5f10c27b0f
add knock sequence timeout
...
continuous-integration/drone/push Build is passing
This provides another layer of additional protection against sweep attacks by ensuring the correct sequence be entered rapidly, within 3 seconds by default. It also prevents a client from sitting stuck forever part way through an old knock sequence.
2024-04-14 18:14:24 -06:00
0b876665d5
add step to create symlinks - required for compiling eBPF program
continuous-integration/drone/push Build was killed
continuous-integration/drone/promote/environment Build is passing
2024-04-14 09:59:23 -06:00
d422724556
source /root/.profile
continuous-integration/drone/push Build is failing
2024-04-14 09:54:43 -06:00
a73854e040
do explicitly create not create /dist, it's created during mount
continuous-integration/drone/push Build is failing
2024-04-14 09:53:52 -06:00
d40147d61c
source command is a bash thing
...
continuous-integration/drone/push Build is failing
continuous-integration/drone/promote/environment Build is failing
it doesn't exist in sh
2024-04-14 09:10:35 -06:00
3cbd6eace2
add public release volume to build pipeline
...
continuous-integration/drone/push Build encountered an error
continuous-integration/drone/promote/environment Build is failing
Allows us to get the latest build at any time from: https://public.deadbeef.codes/build/
2024-04-14 08:49:10 -06:00
42e5679570
Fix EOF error when building in dockerfile
continuous-integration/drone/push Build is failing
2024-04-14 08:43:27 -06:00
54159e2e5e
Add golang bin to path of build image
continuous-integration/drone/push Build is failing
continuous-integration/drone/promote/environment Build is failing
2024-04-14 08:29:21 -06:00
e197990185
mfw: half my commits are fixing yaml indentations
continuous-integration/drone/push Build encountered an error
continuous-integration/drone/promote/environment Build is failing
2024-04-13 23:00:02 -06:00
f3d84f09fd
fix indenting i do love yaml tho
continuous-integration/drone/push Build encountered an error
2024-04-13 22:59:21 -06:00
0382892f73
add condition for release
continuous-integration/drone/push Build encountered an error
continuous-integration/drone/promote/environment Build was killed
2024-04-13 22:58:24 -06:00
cb20f91223
add CICD pipeline (untested)
continuous-integration/drone/push Build encountered an error
2024-04-13 22:56:21 -06:00
2efe3344b4
knock frames should not contain any data, only headers
2024-04-13 21:50:20 -06:00
0ad3e2b0d4
enter eBPF, libpcap and CGO = bloat
2024-04-13 21:22:22 -06:00
3ae568639e
add flag to specify alternative filepath to secret
...
For the hyp client to be able to support multiple servers, each with their own secret, this capability is requried.
2024-04-11 15:31:08 -06:00
ead7578544
change pcap snaplen to 126 bytes
...
We really only care getting as far as the UDP header and can discard the rest. This should reduce load, and perhaps enable full pcap with ports on the BPF filter
UDP header = 8 bytes
IPv4 max size = 60 bytes
IPv6 fixed size = 40 bytes
Ethernet header size = 18 bytes
2024-04-11 15:21:48 -06:00
3ff47dfa19
use cobra args, not os.Args
2024-04-10 21:51:00 -06:00
291cbaabd4
BREAKING: changes to CLI interface, moved to cobra CLI
...
To better support configuration and user friendliness, migrated to cobra based CLI. The source tree structure has also changed to single go module, the server has been renamed hypd and client has been named hyp. The original structure came into being organically, but now that the vision is more complete it's best to make these adjustments now.
2024-04-10 21:42:38 -06:00
cca8310dd1
Change license from GPLv3 to BSD3
2024-04-10 06:10:38 -06:00
bd7fff97b3
rename hyp-client to hyp and upgrade internal dependencies
...
hyp-client is cumbersome. The server is called hypd, so it's fine if the client is just called hyp. Not only is it fine, it's better.
2024-04-07 21:34:14 -06:00
19388ca140
minor fixes to usage() and comments
2024-04-07 21:33:13 -06:00
b95f764fc9
breaking: increase keysize
...
This change increases the pre-shared key size, and requires regenerating any existing keys.
2024-04-07 21:15:34 -06:00
27c2f28429
keep track of knock sequences which are already used
2024-04-07 07:59:23 -06:00
4d948fca6b
initial commit
2024-04-06 21:59:13 -06:00
7ccdf4d89f
order fixes for clarity and comments
2024-04-06 21:52:02 -06:00
a42327c5ec
fix terminology and remove redundant paragraph
2024-04-06 19:27:23 -06:00
d7c5eb49e2
fix markdown formatting for URL
2024-04-06 19:24:36 -06:00
e2ad78edf2
add hyp readme
2024-04-06 19:23:20 -06:00
d63490cdb0
add otphyp package
...
provides a loose implementation of TOTP for hyp to interface with
2024-04-06 19:10:02 -06:00
8e833264e4
Initial commit
2024-04-06 21:54:14 +00:00