ouroboros/src/ipcpd/eth, branch 0.16.0

build: Update copyright to 2020

2020-01-02T14:07:36+00:00

Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

ipcpd: Fix length mismatch of encryption cypher

2019-08-09T17:43:07+00:00

The cypher_s field in QoS was sometimes 32 and sometimes 16 bits. This is now corrected to be 16 bits. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

lib: Add per-message encryption with OpenSSL

2019-08-03T10:10:57+00:00

This adds a per-message symmetric encryption using the OpenSSL library. At flow allocation, an Elliptic Curve Diffie-Hellman exchange is performed to derive a shared secret, which is then hashed using SHA3-256 to be used as a key for symmetric AES-256 encryption. Each message on an encrypted flow adds a small crypto header that includes a random 128-bit Initialization Vector (IV). If the server does not have OpenSSL enabled, the flow allocation will fail with an -ECRYPT error. Future optimizations are to piggyback the public keys on the flow allocation message, and to enable per-flow encryption that maintains the context of the encryption over multiple packets and doesn't require sending IVs. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

build: Set specific compiler flags for SWIG target

2019-03-21T11:33:54+00:00

The compiler flags for the SWIG target were added to the global CMAKE_C_FLAGS used for the entire project. This sets the flags uniquely for the SWIG target. The eth has a similar case for the c99 flag. There was a lingering include in dev.c that was removed. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

ipcpd: Restrict MTU for Ethernet over loopback

2019-03-21T08:42:34+00:00

This restricts the MTU for the Ethernet IPCP over loopback adapters (devices named "lo*") to avoid it allocating 65K buffers per packet and quickly filling the default RDRBUFF space. The restriction is set using the build option IPCP_ETH_LO_MTU, with a default value of 1500 bytes. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

build: Set default number of threads in eth to 1

2019-03-05T08:10:38+00:00

This makes the eth packet handler single-threaded by default, at least until stability issues that seem to be related to multi-threading are fixed. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

ipcpd: Refactor create_r and flow_req_arr

2019-03-04T07:57:57+00:00

The API calls for the IPCP to inform the IRMd of IPCP creation and incoming flow request had the pid_t in the call. This pid_t is removed and the getpid() call is now placed inside the function. Also refactors the cleanup for the main() functions of some of the lower IPCPs. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

2019-02-05T08:58:08+00:00

Updates the copyright notice in all sources to 2019. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

include: Add a flow_join operation for broadcast

2018-12-27T15:08:56+00:00

This adds a new flow_join operaiton for broadcast, which is a much safer solution than overloading destination name semantics. The internal API now also has a different IPCP_FLOW_JOIN operation. The IRMd doesn't need to query broadcasts IPCPs for the name, it can just check if an IPCP with the layer name exists. The broadcast IPCP doesn't need to implement the query proxy call anymore. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders

ipcpd: Wait for buffer when writing to Eth device

2018-12-08T09:08:07+00:00

This will cause the Ethernet IPCP to wait for a free buffer when using raw sockets to avoid packet drops when the network is congested. Signed-off-by: Dimitri Staessens Signed-off-by: Sander Vrijders