diff options
author | Dimitri Staessens <dimitri@ouroboros.rocks> | 2020-12-06 16:02:22 +0100 |
---|---|---|
committer | Sander Vrijders <sander@ouroboros.rocks> | 2020-12-07 18:39:48 +0100 |
commit | bb7476246e2f0bd974aec854de975cefec858362 (patch) | |
tree | 73d5ab67d22239d5dd534abf276d10e02aadd01e /src/tools/irm/irm_ipcp_bootstrap.c | |
parent | e5fdcfb3cfee29385c44bf487638ac5a535ee5d6 (diff) | |
download | ouroboros-bb7476246e2f0bd974aec854de975cefec858362.tar.gz ouroboros-bb7476246e2f0bd974aec854de975cefec858362.zip |
ipcpd: Use 64-bit flow endpoint IDs for DT
The EIDs are now 64-bit. This makes it a tad harder to guess them
(think of port scanning). The implementation has only the most
significant 32 bits random to quickly map EIDs to N+1 flows. While
this is equivalent to a random cookie as a check on flows, the
rationale is that valid endpoint IDs should be pretty hard to guess
(and thus be 64-bit random at least). Ideally one would use
content-addressable memory for this kind of mapping.
Signed-off-by: Dimitri Staessens <dimitri@ouroboros.rocks>
Signed-off-by: Sander Vrijders <sander@ouroboros.rocks>
Diffstat (limited to 'src/tools/irm/irm_ipcp_bootstrap.c')
-rw-r--r-- | src/tools/irm/irm_ipcp_bootstrap.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/tools/irm/irm_ipcp_bootstrap.c b/src/tools/irm/irm_ipcp_bootstrap.c index ba57a506..50f03030 100644 --- a/src/tools/irm/irm_ipcp_bootstrap.c +++ b/src/tools/irm/irm_ipcp_bootstrap.c @@ -65,7 +65,7 @@ #define SHA3_512 "SHA3_512" #define DEFAULT_ADDR_SIZE 4 -#define DEFAULT_EID_SIZE 2 +#define DEFAULT_EID_SIZE 8 #define DEFAULT_DDNS 0 #define DEFAULT_TTL 60 #define DEFAULT_ADDR_AUTH ADDR_AUTH_FLAT_RANDOM |