github/ZeroTierOne
1
0
Fork 0
mirror of https://github.com/ZeroTier/ZeroTierOne synced 2025-07-11 15:46:35 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 12

Temporarily DISABLE multicast authentication (doing in branch, will reenable in dev)

Browse source
This commit is contained in:
Adam Ierymenko 2014-09-08 08:25:06 -07:00
parent 4e9280fc7a
commit b8729de9da
3 changed files with 25 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

10
node/Switch.cpp
View file

@ -213,9 +213,13 @@ void Switch::onLocalEthernet(const SharedPtr<Network> &network,const MAC &from,c
outp.append((uint16_t)data.size());
outp.append(data);
C25519::Signature sig(_r->identity.sign(outp.field(ZT_PROTO_VERB_MULTICAST_FRAME_IDX__START_OF_SIGNED_PORTION,signedPartLen),signedPartLen));
outp.append((uint16_t)sig.size());
outp.append(sig.data,(unsigned int)sig.size());
if (network->authenticateMulticasts()) {
C25519::Signature sig(_r->identity.sign(outp.field(ZT_PROTO_VERB_MULTICAST_FRAME_IDX__START_OF_SIGNED_PORTION,signedPartLen),signedPartLen));
outp.append((uint16_t)sig.size());
outp.append(sig.data,(unsigned int)sig.size());
} else {
outp.append((uint16_t)0);
}
// FIXME: now we send the netconf cert with every single multicast,
// which pretty much ensures everyone has it ahead of time but adds