www.tinc-vpn.org Git - tinc/commit

author	Guus Sliepen <guus@sliepen.eu.org>
	Sat, 7 Nov 2009 22:43:25 +0000 (23:43 +0100)
committer	Guus Sliepen <guus@sliepen.eu.org>
	Sat, 7 Nov 2009 22:43:25 +0000 (23:43 +0100)
commit	edebf579f2ea29e6e84360cb13731f5858a1555b
tree	800a23090c22067dc5d77be6cbfb346cf7aa6d18	tree \| snapshot
parent	c388527e341658dc915dd67c90bbc9b52b8539c0	commit \| diff

Use the TCP socket infrastructure for control sockets.

The control socket code was completely different from how meta connections are
handled, resulting in lots of extra code to handle requests. Also, not every
operating system has UNIX sockets, so we have to resort to another type of
sockets or pipes for those anyway. To reduce code duplication and make control
sockets work the same on all platforms, we now just connect to the TCP port
where tincd is already listening on.

To authenticate, the program that wants to control a running tinc daemon must
send the contents of a cookie file. The cookie is a random 256 bits number that
is regenerated every time tincd starts. The cookie file should only be readable
by the same user that can start a tincd.

Instead of the binary-ish protocol previously used, we now use an ASCII
protocol similar to that of the meta connections, but this can still change.

src/connection.c		diff \| blob \| history
src/connection.h		diff \| blob \| history
src/control.c		diff \| blob \| history
src/control.h		diff \| blob \| history
src/control_common.h		diff \| blob \| history
src/edge.c		diff \| blob \| history
src/edge.h		diff \| blob \| history
src/graph.c		diff \| blob \| history
src/graph.h		diff \| blob \| history
src/node.c		diff \| blob \| history
src/node.h		diff \| blob \| history
src/protocol.c		diff \| blob \| history
src/protocol.h		diff \| blob \| history
src/protocol_auth.c		diff \| blob \| history
src/subnet.c		diff \| blob \| history
src/subnet.h		diff \| blob \| history
src/tincctl.c		diff \| blob \| history
src/tincd.c		diff \| blob \| history