Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-12-08 | Fix crash occuring under certain circumstances on resolve failure | Matthias Schiffer | |
When a dynamic peer is in handshake state and a previous resolve has returned an address, the peer must be reset on a resolve failure even when there is no established session to avoid aborting on the next handshake. | |||
2012-11-10 | Keep track of configured peer count correctly on dynamic reloads | Matthias Schiffer | |
2012-11-05 | Only delay initial handshakes for groups with constraints | Matthias Schiffer | |
2012-11-05 | Add randomized initial handshake delays | Matthias Schiffer | |
This delay should barely be noticable, and it will make fastd connect to a random choice of peers when a peer limit is set | |||
2012-11-05 | Implement peer limit constraints | Matthias Schiffer | |
2012-11-05 | Implement peer groups | Matthias Schiffer | |
2012-11-05 | Fix some more bugs in fastd_peer_claim_address | Matthias Schiffer | |
2012-11-04 | Reset dynamic peer if there is an established session and resolve fails | Matthias Schiffer | |
Fixes an assertion fail when address resolution fails during session refresh. | |||
2012-11-02 | Keep track of corresonding peers in associated sockets | Matthias Schiffer | |
2012-11-01 | Dynamically create and destroy sockets without fixed binds | Matthias Schiffer | |
2012-11-01 | Move unistd.h include to fastd.h | Matthias Schiffer | |
2012-10-29 | Add support for multiple binds | Matthias Schiffer | |
2012-06-15 | Allow setting dynamic peers to flaoting | Matthias Schiffer | |
2012-06-15 | Avoid using the same handshake key to establish more than one session | Matthias Schiffer | |
This fix prevents a potential attack using intentional packet reordering to initialize more than one session with using the same handshake keys, leading to more that one session to be initialized with the same key data altogether, allowing to decrypt some packets in the worst case. | |||
2012-06-07 | Limit handshake frequency where possible | Matthias Schiffer | |
2012-06-06 | Limit resolve frequency | Matthias Schiffer | |
2012-06-06 | Improve some log levels | Matthias Schiffer | |
2012-05-18 | Don't consider enable state on peer config change detection | Matthias Schiffer | |
2012-05-17 | Fix handling of unsuccessful resolve | Matthias Schiffer | |
2012-04-27 | Automatically set interface MTU | Matthias Schiffer | |
2012-04-19 | Don't regenerate session handshake keypair for every handshake so a global ↵ | Matthias Schiffer | |
state can be used; remove the concept of temporary peers These changes will fix the possibility of a TCP-SYN-Flood-like DoS attack, at the cost of another protocol change: as we can't count request IDs when we don't know have temporary peers, request IDs are removed completely. | |||
2012-04-16 | Lots of fixes and improvements on the resolver code | Matthias Schiffer | |
2012-04-16 | Add support for peers specified by hostnames | Matthias Schiffer | |
2012-04-06 | Add some missing error handling | Matthias Schiffer | |
2012-04-05 | Add on-establish and on-disestablish commandsv0.2 | Matthias Schiffer | |
2012-04-05 | Cleanly shutdown; add on-down command | Matthias Schiffer | |
2012-04-05 | Implement reconfiguration on SIGHUP | Matthias Schiffer | |
2012-04-03 | Save absolute path in peer configs from peer dirs | Matthias Schiffer | |
2012-04-03 | Keep track of peer dirs | Matthias Schiffer | |
2012-04-03 | Save source dirs with peer configs | Matthias Schiffer | |
2012-04-03 | Ignore peer configs with errors in peer dirs instead of exiting | Matthias Schiffer | |
2012-04-02 | Add sending of keep-alive packets | Matthias Schiffer | |
2012-04-01 | Require port with peer specfication, remove default port | Matthias Schiffer | |
2012-04-01 | Don't stop repeating handshakes until valid data using the new key is received | Matthias Schiffer | |
2012-04-01 | Fix handshakes occuring twice after unexpected data receive | Matthias Schiffer | |
2012-03-31 | Trigger handshake when unexpected data is received from a floating peer | Matthias Schiffer | |
2012-03-31 | ecfxp: refresh session key periodically | Matthias Schiffer | |
2012-03-31 | Change how handshakes are triggered | Matthias Schiffer | |
2012-03-30 | Make ecfxp protocol work with new handshake | Matthias Schiffer | |
2012-03-30 | Rework handshake... again. ecfxp protocol broken, will be fixed with next ↵ | Matthias Schiffer | |
commit. | |||
2012-03-28 | Add license headers to Flex and Bison files; also remove Quicktun note as we ↵ | Matthias Schiffer | |
don't actually use any of is code | |||
2012-03-28 | Make peer takeover work | Matthias Schiffer | |
2012-03-28 | Make crypto handshake with floating peers work | Matthias Schiffer | |
2012-03-27 | New handshake format; don't respond to data packets from unknown peers with ↵ | Matthias Schiffer | |
handshakes, but request a re-handshake | |||
2012-03-27 | Use configured peer names | Matthias Schiffer | |
2012-03-26 | Allow initating and accepting handshake instances to coexist; fix some ↵ | Matthias Schiffer | |
memory corruption etc. found by Valgrind | |||
2012-03-26 | Initial implementation of the FHMQV-C handshake | Matthias Schiffer | |
2012-03-24 | Rename methods to protocols; fix some command line parse bugs; implement ↵ | Matthias Schiffer | |
most of the config file parser | |||
2012-03-24 | Partial implementation of a config files parser | Matthias Schiffer | |
2012-03-14 | Require libuecc; rename cfxp to ecfxp; add some basic infrastructure for ↵ | Matthias Schiffer | |
crypto implementation |