| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-01-20 | handshake: delay method parsing until the sender key has been handled | Matthias Schiffer | |
| Otherwise fastd won't use the correct peer group's method list for handshakes incoming on generic sockets. | |||
| 2015-01-14 | Update copyright years | Matthias Schiffer | |
| 2015-01-14 | Allow to configure methods per peer group | Matthias Schiffer | |
| 2015-01-11 | More doxygen fixes | Matthias Schiffer | |
| I keep forgetting this... | |||
| 2015-01-09 | Move protocol-specific TLV specifications to main handshake record enum | Matthias Schiffer | |
| 2015-01-09 | More comment fixes | Matthias Schiffer | |
| 2015-01-09 | Add support for a new big-endian handshake format | Matthias Schiffer | |
| Because of strange dicisions in the past, fastd currently uses little endian type and length values in its handshake. As the common network byte order is big endian, changing the handshake format would be preferable. This commit adds support for a new big-endian handshake. For now, fastd will continue to send little-endian handshakes so ensure backwarts compatiblity, but if it receives a big-endian handshake, it will respond with a big-endian one. | |||
| 2014-10-22 | Use big endian for handshake field values by default | Matthias Schiffer | |
| At the moment the only multi-byte field is the MTU; it is kept in little endian to provide backwards compatiblity. Future fields will be big endian. | |||
| 2014-09-20 | Some handshake fixes for future protocol extensions | Matthias Schiffer | |
| Extensions for arbitrary-length integers. | |||
| 2014-08-24 | Coding style: always add a space between a pointer's type and the * | Matthias Schiffer | |
| 2014-05-28 | Still more documentation | Matthias Schiffer | |
| 2014-05-27 | More documentation | Matthias Schiffer | |
| 2014-04-25 | handshake: simplify fastd_handshake_new_reply | Matthias Schiffer | |
| This will hopefully lead to an async verify implementation... | |||
| 2014-04-20 | Make ctx global | Matthias Schiffer | |
| 2014-04-10 | Use #pragma once | Matthias Schiffer | |
| 2014-03-14 | Adjust copyright years | Matthias Schiffer | |
| 2013-11-30 | Perform string-based lookup of method-related information only once | Matthias Schiffer | |
| 2013-10-30 | Add fastd_handshake_add_zero function | Matthias Schiffer | |
| 2013-10-29 | Handle methods as strings | Matthias Schiffer | |
| 2013-10-20 | Don't print fastd version from handshake requests when secure handshakes are ↵ | Matthias Schiffer | |
| set, instead print it on handshake finish | |||
| 2013-10-20 | Refactor handshake code, prevent downgrade attacks | Matthias Schiffer | |
| 2013-10-19 | Rename RECORD_HANDSHAKE_MAC to RECORD_TLV_MAC | Matthias Schiffer | |
| 2013-10-19 | Authenticate the TLV records only | Matthias Schiffer | |
| 2013-10-19 | Use the rsv2 field in the handshake header as an optional length field to ↵ | Matthias Schiffer | |
| facilitate future extensions | |||
| 2013-10-19 | Get rid of packet.h | Matthias Schiffer | |
| 2013-10-19 | Add a HMAC to authenticate all handshake TLV | Matthias Schiffer | |
| 2013-08-17 | Make handshake records const uint8_t* instead of void* | Matthias Schiffer | |
| This enforces explicit casting and thus avoids alignment problems. | |||
| 2013-04-20 | Greatly improve handling of hosts with multiple IP addresses | Matthias Schiffer | |
| 2013-02-23 | Use fastd_peer_t instead of fastd_peer_config_t in handshake code | Matthias Schiffer | |
| Directly using the peers allows us to get rid of the inefficient get_peer() function and is necessary for adding support for unknown peers. | |||
| 2013-01-05 | Adjust copyright years | Matthias Schiffer | |
| 2012-12-18 | Convert type names to _t convention | Matthias Schiffer | |
| 2012-11-01 | Dynamically create and destroy sockets without fixed binds | Matthias Schiffer | |
| 2012-10-29 | Add support for multiple binds | Matthias Schiffer | |
| 2012-07-01 | Add support for multiple crypto methods without reconfiguration | Matthias Schiffer | |
| 2012-06-04 | Add version string to handshake | Matthias Schiffer | |
| 2012-04-19 | Don't regenerate session handshake keypair for every handshake so a global ↵ | Matthias Schiffer | |
| state can be used; remove the concept of temporary peers These changes will fix the possibility of a TCP-SYN-Flood-like DoS attack, at the cost of another protocol change: as we can't count request IDs when we don't know have temporary peers, request IDs are removed completely. | |||
| 2012-04-14 | Separate handshake from encryption method | Matthias Schiffer | |
| 2012-04-02 | Warn on MTU mismatchv0.1-rc3 | Matthias Schiffer | |
| 2012-04-01 | Use 2 bytes to encode handshake field types and lengths; breaks compatiblity ↵ | Matthias Schiffer | |
| with v0.1-rc2 and earlier | |||
| 2012-03-30 | Make ecfxp protocol work with new handshake | Matthias Schiffer | |
| 2012-03-30 | Rework handshake... again. ecfxp protocol broken, will be fixed with next ↵ | Matthias Schiffer | |
| commit. | |||
| 2012-03-28 | Add license headers to Flex and Bison files; also remove Quicktun note as we ↵ | Matthias Schiffer | |
| don't actually use any of is code | |||
| 2012-03-27 | New handshake format; don't respond to data packets from unknown peers with ↵ | Matthias Schiffer | |
| handshakes, but request a re-handshake | |||
| 2012-02-28 | Make simple handshake work | Matthias Schiffer | |
| 2012-02-27 | Use custom buffers instead of struct iovec | Matthias Schiffer | |
| 2012-02-26 | Implement I/O for a fixed peer | Matthias Schiffer | |
 |
index : fastd | |
| Fast and Secure Tunnelling Daemon | Matthias Schiffer <mschiffer@universe-factory.net> |
| summaryrefslogtreecommitdiffstats |