Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-08-17 | Use readdir instead of readdir_r | Matthias Schiffer | |
readdir_r can be unsafe for very long filenames. | |||
2013-08-14 | Implement new lexer that is not generated by flex to reduce code size | Matthias Schiffer | |
2013-08-12 | Add pre-up and post-down handlers | Matthias Schiffer | |
2013-08-12 | Improve interface name handling | Matthias Schiffer | |
2013-08-07 | Fix segfault on --generate-key | Matthias Schiffer | |
2013-08-07 | Guard socket options not available on FreeBSD | Matthias Schiffer | |
2013-07-25 | Move command line handling out of config.c | Matthias Schiffer | |
2013-07-25 | Move send functions out of fastd.c | Matthias Schiffer | |
2013-07-25 | Move _GNU_SOURCE define to types.h | Matthias Schiffer | |
2013-07-23 | Don't trigger a resolve when a packet from an unknown peer is received | Matthias Schiffer | |
2013-07-19 | Nicer command line option specification | Matthias Schiffer | |
2013-07-19 | Generalize float attribute, deprecate old float syntax | Matthias Schiffer | |
2013-07-04 | Fix typos in usage output | Matthias Schiffer | |
2013-06-09 | Don't allow peer groups in TUN mode | Matthias Schiffer | |
2013-06-02 | Fix spelling of 'tunnelling' | Matthias Schiffer | |
2013-04-25 | Fix memory leak in config parser | Matthias Schiffer | |
2013-04-20 | Ignore backup files | Matthias Schiffer | |
2013-03-21 | Don't read the default peer group twice on startup | Matthias Schiffer | |
There are no negative consequences when the peers are loaded twice, but we can spare some log spam like this. | |||
2013-03-09 | Add options to hide IP and MAC addresses from log output | Matthias Schiffer | |
2013-03-08 | Really fix adding new peers from a peer dir | Matthias Schiffer | |
2013-03-08 | Don't forget all peers when no peers are configured in peer dirs | Matthias Schiffer | |
2013-03-08 | Don't lose all but one peer configured in peer dirs after loading | Matthias Schiffer | |
This regression was introduced in 4e9b2a8819c7062ad052cd6c549db1d0fbed001d. | |||
2013-03-08 | Disable peer configs by default, enable on peer creation | Matthias Schiffer | |
This allows to remove some duplicate code, and will simplify the detection and handling of duplicate keys. | |||
2013-03-04 | Load peer dirs in the last step of the configuration | Matthias Schiffer | |
Loading the peer dirs directly led to peers being discovered in a different order after reconfigure. | |||
2013-03-03 | Make 'peer limit 0' allow no connections | Matthias Schiffer | |
2013-03-03 | Fix typo in --log-level help text | Matthias Schiffer | |
2013-03-03 | Remove the word "version" from usage text | Matthias Schiffer | |
It is now included in the version string itself. | |||
2013-02-26 | Experimental support for accepting connections from unknown peers | Matthias Schiffer | |
2013-02-23 | Subtract splay time to key refresh interval | Matthias Schiffer | |
A random splay time of up to 5 minutes will ensure that simultaneous handshakes with many peers are desynchronized as fast as possible. | |||
2013-01-05 | Adjust copyright years | Matthias Schiffer | |
2013-01-04 | Set supplementary groups | Matthias Schiffer | |
2012-12-24 | Add user switching and capability support | Matthias Schiffer | |
2012-12-18 | Convert type names to _t convention | Matthias Schiffer | |
2012-12-13 | Always convert v4-mapped IPv6 addresses to IPv4 addresses | Matthias Schiffer | |
2012-11-10 | Don't allow global config statements in peer groups | Matthias Schiffer | |
2012-11-10 | Give the default peer group a name | Matthias Schiffer | |
2012-11-05 | Implement peer groups | Matthias Schiffer | |
2012-11-01 | Dynamically create and destroy sockets without fixed binds | Matthias Schiffer | |
2012-11-01 | Refactor bind address configuration | Matthias Schiffer | |
2012-10-29 | Add support for multiple binds | Matthias Schiffer | |
2012-10-29 | config: Simplify default_config() | Matthias Schiffer | |
2012-09-21 | Nicely encapsulate different crypto algorithm implementations | Matthias Schiffer | |
2012-09-16 | Make implementations used for AES128-CTR and GHASH configurable. | Matthias Schiffer | |
2012-07-02 | Fix typo in --machine-readable help message | Matthias Schiffer | |
2012-07-01 | Add support for multiple crypto methods without reconfiguration | Matthias Schiffer | |
2012-06-27 | Primitive aes128-gcm implementation | Matthias Schiffer | |
2012-06-15 | Avoid using the same handshake key to establish more than one session | Matthias Schiffer | |
This fix prevents a potential attack using intentional packet reordering to initialize more than one session with using the same handshake keys, leading to more that one session to be initialized with the same key data altogether, allowing to decrypt some packets in the worst case. | |||
2012-06-07 | Limit handshake frequency where possible | Matthias Schiffer | |
2012-06-06 | Limit resolve frequency | Matthias Schiffer | |
2012-06-06 | Improve some log levels | Matthias Schiffer | |