Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-08-25 | ec25519-fhmqvc: use different handshake keys as initiator and responder | Matthias Schiffer | |
This ensures that even in the unlikely case of a crossed handshake fastd will never establish two sessions with the same encryption key | |||
2013-08-25 | ec25519-fhmqvc: put public and secret keys together in a keypair structure | Matthias Schiffer | |
2013-08-21 | Fix typo in systemd unit description | Matthias Schiffer | |
2013-08-20 | OpenBSD doesn't support IPv4 on IPv6 sockets | Matthias Schiffer | |
2013-08-20 | Use v4-mapped addresses for IPv4 peers on IPv6 sockets | Matthias Schiffer | |
This is needed at least on FreeBSD | |||
2013-08-20 | Prevent zero-before-free operations from being optimized out | Matthias Schiffer | |
2013-08-20 | Fix lots of -Wextra warnings | Matthias Schiffer | |
Everything clang and GCC warn about, except GCC's missing-field-initializers which are just stupid as they don't allow {} syntax to zero a field. | |||
2013-08-19 | ec25519: add alignment attributes to all keys used as hash inputs | Matthias Schiffer | |
2013-08-19 | ec25519: reorder some code to fix a false-positive "may be used ↵ | Matthias Schiffer | |
uninitialized" warning | |||
2013-08-18 | ec25519: minor code simplifications in handshake handling | Matthias Schiffer | |
2013-08-17 | Cache values calculated in the handshake reponse to reuse them in the finish ↵ | Matthias Schiffer | |
handling | |||
2013-08-17 | Make handshake records const uint8_t* instead of void* | Matthias Schiffer | |
This enforces explicit casting and thus avoids alignment problems. | |||
2013-08-17 | Slightly improve the SHA256 API | Matthias Schiffer | |
2013-08-17 | Check closedir return value | Matthias Schiffer | |
Just for the sake of completeness. | |||
2013-08-17 | Use readdir instead of readdir_r | Matthias Schiffer | |
readdir_r can be unsafe for very long filenames. | |||
2013-08-16 | lex: fix scanning of IPv6 addresses | Matthias Schiffer | |
2013-08-16 | Fix segfault on single peer includes without name | Matthias Schiffer | |
2013-08-15 | Always compile with -Wall (and fix other property settings) | Matthias Schiffer | |
2013-08-15 | Don't require NaCl when it is not used | Matthias Schiffer | |
2013-08-15 | Align sender key | Matthias Schiffer | |
Unaligned access might be a problem on some architectures, so it's better to copy it to an aligned buffer before further handling the handshake. | |||
2013-08-15 | Replace NaCl's HMAC implementation | Matthias Schiffer | |
2013-08-15 | Add small SHA256 implementation | Matthias Schiffer | |
The NaCl implementation has a code size of more than 10KiB. | |||
2013-08-14 | Allow disabling redundant command line options | Matthias Schiffer | |
2013-08-14 | Change the order of the option handlers to match the option definion | Matthias Schiffer | |
2013-08-14 | Reorder command line options in usage message and add separating empty lines | Matthias Schiffer | |
2013-08-14 | lex: don't check for NULL before free | Matthias Schiffer | |
2013-08-14 | lex: various fixes | Matthias Schiffer | |
2013-08-14 | Implement new lexer that is not generated by flex to reduce code size | Matthias Schiffer | |
2013-08-13 | lexer: reduce code size | Matthias Schiffer | |
2013-08-13 | lexer: simplify whitespace handling | Matthias Schiffer | |
2013-08-13 | lexer: simplify IPv6 address matching | Matthias Schiffer | |
2013-08-12 | Add pre-up and post-down handlers | Matthias Schiffer | |
2013-08-12 | Improve interface name handling | Matthias Schiffer | |
2013-08-12 | Improve integer checks | Matthias Schiffer | |
2013-08-12 | Install signal handlers later so key generation can be interrupted | Matthias Schiffer | |
2013-08-12 | config: check (and fix) some integer limits | Matthias Schiffer | |
2013-08-12 | lexer: enter NEEDSPACE context after an IP address | Matthias Schiffer | |
2013-08-11 | Fix librt check | Matthias Schiffer | |
2013-08-11 | Only link with librt when necessary | Matthias Schiffer | |
2013-08-11 | OpenBSD fastd_tuntap_open implementation | Matthias Schiffer | |
2013-08-09 | Merge Linux and FreeBSD fastd_tuntap_{read,write} implementations | Matthias Schiffer | |
2013-08-08 | Check for AI_ADDRCONFIG | Matthias Schiffer | |
2013-08-08 | Add some includes needed on OpenBSD | Matthias Schiffer | |
2013-08-08 | aes128-gcm: don't restore buffer on verification failure | Matthias Schiffer | |
The buffer descriptor is a local variable and no buffer data is changed, so there is nothing to restore before returning | |||
2013-08-07 | Use multi-af tun mode on FreeBSD to make IPv6 work on tun | Matthias Schiffer | |
2013-08-07 | Fix segfault on --generate-key | Matthias Schiffer | |
2013-08-07 | Add FreeBSD implementation of fastd_tuntap_open() | Matthias Schiffer | |
2013-08-07 | Unset msg_control when no ancillary data is to be sent | Matthias Schiffer | |
2013-08-07 | Move tun/tap initialization to a dedicated source file | Matthias Schiffer | |
2013-08-07 | Move some includes to compat.h | Matthias Schiffer | |