OC-Copper/protocol.1

Copper Protocol :: Hierarchial Gateways
 20kdc, 2017

"Hierarchial Gateways" are a system for ISP-like bodies to prevent their
 users from causing havoc.
They are simply base low-level Copper nodes with two interfaces and the
 following rules:

 For the FROM address:

If it's on the parent side, reject if it's prefixed with hostname .. "/",
 otherwise prefix it with "<".
If it's on the child side, reject if it's prefixed with "<",
 otherwise prefix it with hostname .. "/".

 For the TO address:

If it's on the parent side, reject unless prefixed with hostname .. "/",
 otherwise remove that.
 (Optionally, if the name is "*", bypass this rule completely.
  This is not recommended, though, as this allows sending a "complete broadcast packet" via "[some amount of <]*".)

If it's on the child side, reject unless prefixed with "<",
 otherwise remove that.
 (Optionally, if the name is "<*", reject anyway.
  This is a measure which you may or may not wish to take - if the above 'complete broadcast' possibility has been implemented, then it is a must.)

 For the packet's general routing:

If it's on the parent side, run the rules above on the addresses,
 and forward to child side if not rejected.
If it's on the child side, run the rules above on the addresses,
 and forward to parent side if not rejected.

Notably, the hops field should be incremented as if going through a normal routing node -
 this prevents system misconfiguration from causing a complete meltdown.

This introduces a simple hierarchial structure that does not require any
 support code apart from in the nodes supporting the hierarchy.
There are only two downsides:
 1. Nodes connected to two gateways
     could have multiple addresses but believe they only have one
 2. Nodes behind two nested gateways can address themselves in two ways

However, this should all work out as long as people make a deliberate
 effort not to notice the hierarchial structure system in their code.

Specifically, problem 2 only causes an issue should some nodes not
 directly involved in gateway activities be
 attempting to parse hierarchial addresses.

Possible uses of hierarchial gateways:
1. A safe (untrusting of servers in it) inter-server networking hub,
    following the same protocol as everything else in Copper,
    unlike certain competitors
2. ISPs within servers, perhaps those using the hubs
Add incomplete workspace, for now. 2017-03-18 20:34:13 +11:00			`Copper Protocol :: Hierarchial Gateways`
			`20kdc, 2017`

			`"Hierarchial Gateways" are a system for ISP-like bodies to prevent their`
			`users from causing havoc.`
			`They are simply base low-level Copper nodes with two interfaces and the`
			`following rules:`

			`For the FROM address:`

Lowered protocol packet size limit and changed how it's calculated, also changed testcase to be slightly less worst-case. The previous testcase was "all nodes communicating randomly", basically a worst-case. This testcase is somewhat more realistic, a set of nodes communicating between each other via other nodes, a given TO node recurring once every 5 seconds (approximately). Notably, the 'packet transfer total' figure should be halved, as in the testcase pings and responses are used, but only responses are counted. 2017-03-18 23:28:46 +11:00			`If it's on the parent side, reject if it's prefixed with hostname .. "/",`
Be more explicit in protocol.1 about packet alterations, add license header to occure.lua 2017-03-20 11:33:06 +11:00			`otherwise prefix it with "<".`
Add incomplete workspace, for now. 2017-03-18 20:34:13 +11:00			`If it's on the child side, reject if it's prefixed with "<",`
Be more explicit in protocol.1 about packet alterations, add license header to occure.lua 2017-03-20 11:33:06 +11:00			`otherwise prefix it with hostname .. "/".`
Add incomplete workspace, for now. 2017-03-18 20:34:13 +11:00
			`For the TO address:`

			`If it's on the parent side, reject unless prefixed with hostname .. "/",`
Be more explicit in protocol.1 about packet alterations, add license header to occure.lua 2017-03-20 11:33:06 +11:00			`otherwise remove that.`
Clarify possibilities of interaction between broadcast packets and hierarchial gateways. The implementation in the oc/ subfolder of a hierarchial gateway goes with the "allow subnets to cause higher-level broadcasts, and allow higher levels to cause subnet broadcasts, but don't let messages leak" solution That is, the default if hierarchial gateways have no special handling for broadcast addresses. 2017-03-21 03:20:52 +11:00			`(Optionally, if the name is "*", bypass this rule completely.`
			`This is not recommended, though, as this allows sending a "complete broadcast packet" via "[some amount of <]*".)`

Add incomplete workspace, for now. 2017-03-18 20:34:13 +11:00			`If it's on the child side, reject unless prefixed with "<",`
Be more explicit in protocol.1 about packet alterations, add license header to occure.lua 2017-03-20 11:33:06 +11:00			`otherwise remove that.`
Clarify possibilities of interaction between broadcast packets and hierarchial gateways. The implementation in the oc/ subfolder of a hierarchial gateway goes with the "allow subnets to cause higher-level broadcasts, and allow higher levels to cause subnet broadcasts, but don't let messages leak" solution That is, the default if hierarchial gateways have no special handling for broadcast addresses. 2017-03-21 03:20:52 +11:00			`(Optionally, if the name is "<*", reject anyway.`
			`This is a measure which you may or may not wish to take - if the above 'complete broadcast' possibility has been implemented, then it is a must.)`
Be more explicit in protocol.1 about packet alterations, add license header to occure.lua 2017-03-20 11:33:06 +11:00
			`For the packet's general routing:`

			`If it's on the parent side, run the rules above on the addresses,`
			`and forward to child side if not rejected.`
			`If it's on the child side, run the rules above on the addresses,`
			`and forward to parent side if not rejected.`

			`Notably, the hops field should be incremented as if going through a normal routing node -`
			`this prevents system misconfiguration from causing a complete meltdown.`
Add incomplete workspace, for now. 2017-03-18 20:34:13 +11:00
			`This introduces a simple hierarchial structure that does not require any`
			`support code apart from in the nodes supporting the hierarchy.`
			`There are only two downsides:`
			`1. Nodes connected to two gateways`
			`could have multiple addresses but believe they only have one`
			`2. Nodes behind two nested gateways can address themselves in two ways`

			`However, this should all work out as long as people make a deliberate`
			`effort not to notice the hierarchial structure system in their code.`

			`Specifically, problem 2 only causes an issue should some nodes not`
			`directly involved in gateway activities be`
			`attempting to parse hierarchial addresses.`

			`Possible uses of hierarchial gateways:`
			`1. A safe (untrusting of servers in it) inter-server networking hub,`
			`following the same protocol as everything else in Copper,`
			`unlike certain competitors`
			`2. ISPs within servers, perhaps those using the hubs`