Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-11-29 | Reorder check: avoid undefined behaviour due to negative or to long shifts | Matthias Schiffer | |
2013-11-20 | Replace max_packet_size functions by a max_overhead field | Matthias Schiffer | |
2013-11-20 | Slightly simplify method/cipher/MAC definitions | Matthias Schiffer | |
2013-11-15 | config: move check for no configured method | Matthias Schiffer | |
First check all error conditions before getting to the warnings (this is important for --generate-key). Also, downgrade the exit_bug to exit_error if method `null' is not supported. | |||
2013-11-02 | Move a few prototypes from fastd.h into a new config.h | Matthias Schiffer | |
2013-11-02 | Convert ghash to the new crypto algorithm scheme | Matthias Schiffer | |
2013-11-02 | Convert aes128-gcm into a generic gcm method | Matthias Schiffer | |
2013-11-02 | Allow flexible specification of methods provided by an implementation | Matthias Schiffer | |
2013-11-02 | Implement the first step towards a more flexible way to support crypto methods | Matthias Schiffer | |
2013-10-29 | Rename fastd_parse_method_name to fastd_method_get_by_name | Matthias Schiffer | |
2013-10-29 | Generate method list automagically | Matthias Schiffer | |
2013-10-29 | config: iterate over configured methods only in configure_method_parameters() | Matthias Schiffer | |
2013-10-29 | Handle methods as strings | Matthias Schiffer | |
2013-10-20 | Warn when no encryption method is set | Matthias Schiffer | |
2013-10-16 | Add `secure handshakes' option (without effect for now) | Matthias Schiffer | |
Not setting the option produces a warning (so not having it set is deprecated now), so we can change the default from no to yes in a few release cycles. | |||
2013-08-29 | Simplify keepalive sending | Matthias Schiffer | |
By using a global keepalive timer, the O(n) keepalive queue purge operation on every send operation is avoided. | |||
2013-08-28 | ec25519: ensure old sessions are invalidated quickly after a new one has ↵ | Matthias Schiffer | |
been established | |||
2013-08-27 | Introduce new log level debug2 for potentially very frequent messages | Matthias Schiffer | |
2013-08-20 | OpenBSD doesn't support IPv4 on IPv6 sockets | Matthias Schiffer | |
2013-08-20 | Fix lots of -Wextra warnings | Matthias Schiffer | |
Everything clang and GCC warn about, except GCC's missing-field-initializers which are just stupid as they don't allow {} syntax to zero a field. | |||
2013-08-17 | Check closedir return value | Matthias Schiffer | |
Just for the sake of completeness. | |||
2013-08-17 | Use readdir instead of readdir_r | Matthias Schiffer | |
readdir_r can be unsafe for very long filenames. | |||
2013-08-14 | Implement new lexer that is not generated by flex to reduce code size | Matthias Schiffer | |
2013-08-12 | Add pre-up and post-down handlers | Matthias Schiffer | |
2013-08-12 | Improve interface name handling | Matthias Schiffer | |
2013-08-07 | Fix segfault on --generate-key | Matthias Schiffer | |
2013-08-07 | Guard socket options not available on FreeBSD | Matthias Schiffer | |
2013-07-25 | Move command line handling out of config.c | Matthias Schiffer | |
2013-07-25 | Move send functions out of fastd.c | Matthias Schiffer | |
2013-07-25 | Move _GNU_SOURCE define to types.h | Matthias Schiffer | |
2013-07-23 | Don't trigger a resolve when a packet from an unknown peer is received | Matthias Schiffer | |
2013-07-19 | Nicer command line option specification | Matthias Schiffer | |
2013-07-19 | Generalize float attribute, deprecate old float syntax | Matthias Schiffer | |
2013-07-04 | Fix typos in usage output | Matthias Schiffer | |
2013-06-09 | Don't allow peer groups in TUN mode | Matthias Schiffer | |
2013-06-02 | Fix spelling of 'tunnelling' | Matthias Schiffer | |
2013-04-25 | Fix memory leak in config parser | Matthias Schiffer | |
2013-04-20 | Ignore backup files | Matthias Schiffer | |
2013-03-21 | Don't read the default peer group twice on startup | Matthias Schiffer | |
There are no negative consequences when the peers are loaded twice, but we can spare some log spam like this. | |||
2013-03-09 | Add options to hide IP and MAC addresses from log output | Matthias Schiffer | |
2013-03-08 | Really fix adding new peers from a peer dir | Matthias Schiffer | |
2013-03-08 | Don't forget all peers when no peers are configured in peer dirs | Matthias Schiffer | |
2013-03-08 | Don't lose all but one peer configured in peer dirs after loading | Matthias Schiffer | |
This regression was introduced in 4e9b2a8819c7062ad052cd6c549db1d0fbed001d. | |||
2013-03-08 | Disable peer configs by default, enable on peer creation | Matthias Schiffer | |
This allows to remove some duplicate code, and will simplify the detection and handling of duplicate keys. | |||
2013-03-04 | Load peer dirs in the last step of the configuration | Matthias Schiffer | |
Loading the peer dirs directly led to peers being discovered in a different order after reconfigure. | |||
2013-03-03 | Make 'peer limit 0' allow no connections | Matthias Schiffer | |
2013-03-03 | Fix typo in --log-level help text | Matthias Schiffer | |
2013-03-03 | Remove the word "version" from usage text | Matthias Schiffer | |
It is now included in the version string itself. | |||
2013-02-26 | Experimental support for accepting connections from unknown peers | Matthias Schiffer | |
2013-02-23 | Subtract splay time to key refresh interval | Matthias Schiffer | |
A random splay time of up to 5 minutes will ensure that simultaneous handshakes with many peers are desynchronized as fast as possible. |