Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-10-31 | Implement HKDF | Matthias Schiffer | |
2013-10-31 | Rename session_init to session_init_compat to prepare for the upcoming new ↵ | Matthias Schiffer | |
key derivation scheme | |||
2013-10-29 | Rename fastd_parse_method_name to fastd_method_get_by_name | Matthias Schiffer | |
2013-10-29 | Handle methods as strings | Matthias Schiffer | |
2013-10-16 | Add `secure handshakes' option (without effect for now) | Matthias Schiffer | |
Not setting the option produces a warning (so not having it set is deprecated now), so we can change the default from no to yes in a few release cycles. | |||
2013-10-16 | Initiate handshake when a packet can't be sent because the local address is ↵ | Matthias Schiffer | |
invalid | |||
2013-09-03 | Add packet/byte statistics | Matthias Schiffer | |
2013-08-29 | Don't initialize monotone timestamps with zero | Matthias Schiffer | |
The monotone timestamp is near zero on linux systems, confusing fastd. | |||
2013-08-29 | Replace old task queue | Matthias Schiffer | |
The handshakes are now schedules in a doubly-linked list that is maintained as a part of the peer structure. | |||
2013-08-29 | Simplify keepalive sending | Matthias Schiffer | |
By using a global keepalive timer, the O(n) keepalive queue purge operation on every send operation is avoided. | |||
2013-08-28 | ec25519: ensure old sessions are invalidated quickly after a new one has ↵ | Matthias Schiffer | |
been established | |||
2013-08-27 | Introduce new log level debug2 for potentially very frequent messages | Matthias Schiffer | |
2013-08-20 | Prevent zero-before-free operations from being optimized out | Matthias Schiffer | |
2013-08-20 | Fix lots of -Wextra warnings | Matthias Schiffer | |
Everything clang and GCC warn about, except GCC's missing-field-initializers which are just stupid as they don't allow {} syntax to zero a field. | |||
2013-08-12 | Add pre-up and post-down handlers | Matthias Schiffer | |
2013-08-07 | Use multi-af tun mode on FreeBSD to make IPv6 work on tun | Matthias Schiffer | |
2013-08-07 | Move tun/tap initialization to a dedicated source file | Matthias Schiffer | |
2013-08-07 | Move some includes to compat.h | Matthias Schiffer | |
2013-08-07 | Guard socket options not available on FreeBSD | Matthias Schiffer | |
2013-08-07 | Add some compatiblity definitions for FreeBSD | Matthias Schiffer | |
2013-08-07 | Reorder includes to make FreeBSD happy | Matthias Schiffer | |
2013-08-07 | Use netinet/if_ether.h instead of linux/if_ether.h | Matthias Schiffer | |
2013-07-25 | Move command line handling out of config.c | Matthias Schiffer | |
2013-07-25 | Move more code out of fastd.c | Matthias Schiffer | |
2013-07-25 | Move send functions out of fastd.c | Matthias Schiffer | |
2013-07-25 | Move socket handling out of fastd.c | Matthias Schiffer | |
2013-07-25 | Improve handling of similar remote resolves | Matthias Schiffer | |
2013-07-25 | Set IP_MTU_DISCOVER on sockets | Matthias Schiffer | |
2013-07-25 | Introduce tristate type | Matthias Schiffer | |
2013-07-24 | Allow specifying multiple remote entries for a single peer | Matthias Schiffer | |
2013-07-23 | Don't trigger a resolve when a packet from an unknown peer is received | Matthias Schiffer | |
2013-05-20 | Add send_all() function to reduce duplicate code | Matthias Schiffer | |
2013-05-19 | Simplify handling of received packets | Matthias Schiffer | |
2013-04-24 | String stack buffer sizes must be aligned because of optimized strlen builtins. | Matthias Schiffer | |
2013-04-22 | Miscellaneous fixes in ethernet address handling | Matthias Schiffer | |
Check the length of ethernet frames, and the fastd_eth_addr_t structure must be packed. | |||
2013-04-20 | Just some whitespace fixes | Matthias Schiffer | |
2013-04-20 | Greatly improve handling of hosts with multiple IP addresses | Matthias Schiffer | |
2013-04-17 | Fix handling of the local address in shell commands | Matthias Schiffer | |
Without this fix, using on-establish/disestablish/verify would cause a strange zero port when a bind with a random port was used, and a segmentation fault with dynamic binds. | |||
2013-03-09 | Add options to hide IP and MAC addresses from log output | Matthias Schiffer | |
2013-03-08 | Handle duplicate keys | Matthias Schiffer | |
When two peers are configured with the same key, disable both. When a temporary peer's key is configured, delete the temporary key. | |||
2013-03-04 | Load peer dirs in the last step of the configuration | Matthias Schiffer | |
Loading the peer dirs directly led to peers being discovered in a different order after reconfigure. | |||
2013-03-03 | Make 'peer limit 0' allow no connections | Matthias Schiffer | |
2013-03-02 | Print error message on aborts due to buffer push/pull errors | Matthias Schiffer | |
2013-03-01 | Identify peers be key in log output when no name is available | Matthias Schiffer | |
2013-02-27 | Don't set the peer address for temporary peers before the session is ↵ | Matthias Schiffer | |
actually established Doing so could lead to duplicate address entries in different peers, causing very strange behaviour. Add additional parameters for the local and the peer address to fastd_shell_exec() to allow the on-verify script to use this information nevertheless. | |||
2013-02-26 | Experimental support for accepting connections from unknown peers | Matthias Schiffer | |
2013-02-25 | Add public keys to shell environment | Matthias Schiffer | |
2013-02-25 | Get rid of some duplicate code for calling shell commands | Matthias Schiffer | |
2013-02-23 | Subtract splay time to key refresh interval | Matthias Schiffer | |
A random splay time of up to 5 minutes will ensure that simultaneous handshakes with many peers are desynchronized as fast as possible. | |||
2013-02-23 | Use fastd_peer_t instead of fastd_peer_config_t in handshake code | Matthias Schiffer | |
Directly using the peers allows us to get rid of the inefficient get_peer() function and is necessary for adding support for unknown peers. |