Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-01-09 | Move protocol-specific TLV specifications to main handshake record enum | Matthias Schiffer | |
2015-01-09 | ec25519-fhmqvc: unpack peers' keys only once | Matthias Schiffer | |
2015-01-09 | Add support for a new big-endian handshake format | Matthias Schiffer | |
Because of strange dicisions in the past, fastd currently uses little endian type and length values in its handshake. As the common network byte order is big endian, changing the handshake format would be preferable. This commit adds support for a new big-endian handshake. For now, fastd will continue to send little-endian handshakes so ensure backwarts compatiblity, but if it receives a big-endian handshake, it will respond with a big-endian one. | |||
2015-01-08 | ecc25519-fhmqvc: add doxygen comments to the key check functions | Matthias Schiffer | |
2015-01-06 | ec25519-fhmqvc: additional key checks | Matthias Schiffer | |
Until now, it wasn't checked if a public key was the identity element. I don't think this mistake allows any actual attacks against the handshake though. | |||
2014-11-15 | Fix segfault when checking peer addresses | Matthias Schiffer | |
This segfault would occur when a peer with a static IP address (e.i. not a hostname resolved via DNS) is read, and any other peer after that. | |||
2014-11-11 | ec25519-fhmqvc: add missing Doxygen comment | Matthias Schiffer | |
2014-10-13 | ec25519-fhmqvc: improve unknown key message | Matthias Schiffer | |
2014-09-16 | More fixes for zero-length VLAs | Matthias Schiffer | |
2014-09-06 | Move UNUSED attribute to the start of arguments to help editors understand ↵ | Matthias Schiffer | |
the syntax | |||
2014-08-31 | Replace memcmp with a constant-time version in some places | Matthias Schiffer | |
2014-08-24 | Coding style: always add a space between a pointer's type and the * | Matthias Schiffer | |
2014-08-24 | Use simple int64_t timestamps in ms instead of timespecs | Matthias Schiffer | |
2014-08-24 | Merge peer config into peer structure | Matthias Schiffer | |
With this refactoring, the structure fastd_peer_config_t is merged into fastd_peer_t, and fastd_remote_config_t into fastd_remote_t. This also means we now create peers directly when reading their configurations, which significantly simplifies the whole reload process, and prepares for some future optimizations like a key hash table. Note: This commit is too big, but I couldn't come up with a nice way to split it into smaller pieces... | |||
2014-08-19 | Create peer structures for disabled peers as well | Matthias Schiffer | |
We have a 1:1 association between peers and peer configs now. | |||
2014-08-18 | Dynamically create peer configs for dynamic peers | Matthias Schiffer | |
This avoids duplicating the protocol_config field. | |||
2014-08-18 | Rename WITH_VERIFY CMake option to WITH_DYNAMIC_PEERS | Matthias Schiffer | |
2014-08-18 | Rename "temporary peers" to "dynamic peers" | Matthias Schiffer | |
2014-08-09 | Move fastd_config_t.peers to fastd_context_t.peer_configs | Matthias Schiffer | |
2014-08-02 | Introduce and use alloc helpers | Matthias Schiffer | |
These new helpers will terminate fastd on allocation failures and add some additional convenience (allow strdup with NULL; typesafe new(type) macros). | |||
2014-06-08 | Allow async verify for handshake responses | Matthias Schiffer | |
This will lead to a bit strange handshake as a handshake response is answered with another handshake response, but it won't lead to loops because of the verification and handshake backoff intervals. | |||
2014-05-31 | Make log levels verbose and info more useful | Matthias Schiffer | |
2014-05-29 | Document *everything* | Matthias Schiffer | |
2014-05-25 | Make a few struct fields that are not supposed to be changed defines instead | Matthias Schiffer | |
2014-04-26 | Make on-verify support optional | Matthias Schiffer | |
2014-04-26 | Implement async verify | Matthias Schiffer | |
2014-04-26 | Revise shell command API | Matthias Schiffer | |
2014-04-25 | handshake: simplify fastd_handshake_new_reply | Matthias Schiffer | |
This will hopefully lead to an async verify implementation... | |||
2014-04-25 | fastd_peer_claim_address: add parameter to allow claiming addresses of ↵ | Matthias Schiffer | |
established peers | |||
2014-04-25 | fastd_peer_claim_address: allow claiming addresses from other peers when ↵ | Matthias Schiffer | |
they aren't configured statically | |||
2014-04-24 | ec25519-fhmqvc: use PUBLICKEYBYTES and SECRETKEYBYTES defines more | Matthias Schiffer | |
2014-04-21 | Remove vector of new temporary peers | Matthias Schiffer | |
The new poll code has made this second peer list obsolete. | |||
2014-04-20 | Make ctx global | Matthias Schiffer | |
2014-04-20 | Make conf global | Matthias Schiffer | |
2014-04-19 | Store peers as vectors of pointers instead of linked lists | Matthias Schiffer | |
2014-04-18 | Clean up shell command handling | Matthias Schiffer | |
2014-04-13 | Simplify handling of on-verify commands | Matthias Schiffer | |
2014-04-13 | Break very long line | Matthias Schiffer | |
2014-04-13 | Add on-connect hook | Matthias Schiffer | |
2014-04-11 | Improve shell command config handling | Matthias Schiffer | |
2014-03-14 | Adjust copyright years | Matthias Schiffer | |
2014-03-10 | Remove aligned data_t type again | Matthias Schiffer | |
2014-01-27 | Add an aligned uint8_t type data_t and use it to ensure the alignment of ↵ | Matthias Schiffer | |
various buffers on the stack | |||
2014-01-26 | Switch to the new timeout helpers where possible | Matthias Schiffer | |
2014-01-26 | Get rid of long_ago variable, use timeout helpers | Matthias Schiffer | |
2014-01-26 | ec25519-fhmqvc/handshake: use min_handshake_interval instead of hardcoding ↵ | Matthias Schiffer | |
backoff timeout | |||
2013-11-30 | Rename methods to methods providers and method contexts to methods to ↵ | Matthias Schiffer | |
reflect their function better | |||
2013-11-30 | Perform string-based lookup of method-related information only once | Matthias Schiffer | |
2013-11-29 | Allow method init to fail | Matthias Schiffer | |
2013-11-29 | Compile with -std=c99 and restructure some code to ensure there is no ↵ | Matthias Schiffer | |
invalid aliasing (hopefully) |