summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2013-02-27Don't include linux/if_alg.h when it is not neededMatthias Schiffer
2013-02-27Don't set the peer address for temporary peers before the session is ↵Matthias Schiffer
actually established Doing so could lead to duplicate address entries in different peers, causing very strange behaviour. Add additional parameters for the local and the peer address to fastd_shell_exec() to allow the on-verify script to use this information nevertheless.
2013-02-27Refactor fastd_peer_claim_addressMatthias Schiffer
2013-02-26Don't reset "seen" timestamp on peer resetMatthias Schiffer
2013-02-26Experimental support for accepting connections from unknown peersMatthias Schiffer
2013-02-25Fix shell command exit status message, for real.Matthias Schiffer
2013-02-25Fix shell exit status warning conditionMatthias Schiffer
2013-02-25Rewrite 'git describe' version support to update the version whenever neededMatthias Schiffer
2013-02-25Add public keys to shell environmentMatthias Schiffer
2013-02-25Set some more environment variables for shell commandsMatthias Schiffer
2013-02-25Get rid of some duplicate code for calling shell commandsMatthias Schiffer
2013-02-23Differentiate between reasons for ignoring a handshakeMatthias Schiffer
2013-02-23Subtract splay time to key refresh intervalMatthias Schiffer
A random splay time of up to 5 minutes will ensure that simultaneous handshakes with many peers are desynchronized as fast as possible.
2013-02-23Fail initialization when a default socket can't be boundMatthias Schiffer
2013-02-23Print port for "any" address in bind log messagesMatthias Schiffer
2013-02-23Implement simple peer dump triggered by SIGUSR1Matthias Schiffer
2013-02-23Use git version with --dirtyMatthias Schiffer
2013-02-23Use 'git describe' output as version string when availableMatthias Schiffer
2013-02-23Use fastd_peer_t instead of fastd_peer_config_t in handshake codeMatthias Schiffer
Directly using the peers allows us to get rid of the inefficient get_peer() function and is necessary for adding support for unknown peers.
2013-01-24Remove some .gitignore entriesMatthias Schiffer
As these are specific to my build environment, these better go to .git/info/exclude
2013-01-24Don't reset peer address on repeated resolvesMatthias Schiffer
This can lead to handshakes being ignored for an indefinite time.
2013-01-24resolver: write whole hostname instead of a pointer to the resolver pipeMatthias Schiffer
Shouldn't make a difference, but feels cleaner now, and silences a clang-analyzer warning.
2013-01-21Remove unneded calls to method functions in head and tail space calculationMatthias Schiffer
2013-01-21Fix indentation in handshake packet allocMatthias Schiffer
2013-01-21Add error message for OOM on buffer allocMatthias Schiffer
2013-01-15Move version number to build systemMatthias Schiffer
2013-01-12Post-release version bumpMatthias Schiffer
2013-01-10fastd 7v7Matthias Schiffer
2013-01-10Be less verbose about acquiring capabilitiesMatthias Schiffer
2013-01-09Improve checking of received handshake keysMatthias Schiffer
2013-01-09Update to libuecc v3, check EC points for validityMatthias Schiffer
2013-01-05Adjust copyright yearsMatthias Schiffer
2013-01-04Add some debug output to uid/gid switchingMatthias Schiffer
2013-01-04Set supplementary groupsMatthias Schiffer
2013-01-04Move const specifiers in handshake record names to the correct placeMatthias Schiffer
2012-12-26And another unused include...Matthias Schiffer
2012-12-26Remove unused includeMatthias Schiffer
2012-12-25Remove capability locking featureMatthias Schiffer
This isn't our job, so there is no reason to support this.
2012-12-24Add user switching and capability supportMatthias Schiffer
2012-12-24Add WITH_CAPABILITIES CMake flag and check for libcapMatthias Schiffer
2012-12-23Add example systemd unitMatthias Schiffer
2012-12-23Set FD_CLOEXEC on all file descriptors, use non-blocking IO for sockets and TUNMatthias Schiffer
2012-12-23Fix up all usage of deprecated libuecc APIMatthias Schiffer
2012-12-23Use new pkg-config support of libueccMatthias Schiffer
2012-12-18Install fastd binary to PREFIX/binMatthias Schiffer
2012-12-18Convert type names to _t conventionMatthias Schiffer
2012-12-13Always convert v4-mapped IPv6 addresses to IPv4 addressesMatthias Schiffer
2012-12-13Add helper function to simplify v4-mapped addressesMatthias Schiffer
2012-12-13Reduce v4-mapped IPv6 addresses to IPv4 addressesMatthias Schiffer
We need this for "any" binds to work correctly again.
2012-12-08Only try to set MTU when it isn't correctMatthias Schiffer
This allows fastd to run completely without root privileges when the TUN/TAP device is pre-created