- 31 Jan, 2014 1 commit
-
-
Pieter Hintjens authored
-
- 02 Jan, 2014 1 commit
-
-
Pieter Hintjens authored
-
- 01 Jan, 2014 1 commit
-
-
Pieter Hintjens authored
- This seems redundant; is there a use case for NOT providing the IPC credentials to the ZAP authenticator? - More, why is IPC authentication done via libzmq instead of ZAP? Is it because we're missing the transport type on the ZAP request?
-
- 06 Dec, 2013 2 commits
-
-
Brandon Carpenter authored
Another take on LIBZMQ-568 to allow filtering IPC connections, this time using ZAP. This change is backward compatible. If the ZMQ_ZAP_IPC_CREDS option is set, the user, group, and process IDs of the peer process are appended to the address (separated by colons) of a ZAP request; otherwise, nothing changes. See LIBZMQ-568 and zmq_setsockopt documentation for more information.
-
Brandon Carpenter authored
-
- 04 Dec, 2013 1 commit
-
-
Brandon Carpenter authored
Adds ZMQ_IPC_ACCEPT_FILTER_{PID,UID,GID} socket options to add processs, user, and group IDs to the IPC filter sets. Fixes LIBZMQ-568.
-
- 25 Nov, 2013 1 commit
-
-
Chris Laws authored
-
- 26 Sep, 2013 1 commit
-
-
Pieter Hintjens authored
-
- 17 Sep, 2013 4 commits
-
-
Pieter Hintjens authored
This reverts commit bfd472f9.
-
Pieter Hintjens authored
This reverts commit 1206f457.
-
Laurent Alebarde authored
-
Laurent Alebarde authored
-
- 15 Sep, 2013 1 commit
-
-
Pieter Hintjens authored
* Removed redundant Z85 code and include files from project * Simplified use of headers in test cases (now they all just use testutil.hpp) * Export zmq_z85_encode() and zmq_z85_decode() in API * Added man pages for these two functions
-
- 12 Sep, 2013 1 commit
-
-
Pieter Hintjens authored
On ZMQ_CURVE_xxxKEY fetches, would return 41 bytes into caller's 40-byte buffer. Now these fetches only return 41 bytes if the caller explicitly provides a 41-byte buffer (i.e. the option size is 41).
-
- 09 Sep, 2013 1 commit
-
-
Pieter Hintjens authored
* This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL.
-
- 18 Aug, 2013 1 commit
-
-
Ian Barber authored
These were exposed to users, but have subsequently been removed as sockopts. They are currently only being used by ZAP, so I've moved it to a simpl function call (actually it's only used in one case even in that, so there may be a further simplification possible there).
-
- 17 Aug, 2013 1 commit
-
-
danielkr authored
-
- 03 Jul, 2013 1 commit
-
-
Christophe Juniet authored
Fix two unsigned comparisons to zero or more being always true. Clang won't compile this with -Werror.
-
- 29 Jun, 2013 1 commit
-
-
Martin Hurton authored
-
- 28 Jun, 2013 2 commits
-
-
Pieter Hintjens authored
The use of binary for CURVE keys is painful; you cannot easily copy these in e.g. email, or use them directly in source code. There are various encoding possibilities. Base16 and Base64 are not optimal. Ascii85 is not safe for source (it generates quotes and escapes). So, I've designed a new Base85 encoding, Z85, which is safe to use in code and elsewhere, and I've modified libzmq to use this where it also uses binary keys (in get/setsockopt). Very simply, if you use a 32-byte value, it's Base256 (binary), and if you use a 40-byte value, it's Base85 (Z85). I've put the Z85 codec into z85_codec.hpp, it's not elegant C++ but it is minimal and it works. Feel free to rewrap as a real class if this annoys you.
-
Pieter Hintjens authored
-
- 22 Jun, 2013 2 commits
-
-
Pieter Hintjens authored
-
Pieter Hintjens authored
-
- 20 Jun, 2013 1 commit
-
-
Pieter Hintjens authored
- ZMQ_CURVE_PUBLICKEY for clients and servers - ZMQ_CURVE_SECRETKEY for clients - ZMQ_CURVE_SERVERKEY for clients - ZMQ_CURVE_SERVER for servers - added tools/curve_keygen.c as example - updated man pages
-
- 17 May, 2013 1 commit
-
-
Pieter Hintjens authored
- we need to switch to PLAIN according to options.mechanism - we need to catch case when both peers are as-server (or neither is) - and to use username/password from options, for client
-
- 15 May, 2013 1 commit
-
-
Pieter Hintjens authored
* ZMQ_PLAIN_SERVER, ZMQ_PLAIN_USERNAME, ZMQ_PLAIN_PASSWORD options * Man page changes to zmq_setsockopt and zmq_getsockopt * Man pages for ZMQ_NULL, ZMQ_PLAIN, and ZMQ_CURVE * Test program test_security
-
- 12 Mar, 2013 2 commits
-
-
Pieter Hintjens authored
-
Pieter Hintjens authored
Copyrights had become ads for Sustrik's corporate sponsors, going against the original agreement to share copyrights with the community (that agreement was: one line stating iMatix copyright + one reference to AUTHORS file). The proliferation of corporate ads is also unfair to the many individual authors. I've removed ALL corporate title from the source files so the copyright statements can now be centralized in AUTHORS and source files can be properly updated on an annual basis.
-
- 20 Feb, 2013 1 commit
-
-
Pieter Hintjens authored
-
- 19 Feb, 2013 1 commit
-
-
Sébastien Rombauts authored
Fixed 7 MSVC2008 Compiler Warning (level 3) C4800: 'const int' : forcing value to bool 'true' or 'false' (performance warning) - added explicit test "(xxx != 0)" to get a "bool" value out of the "int" expression - see the MSDN recommandation http://msdn.microsoft.com/en-us/library/b6801kcy(v=vs.90).aspx
-
- 31 Jan, 2013 1 commit
-
-
Pieter Hintjens authored
-
- 30 Jan, 2013 1 commit
-
-
Pieter Hintjens authored
-
- 02 Jan, 2013 2 commits
-
-
Matt Arsenault authored
-
Matt Arsenault authored
-
- 09 Nov, 2012 1 commit
-
-
Martin Hurton authored
-
- 29 Oct, 2012 1 commit
-
-
Hardeep authored
- Created a new option ZMQ_ROUTER_RAW_SOCK - Added new raw_encoder and raw_decoder to receive and send messages in raw form to remote client - Added test case file tests/test_raw_sock.cpp o To create a raw router sock set the ZMQ_ROUTER_RAW_SOCK option o ZMQ_MSGMORE flag is ignored for non-id messages o To terminate a remote connection send id message followed by zero length data message
-
- 11 Aug, 2012 1 commit
-
-
Martin Hurton authored
Fixes #415.
-
- 12 Jun, 2012 2 commits
-
-
Ian Barber authored
This patch, salvaged from a trainwreck accidental merge earlier, adds a new sockopt, ZMQ_DELAY_ATTACH_ON_CONNECT which prevents a end point being available to push messages to until it has fully connected, making connect work more like bind. This also applies to reconnecting sockets, which may cause message loss of in-queue messages, so it is sensible to use this in conjunction with a low HWM and potentially an alternative acknowledgement path. Notes on most of the individual commits can be found the repository log.
-
Ian Barber authored
Revert "After speaking with Ben Gray and the discussion on the mailing list, this is an attempt to create a sockopt to allow connecting pipes to not immediately be available for traffic. The problem is in a PUSH to many PULL situation, where there is a connect to a PULL which is not there. This connect will immediately create a pipe (unlike bind), and traffic will be load balanced to that pipe. This means if there is a persistently unavailable end point then the traffic will queue until HWM is hit, and older messages will be lost." This reverts commit fe3fb419.
-
- 01 Jun, 2012 1 commit
-
-
Ian Barber authored
After speaking with Ben Gray and the discussion on the mailing list, this is an attempt to create a sockopt to allow connecting pipes to not immediately be available for traffic. The problem is in a PUSH to many PULL situation, where there is a connect to a PULL which is not there. This connect will immediately create a pipe (unlike bind), and traffic will be load balanced to that pipe. This means if there is a persistently unavailable end point then the traffic will queue until HWM is hit, and older messages will be lost. This patch adds a sockopt ZMQ_DELAY_ATTACH_ON_CONNECT, which if set to 1 will attempt to preempt this behavior. It does this by extending the use of the session_base to include in the outbound as well as the inbound pipe, and only associates the pipe with the socket once it receives the connected callback via a process_attach message. This works, and a test has been added to show so, but may introduce unexpected complications. The shutdown logic in this class has become marginally more awkward because of this, requiring the session to serve as the sink for both pipes if shutdown occurs with a still-connecting pipe in place. It is also possible there could be issues around flushing the messages, but as I could not directly think how to create such an issue I have not written any code with regards to that. The documentation has been updated to reflect the change, but please do check over the code and test and review.
-