
|
Add overlooked MATCH_ICMP to rule set.
|
10 years ago |
|
Adam Ierymenko
|
7a00036954
|
Tweak log length to fit JSON for members within two 4096-kb blocks.
|
10 years ago |
|
Adam Ierymenko
|
914c42537c
|
Type fixes.
|
10 years ago |
|
Adam Ierymenko
|
297b1b4258
|
Another tiny API bug fix.
|
10 years ago |
|
Adam Ierymenko
|
35ac995d05
|
Fix setting of v6AssignMode in controller.
|
10 years ago |
|
Adam Ierymenko
|
d637988ccf
|
Fix chicken or egg problem in tags, and better filter debug instrumentation.
|
10 years ago |
|
Adam Ierymenko
|
858e8c5217
|
one more...
|
10 years ago |
|
Adam Ierymenko
|
df1ce856c9
|
A little bit more controller code cleanup.
|
10 years ago |
|
Adam Ierymenko
|
b5e0d014ab
|
Controller bug fixes
|
10 years ago |
