Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-06-15 | Avoid using the same handshake key to establish more than one session | Matthias Schiffer | |
This fix prevents a potential attack using intentional packet reordering to initialize more than one session with using the same handshake keys, leading to more that one session to be initialized with the same key data altogether, allowing to decrypt some packets in the worst case. | |||
2012-06-07 | Limit handshake frequency where possible | Matthias Schiffer | |
2012-06-06 | Limit resolve frequency | Matthias Schiffer | |
2012-06-05 | Increment rc versionv0.4-rc12 | Matthias Schiffer | |
2012-06-05 | Fix possible duplicate session establishment | Matthias Schiffer | |
This is causing duplicate nonces in the worst case. | |||
2012-06-05 | Add support for receiving reordered packets | Matthias Schiffer | |
2012-06-04 | Increment rc versionv0.4-rc11 | Matthias Schiffer | |
2012-06-04 | Add pidfile support | Matthias Schiffer | |
2012-05-24 | Increase rc versionv0.4-rc10 | Matthias Schiffer | |
2012-05-18 | Uninline pr_log | Matthias Schiffer | |
2012-05-18 | Increment rc versionv0.4-rc9 | Matthias Schiffer | |
2012-05-18 | New logging facilities | Matthias Schiffer | |
2012-05-17 | Add daemon mode | Matthias Schiffer | |
2012-05-03 | Use pipe to transmit resolved addresses to main threadv0.4-rc7 | Matthias Schiffer | |
2012-04-27 | Increment rcv0.4-rc5 | Matthias Schiffer | |
2012-04-22 | Add --show-key and --machine-readable options | Matthias Schiffer | |
2012-04-19 | Don't regenerate session handshake keypair for every handshake so a global ↵ | Matthias Schiffer | |
state can be used; remove the concept of temporary peers These changes will fix the possibility of a TCP-SYN-Flood-like DoS attack, at the cost of another protocol change: as we can't count request IDs when we don't know have temporary peers, request IDs are removed completely. | |||
2012-04-17 | Add --help page | Matthias Schiffer | |
2012-04-16 | Rename peer-to-peer to forward; remove now useless peer command line optionv0.4-rc1 | Matthias Schiffer | |
2012-04-16 | Lots of fixes and improvements on the resolver code | Matthias Schiffer | |
2012-04-16 | Add support for peers specified by hostnames | Matthias Schiffer | |
2012-04-14 | Reduce task queue usage | Matthias Schiffer | |
2012-04-14 | Separate handshake from encryption method | Matthias Schiffer | |
2012-04-05 | Add on-establish and on-disestablish commandsv0.2 | Matthias Schiffer | |
2012-04-05 | Cleanly shutdown; add on-down command | Matthias Schiffer | |
2012-04-05 | Implement reconfiguration on SIGHUP | Matthias Schiffer | |
2012-04-03 | Keep track of peer dirs | Matthias Schiffer | |
2012-04-03 | Ignore peer configs with errors in peer dirs instead of exiting | Matthias Schiffer | |
2012-04-03 | Keep list of strings allocated by the lexer | Matthias Schiffer | |
2012-04-02 | Allow peer-to-peer forwarding | Matthias Schiffer | |
2012-04-02 | Add sending of keep-alive packets | Matthias Schiffer | |
2012-04-01 | Add timestamps to log messages | Matthias Schiffer | |
2012-04-01 | Add log level configuration | Matthias Schiffer | |
2012-04-01 | Add verbose log level, change some log messages | Matthias Schiffer | |
2012-04-01 | Add missing includes that didn't throw errors with clang | Matthias Schiffer | |
2012-03-31 | ecfxp: refresh session key periodically | Matthias Schiffer | |
2012-03-31 | Change how handshakes are triggered | Matthias Schiffer | |
2012-03-30 | Limit key validity | Matthias Schiffer | |
2012-03-30 | Rework handshake... again. ecfxp protocol broken, will be fixed with next ↵ | Matthias Schiffer | |
commit. | |||
2012-03-29 | Add support for Tinc-like peer directory configurations | Matthias Schiffer | |
2012-03-29 | Implement on-up commands; also fix log print conditions | Matthias Schiffer | |
2012-03-28 | Add license headers to Flex and Bison files; also remove Quicktun note as we ↵ | Matthias Schiffer | |
don't actually use any of is code | |||
2012-03-28 | Add keygen function | Matthias Schiffer | |
2012-03-28 | Add single peer config options; also fix string handling in lexer | Matthias Schiffer | |
2012-03-27 | Use configured peer names | Matthias Schiffer | |
2012-03-26 | Move around some structure fields | Matthias Schiffer | |
2012-03-26 | Implement encrypted send/receive | Matthias Schiffer | |
2012-03-26 | Initial implementation of the FHMQV-C handshake | Matthias Schiffer | |
2012-03-25 | Add include command | Matthias Schiffer | |
2012-03-25 | Change parse to push API, fix some parser bugs | Matthias Schiffer | |