fastd/fastd
1
0
Fork 0
mirror of https://github.com/neocturne/fastd.git synced 2025-05-15 12:45:09 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
863 commits 1 branch 45 tags 2.5 MiB
Commit graph

863 commits

This branch
This branch
All branches
Author SHA1 Message Date
Matthias Schiffer
0f14f55629 Fix possible duplicate session establishment 
This is causing duplicate nonces in the worst case.
 2012-06-05 18:10:11 +02:00
Matthias Schiffer
227af67a3c printf: add %p pattern 2012-06-05 18:08:26 +02:00
Matthias Schiffer
450bbeb8a0 Add support for receiving reordered packets 2012-06-05 00:44:05 +02:00
Matthias Schiffer
b6b6e059d7 Increment rc version 2012-06-04 21:08:24 +02:00
Matthias Schiffer
163469f1ad Make sure refresh handshakes aren't cleaned 2012-06-04 20:17:08 +02:00
Matthias Schiffer
210a447124 Fix key invalidation order on key refresh 2012-06-04 19:55:57 +02:00
Matthias Schiffer
f2bb9fd6d4 Add version string to handshake 2012-06-04 17:21:32 +02:00
Matthias Schiffer
a157804e7b Decreate keepalive interval 2012-06-04 15:53:41 +02:00
Matthias Schiffer
33a2de703d Add pidfile support 2012-06-04 14:54:50 +02:00
Matthias Schiffer
813535cfe4 Improve handshake logging 2012-06-04 09:42:23 +02:00
Matthias Schiffer
7df8f9002e Fix warning message 2012-06-02 20:20:15 +02:00
Matthias Schiffer
60b7732c3e Fix a possible crash involving strange resolve returns 
fastd has been seen crashing on some hosts under strange circumstances. As the
bug seems to involve invalid address families, try to assure no unsupported
address families are returned from resolver.
 2012-06-01 00:55:27 +02:00
Matthias Schiffer
10496d2dc9 Increase rc version 2012-05-24 21:13:02 +02:00
Matthias Schiffer
b51dc590a1 Fix segfault on logging during config 2012-05-24 21:12:15 +02:00
Matthias Schiffer
e3ba3e8f66 Uninline pr_log 2012-05-18 08:48:24 +02:00
Matthias Schiffer
6c6398d355 Increment rc version 2012-05-18 03:10:02 +02:00
Matthias Schiffer
4429f145e6 Don't consider enable state on peer config change detection 2012-05-18 03:08:58 +02:00
Matthias Schiffer
b34b3e2817 New logging facilities 2012-05-18 03:08:40 +02:00
Matthias Schiffer
a2b9f2c732 Add daemon mode 2012-05-17 22:24:31 +02:00
Matthias Schiffer
d8a3a034a1 Close inherited file handles 2012-05-17 21:30:10 +02:00
Matthias Schiffer
f863ed2c2d Fix handling of unsuccessful resolve 2012-05-17 11:55:22 +02:00
Matthias Schiffer
e9536fe57e Free eth_addr list on exit 2012-05-04 03:47:01 +02:00
Matthias Schiffer
7c0b4a23b1 Zero out resolve return to silence valgrind warning 2012-05-04 03:44:53 +02:00
Matthias Schiffer
6e39dfe325 Use pipe to transmit resolved addresses to main thread 2012-05-03 20:00:20 +02:00
Matthias Schiffer
1519fd2734 Fix critical error introduced by copy-and-pasting, another possible NULL dereference 2012-05-03 19:59:03 +02:00
Matthias Schiffer
a3459bc678 Critical fix: ignore disabled peers when searching peer key to avoid NULL dereference 2012-05-03 00:01:36 +02:00
Matthias Schiffer
2add52c1de Increment rc 2012-04-27 20:01:47 +02:00
Matthias Schiffer
e3e5224901 Automatically set interface MTU 2012-04-27 16:17:24 +02:00
Matthias Schiffer
22a8e9ccb1 Send handshakes after resolve even when the connection is already established for session refreshs to work 2012-04-25 00:15:17 +02:00
Matthias Schiffer
13c13161fe resolve: don't set AI_IDN, it will fail with uClibc 2012-04-23 21:41:29 +02:00
Matthias Schiffer
80f8c201e8 Ignore handshakes for 15 seconds after session establishment to avoid excessive and concurrent handshakes 2012-04-22 21:34:35 +02:00
Matthias Schiffer
1bbef32baa Add --show-key and --machine-readable options 2012-04-22 13:54:36 +02:00
Matthias Schiffer
f21a6e3cec Ignore peers with own key 2012-04-22 00:30:09 +02:00
Matthias Schiffer
8c91443808 Don't regenerate session handshake keypair for every handshake so a global state can be used; remove the concept of temporary peers 
These changes will fix the possibility of a TCP-SYN-Flood-like DoS attack, at the cost of another
protocol change: as we can't count request IDs when we don't know have temporary peers, request IDs
are removed completely.
 2012-04-19 17:42:56 +02:00
Matthias Schiffer
c5b12202c8 Simplity option code, improve help page formatting 2012-04-18 04:09:04 +02:00
Matthias Schiffer
efe9525ca0 Add --help page 2012-04-17 20:18:24 +02:00
Matthias Schiffer
afdf78eeaf Revert using hostname as peer printf string as we'll always have a name when a hostname is given 2012-04-17 17:33:29 +02:00
Matthias Schiffer
ea4f56a537 Make sure we don't get interupted by signals when we can't handle them properly 2012-04-16 21:57:27 +02:00
Matthias Schiffer
73710b6b23 Cancel start if no peers are configured 2012-04-16 18:47:29 +02:00
Matthias Schiffer
9a1195a6f7 Remove unused variable 2012-04-16 10:52:43 +02:00
Matthias Schiffer
10c89779f8 Use -pthread instead of library 2012-04-16 10:51:51 +02:00
Matthias Schiffer
3442125164 Remove old line from COPYRIGHT file 2012-04-16 08:45:02 +02:00
Matthias Schiffer
dc11e3bc08 Rename peer-to-peer to forward; remove now useless peer command line option 2012-04-16 07:39:27 +02:00
Matthias Schiffer
872e0dfa86 Lots of fixes and improvements on the resolver code 2012-04-16 07:29:55 +02:00
Matthias Schiffer
3a87d747a0 Use handshake splay time for unestablished peers as well 2012-04-16 05:34:24 +02:00
Matthias Schiffer
96ec41768b Add support for peers specified by hostnames 2012-04-16 05:23:12 +02:00
Matthias Schiffer
037c58ae51 Fix minimum required CMake version 2012-04-15 12:15:11 +02:00
Matthias Schiffer
b9054051b9 Reduce task queue usage 2012-04-14 16:59:54 +02:00
Matthias Schiffer
74f2d0357f Fix reply for failed handshakes 2012-04-14 15:24:51 +02:00
Matthias Schiffer
701fcc7c7e Separate handshake from encryption method 2012-04-14 13:06:11 +02:00