summaryrefslogtreecommitdiffstats
path: root/src/config.c
AgeCommit message (Collapse)Author
2013-11-29Reorder check: avoid undefined behaviour due to negative or to long shiftsMatthias Schiffer
2013-11-20Replace max_packet_size functions by a max_overhead fieldMatthias Schiffer
2013-11-20Slightly simplify method/cipher/MAC definitionsMatthias Schiffer
2013-11-15config: move check for no configured methodMatthias Schiffer
First check all error conditions before getting to the warnings (this is important for --generate-key). Also, downgrade the exit_bug to exit_error if method `null' is not supported.
2013-11-02Move a few prototypes from fastd.h into a new config.hMatthias Schiffer
2013-11-02Convert ghash to the new crypto algorithm schemeMatthias Schiffer
2013-11-02Convert aes128-gcm into a generic gcm methodMatthias Schiffer
2013-11-02Allow flexible specification of methods provided by an implementationMatthias Schiffer
2013-11-02Implement the first step towards a more flexible way to support crypto methodsMatthias Schiffer
2013-10-29Rename fastd_parse_method_name to fastd_method_get_by_nameMatthias Schiffer
2013-10-29Generate method list automagicallyMatthias Schiffer
2013-10-29config: iterate over configured methods only in configure_method_parameters()Matthias Schiffer
2013-10-29Handle methods as stringsMatthias Schiffer
2013-10-20Warn when no encryption method is setMatthias Schiffer
2013-10-16Add `secure handshakes' option (without effect for now)Matthias Schiffer
Not setting the option produces a warning (so not having it set is deprecated now), so we can change the default from no to yes in a few release cycles.
2013-08-29Simplify keepalive sendingMatthias Schiffer
By using a global keepalive timer, the O(n) keepalive queue purge operation on every send operation is avoided.
2013-08-28ec25519: ensure old sessions are invalidated quickly after a new one has ↵Matthias Schiffer
been established
2013-08-27Introduce new log level debug2 for potentially very frequent messagesMatthias Schiffer
2013-08-20OpenBSD doesn't support IPv4 on IPv6 socketsMatthias Schiffer
2013-08-20Fix lots of -Wextra warningsMatthias Schiffer
Everything clang and GCC warn about, except GCC's missing-field-initializers which are just stupid as they don't allow {} syntax to zero a field.
2013-08-17Check closedir return valueMatthias Schiffer
Just for the sake of completeness.
2013-08-17Use readdir instead of readdir_rMatthias Schiffer
readdir_r can be unsafe for very long filenames.
2013-08-14Implement new lexer that is not generated by flex to reduce code sizeMatthias Schiffer
2013-08-12Add pre-up and post-down handlersMatthias Schiffer
2013-08-12Improve interface name handlingMatthias Schiffer
2013-08-07Fix segfault on --generate-keyMatthias Schiffer
2013-08-07Guard socket options not available on FreeBSDMatthias Schiffer
2013-07-25Move command line handling out of config.cMatthias Schiffer
2013-07-25Move send functions out of fastd.cMatthias Schiffer
2013-07-25Move _GNU_SOURCE define to types.hMatthias Schiffer
2013-07-23Don't trigger a resolve when a packet from an unknown peer is receivedMatthias Schiffer
2013-07-19Nicer command line option specificationMatthias Schiffer
2013-07-19Generalize float attribute, deprecate old float syntaxMatthias Schiffer
2013-07-04Fix typos in usage outputMatthias Schiffer
2013-06-09Don't allow peer groups in TUN modeMatthias Schiffer
2013-06-02Fix spelling of 'tunnelling'Matthias Schiffer
2013-04-25Fix memory leak in config parserMatthias Schiffer
2013-04-20Ignore backup filesMatthias Schiffer
2013-03-21Don't read the default peer group twice on startupMatthias Schiffer
There are no negative consequences when the peers are loaded twice, but we can spare some log spam like this.
2013-03-09Add options to hide IP and MAC addresses from log outputMatthias Schiffer
2013-03-08Really fix adding new peers from a peer dirMatthias Schiffer
2013-03-08Don't forget all peers when no peers are configured in peer dirsMatthias Schiffer
2013-03-08Don't lose all but one peer configured in peer dirs after loadingMatthias Schiffer
This regression was introduced in 4e9b2a8819c7062ad052cd6c549db1d0fbed001d.
2013-03-08Disable peer configs by default, enable on peer creationMatthias Schiffer
This allows to remove some duplicate code, and will simplify the detection and handling of duplicate keys.
2013-03-04Load peer dirs in the last step of the configurationMatthias Schiffer
Loading the peer dirs directly led to peers being discovered in a different order after reconfigure.
2013-03-03Make 'peer limit 0' allow no connectionsMatthias Schiffer
2013-03-03Fix typo in --log-level help textMatthias Schiffer
2013-03-03Remove the word "version" from usage textMatthias Schiffer
It is now included in the version string itself.
2013-02-26Experimental support for accepting connections from unknown peersMatthias Schiffer
2013-02-23Subtract splay time to key refresh intervalMatthias Schiffer
A random splay time of up to 5 minutes will ensure that simultaneous handshakes with many peers are desynchronized as fast as possible.