| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-10-31 | ec25519-fhmqvc: some more refactoring | Matthias Schiffer | |
| 2013-10-31 | ec25519-fhmqvc: some more handshake refactoring | Matthias Schiffer | |
| 2013-10-31 | Rename session_init to session_init_compat to prepare for the upcoming new ↵ | Matthias Schiffer | |
| key derivation scheme | |||
| 2013-10-31 | Change error subcode for unsupported method from method name to method list | Matthias Schiffer | |
| When two peers don't support a common method, fastd should notice this in the list stage, so the method list subcode is correct. The method name subcode was a legacy of the 0.4 compatiblity code. | |||
| 2013-10-31 | Don't delay initial handshakes when no peer limit is set | Matthias Schiffer | |
| 2013-10-30 | ec25519-fhmqvc: get rid of duplicate code in shared handshake key generation | Matthias Schiffer | |
| 2013-10-30 | ec25519-fhmqvc: include either T or TLV_MAC in handshake finish, but not both | Matthias Schiffer | |
| 2013-10-30 | Add fastd_handshake_add_zero function | Matthias Schiffer | |
| 2013-10-30 | ec25519-fhmqvc: add secure_handshake helper function | Matthias Schiffer | |
| 2013-10-30 | Separate ec25519-fhmqvc into multiple source files | Matthias Schiffer | |
| 2013-10-29 | Correctly terminate method list | Matthias Schiffer | |
| 2013-10-29 | Rename fastd_parse_method_name to fastd_method_get_by_name | Matthias Schiffer | |
| 2013-10-29 | Generate method list automagically | Matthias Schiffer | |
| 2013-10-29 | config: iterate over configured methods only in configure_method_parameters() | Matthias Schiffer | |
| 2013-10-29 | handshake: get_method() code simplification | Matthias Schiffer | |
| 2013-10-29 | Drop compatiblity code for fastd 0.4 | Matthias Schiffer | |
| 2013-10-29 | Handle methods as strings | Matthias Schiffer | |
| 2013-10-29 | Allow using libsodium instead of NaCl | Matthias Schiffer | |
| As libsodium has some strange include files (like a version.h), we try to use absolute include paths whenever possible in fastd now and rename our generated headers. | |||
| 2013-10-28 | Unify duplicate code in xsalsa20-poly1305 and aes128-gcm methods | Matthias Schiffer | |
| 2013-10-28 | Organize method and protocol source files into distinct source directories | Matthias Schiffer | |
| 2013-10-24 | Fix maybe-uninitialized warning | Matthias Schiffer | |
| 2013-10-20 | Don't print fastd version from handshake requests when secure handshakes are ↵ | Matthias Schiffer | |
| set, instead print it on handshake finish | |||
| 2013-10-20 | Warn when no encryption method is set | Matthias Schiffer | |
| 2013-10-20 | Don't send chosen method name when it doesn't matter | Matthias Schiffer | |
| 2013-10-20 | Align handshake buffer | Matthias Schiffer | |
| 2013-10-20 | Always check for mode and protocol mismatches | Matthias Schiffer | |
| This was accidentially disabled in the previous commit for initial handshake requests. | |||
| 2013-10-20 | Refactor handshake code, prevent downgrade attacks | Matthias Schiffer | |
| 2013-10-19 | Rename RECORD_HANDSHAKE_MAC to RECORD_TLV_MAC | Matthias Schiffer | |
| 2013-10-19 | Authenticate the TLV records only | Matthias Schiffer | |
| 2013-10-19 | Use the rsv2 field in the handshake header as an optional length field to ↵ | Matthias Schiffer | |
| facilitate future extensions | |||
| 2013-10-19 | Get rid of packet.h | Matthias Schiffer | |
| 2013-10-19 | Add a HMAC to authenticate all handshake TLV | Matthias Schiffer | |
| 2013-10-18 | Generalize SHA256 functions to work with arbitrary inputs | Matthias Schiffer | |
| 2013-10-17 | Use the default delay before a handshake is sent when the local address is ↵ | Matthias Schiffer | |
| invalid Sending it right away will make crossed handshakes more probable which is especially painful when roaming, so it's better to add the delay. | |||
| 2013-10-16 | Add `secure handshakes' option (without effect for now) | Matthias Schiffer | |
| Not setting the option produces a warning (so not having it set is deprecated now), so we can change the default from no to yes in a few release cycles. | |||
| 2013-10-16 | Initiate handshake when a packet can't be sent because the local address is ↵ | Matthias Schiffer | |
| invalid | |||
| 2013-10-16 | Fix fast roaming when local IP address has changed | Matthias Schiffer | |
| 2013-10-16 | New development cycle | Matthias Schiffer | |
| 2013-10-11 | fastd v10v10 | Matthias Schiffer | |
| 2013-10-04 | Fix source address choice for IPv4 on Linux | Matthias Schiffer | |
| 2013-09-30 | Invalidate null sessions when they are superseded | Matthias Schiffer | |
| 2013-09-07 | fastd v9v9 | Matthias Schiffer | |
| 2013-09-06 | Change directory to / when privileges are dropped or the user is changed | Matthias Schiffer | |
| 2013-09-03 | Add packet/byte statistics | Matthias Schiffer | |
| 2013-08-30 | Demote some sendmsg warnings to debug and debug2 levels | Matthias Schiffer | |
| 2013-08-29 | Don't initialize monotone timestamps with zero | Matthias Schiffer | |
| The monotone timestamp is near zero on linux systems, confusing fastd. | |||
| 2013-08-29 | Replace old task queue | Matthias Schiffer | |
| The handshakes are now schedules in a doubly-linked list that is maintained as a part of the peer structure. | |||
| 2013-08-29 | Simplify keepalive sending | Matthias Schiffer | |
| By using a global keepalive timer, the O(n) keepalive queue purge operation on every send operation is avoided. | |||
| 2013-08-28 | ec25519: ensure old sessions are invalidated quickly after a new one has ↵ | Matthias Schiffer | |
| been established | |||
| 2013-08-28 | Remote unused fastd_task_replace_peer() | Matthias Schiffer | |
 |
index : fastd | |
| Fast and Secure Tunnelling Daemon | Matthias Schiffer <mschiffer@universe-factory.net> |
| summaryrefslogtreecommitdiffstats |