summaryrefslogtreecommitdiffstats
path: root/src/peer.c
AgeCommit message (Collapse)Author
2012-10-29Add support for multiple bindsMatthias Schiffer
2012-06-15Allow setting dynamic peers to flaotingMatthias Schiffer
2012-06-15Avoid using the same handshake key to establish more than one sessionMatthias Schiffer
This fix prevents a potential attack using intentional packet reordering to initialize more than one session with using the same handshake keys, leading to more that one session to be initialized with the same key data altogether, allowing to decrypt some packets in the worst case.
2012-06-07Limit handshake frequency where possibleMatthias Schiffer
2012-06-06Limit resolve frequencyMatthias Schiffer
2012-06-06Improve some log levelsMatthias Schiffer
2012-05-18Don't consider enable state on peer config change detectionMatthias Schiffer
2012-05-17Fix handling of unsuccessful resolveMatthias Schiffer
2012-04-27Automatically set interface MTUMatthias Schiffer
2012-04-19Don't regenerate session handshake keypair for every handshake so a global ↵Matthias Schiffer
state can be used; remove the concept of temporary peers These changes will fix the possibility of a TCP-SYN-Flood-like DoS attack, at the cost of another protocol change: as we can't count request IDs when we don't know have temporary peers, request IDs are removed completely.
2012-04-16Lots of fixes and improvements on the resolver codeMatthias Schiffer
2012-04-16Add support for peers specified by hostnamesMatthias Schiffer
2012-04-06Add some missing error handlingMatthias Schiffer
2012-04-05Add on-establish and on-disestablish commandsv0.2Matthias Schiffer
2012-04-05Cleanly shutdown; add on-down commandMatthias Schiffer
2012-04-05Implement reconfiguration on SIGHUPMatthias Schiffer
2012-04-03Save absolute path in peer configs from peer dirsMatthias Schiffer
2012-04-03Keep track of peer dirsMatthias Schiffer
2012-04-03Save source dirs with peer configsMatthias Schiffer
2012-04-03Ignore peer configs with errors in peer dirs instead of exitingMatthias Schiffer
2012-04-02Add sending of keep-alive packetsMatthias Schiffer
2012-04-01Require port with peer specfication, remove default portMatthias Schiffer
2012-04-01Don't stop repeating handshakes until valid data using the new key is receivedMatthias Schiffer
2012-04-01Fix handshakes occuring twice after unexpected data receiveMatthias Schiffer
2012-03-31Trigger handshake when unexpected data is received from a floating peerMatthias Schiffer
2012-03-31ecfxp: refresh session key periodicallyMatthias Schiffer
2012-03-31Change how handshakes are triggeredMatthias Schiffer
2012-03-30Make ecfxp protocol work with new handshakeMatthias Schiffer
2012-03-30Rework handshake... again. ecfxp protocol broken, will be fixed with next ↵Matthias Schiffer
commit.
2012-03-28Add license headers to Flex and Bison files; also remove Quicktun note as we ↵Matthias Schiffer
don't actually use any of is code
2012-03-28Make peer takeover workMatthias Schiffer
2012-03-28Make crypto handshake with floating peers workMatthias Schiffer
2012-03-27New handshake format; don't respond to data packets from unknown peers with ↵Matthias Schiffer
handshakes, but request a re-handshake
2012-03-27Use configured peer namesMatthias Schiffer
2012-03-26Allow initating and accepting handshake instances to coexist; fix some ↵Matthias Schiffer
memory corruption etc. found by Valgrind
2012-03-26Initial implementation of the FHMQV-C handshakeMatthias Schiffer
2012-03-24Rename methods to protocols; fix some command line parse bugs; implement ↵Matthias Schiffer
most of the config file parser
2012-03-24Partial implementation of a config files parserMatthias Schiffer
2012-03-14Require libuecc; rename cfxp to ecfxp; add some basic infrastructure for ↵Matthias Schiffer
crypto implementation
2012-03-08Moved some codeMatthias Schiffer
2012-03-08Fix some log messagesMatthias Schiffer
2012-03-08New and improved handshakeMatthias Schiffer
2012-03-07Fixed off-by-one in fastd_peer_eth_addr_addMatthias Schiffer
2012-03-07New debug print functionMatthias Schiffer
2012-03-07Forget old peers and addressesMatthias Schiffer
2012-03-06Implement tunneling over IPv6Matthias Schiffer
2012-03-02Delete pending tasks for deleted peersMatthias Schiffer
2012-03-02Allow floating peersMatthias Schiffer
2012-02-29Only send packets to the right host in ethernet modeMatthias Schiffer