| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-02-22 | Add "drop privileges force" option which allows to drop CAP_NET_ADMIN even ↵ | Matthias Schiffer | |
| when fastd thinks it might still need it | |||
| 2016-02-22 | Update copyright years | Matthias Schiffer | |
| 2016-02-22 | types: replace static consts with defines | Matthias Schiffer | |
| 2015-10-18 | config: make on_up/down/establish/disestablish commands configurable per ↵ | Matthias Schiffer | |
| peer group | |||
| 2015-10-18 | peer_group: move to a new header, add recursive lookup macros | Matthias Schiffer | |
| 2015-09-04 | config: allow moving the 'on verify' clause into a peer group | Matthias Schiffer | |
| 2015-06-25 | Don't depend on net/if_ether.h | Matthias Schiffer | |
| Instead of adding compatiblity code to make this work with musl, just duplicate the needed definitions in fastd. | |||
| 2015-03-24 | Add support for defining the MTU per peer | Matthias Schiffer | |
| 2015-03-23 | Make iface_persist configurable | Matthias Schiffer | |
| 2015-03-23 | Improve sync/async execution of up/down scripts | Matthias Schiffer | |
| 2015-03-23 | config: move packet mark support check to Bison file | Matthias Schiffer | |
| 2015-03-23 | Improve ifname configuration handling | Matthias Schiffer | |
| 2015-03-23 | Add multitap mode | Matthias Schiffer | |
| This new mode of operation uses one TAP interface per peer. | |||
| 2015-03-23 | peer: make interface name configurable per peer | Matthias Schiffer | |
| 2015-01-28 | Remove a few more instances of strcpy | Matthias Schiffer | |
| 2015-01-21 | Always disable PMTU discovery | Matthias Schiffer | |
| fastd currently can't fragment packets anyways, so it doesn't make any sense to perform PMTU discovery. This makes the config option `pmtu' a no-op. | |||
| 2015-01-14 | Refactor handling of platforms without user/group settings (Android) | Matthias Schiffer | |
| 2015-01-14 | Update copyright years | Matthias Schiffer | |
| 2015-01-14 | Allow to configure methods per peer group | Matthias Schiffer | |
| 2015-01-11 | config: allow ipv4/ipv6 keywords before static addresses | Matthias Schiffer | |
| 2014-09-05 | Add status socket to get the current status as JSON | Matthias Schiffer | |
| 2014-08-24 | Improve error messages for invalid static peers | Matthias Schiffer | |
| 2014-08-24 | Merge peer config into peer structure | Matthias Schiffer | |
| With this refactoring, the structure fastd_peer_config_t is merged into fastd_peer_t, and fastd_remote_config_t into fastd_remote_t. This also means we now create peers directly when reading their configurations, which significantly simplifies the whole reload process, and prepares for some future optimizations like a key hash table. Note: This commit is too big, but I couldn't come up with a nice way to split it into smaller pieces... | |||
| 2014-08-18 | Rename WITH_VERIFY CMake option to WITH_DYNAMIC_PEERS | Matthias Schiffer | |
| 2014-08-09 | Move fastd_config_t.peers to fastd_context_t.peer_configs | Matthias Schiffer | |
| 2014-08-02 | Introduce and use alloc helpers | Matthias Schiffer | |
| These new helpers will terminate fastd on allocation failures and add some additional convenience (allow strdup with NULL; typesafe new(type) macros). | |||
| 2014-06-10 | Clean up peer config loading | Matthias Schiffer | |
| Instead of changing the peer list and peer group in the main conf during (re-)loading, add a parser state which contains this information. | |||
| 2014-05-22 | Move fastd_loglevel_t to log.h | Matthias Schiffer | |
| 2014-05-01 | Remove support for log files | Matthias Schiffer | |
| syslog/journald do a much better job at organizing logs, with the additional advantage of proper log rotation. If someone really wants to have a log file for fastd, they can just redirect stderr. | |||
| 2014-04-26 | Make on-verify support optional | Matthias Schiffer | |
| 2014-04-24 | config: remove support for deprecated float syntax | Matthias Schiffer | |
| 2014-04-20 | Make ctx global | Matthias Schiffer | |
| 2014-04-20 | Make conf global | Matthias Schiffer | |
| 2014-04-13 | Add on-connect hook | Matthias Schiffer | |
| 2014-04-11 | Add support for async commands | Matthias Schiffer | |
| 2014-04-11 | Improve shell command config handling | Matthias Schiffer | |
| 2014-03-20 | Enable secure handshakes by default | Matthias Schiffer | |
| 2014-03-14 | Adjust copyright years | Matthias Schiffer | |
| 2014-01-26 | Add support for link-local bind addresses | Matthias Schiffer | |
| 2014-01-26 | Allow scoped IPv6 addresses for remotes using the usual notation | Matthias Schiffer | |
| 2014-01-26 | Add support for setting packet marks | Matthias Schiffer | |
| 2013-11-30 | Make crypto implementation configurable (and update a few error messages) | Matthias Schiffer | |
| 2013-11-30 | config: update and sort keyword list | Matthias Schiffer | |
| 2013-11-30 | Clean up some parts of the configuration handling (and fix a few little bugs) | Matthias Schiffer | |
| 2013-11-30 | Perform string-based lookup of method-related information only once | Matthias Schiffer | |
| 2013-11-02 | Move a few prototypes from fastd.h into a new config.h | Matthias Schiffer | |
| 2013-11-02 | Change error message for methods from `invalid' to `unsupported' | Matthias Schiffer | |
| 2013-11-02 | Convert ghash to the new crypto algorithm scheme | Matthias Schiffer | |
| 2013-11-02 | Implement the first step towards a more flexible way to support crypto methods | Matthias Schiffer | |
| 2013-10-16 | Add `secure handshakes' option (without effect for now) | Matthias Schiffer | |
| Not setting the option produces a warning (so not having it set is deprecated now), so we can change the default from no to yes in a few release cycles. | |||
 |
index : fastd | |
| Fast and Secure Tunnelling Daemon | Matthias Schiffer <mschiffer@universe-factory.net> |
| summaryrefslogtreecommitdiffstats |