summaryrefslogtreecommitdiffstats
path: root/src
AgeCommit message (Expand)Author
2013-10-20Always check for mode and protocol mismatchesMatthias Schiffer
2013-10-20Refactor handshake code, prevent downgrade attacksMatthias Schiffer
2013-10-19Rename RECORD_HANDSHAKE_MAC to RECORD_TLV_MACMatthias Schiffer
2013-10-19Authenticate the TLV records onlyMatthias Schiffer
2013-10-19Use the rsv2 field in the handshake header as an optional length field to fac...Matthias Schiffer
2013-10-19Get rid of packet.hMatthias Schiffer
2013-10-19Add a HMAC to authenticate all handshake TLVMatthias Schiffer
2013-10-18Generalize SHA256 functions to work with arbitrary inputsMatthias Schiffer
2013-10-17Use the default delay before a handshake is sent when the local address is in...Matthias Schiffer
2013-10-16Add `secure handshakes' option (without effect for now)Matthias Schiffer
2013-10-16Initiate handshake when a packet can't be sent because the local address is i...Matthias Schiffer
2013-10-16Fix fast roaming when local IP address has changedMatthias Schiffer
2013-10-04Fix source address choice for IPv4 on LinuxMatthias Schiffer
2013-09-30Invalidate null sessions when they are supersededMatthias Schiffer
2013-09-06Change directory to / when privileges are dropped or the user is changedMatthias Schiffer
2013-09-03Add packet/byte statisticsMatthias Schiffer
2013-08-30Demote some sendmsg warnings to debug and debug2 levelsMatthias Schiffer
2013-08-29Don't initialize monotone timestamps with zeroMatthias Schiffer
2013-08-29Replace old task queueMatthias Schiffer
2013-08-29Simplify keepalive sendingMatthias Schiffer
2013-08-28ec25519: ensure old sessions are invalidated quickly after a new one has been...Matthias Schiffer
2013-08-28Remote unused fastd_task_replace_peer()Matthias Schiffer
2013-08-28ec25519: ensure that there is always a handshake enqueued after sending a han...Matthias Schiffer
2013-08-28ec25519: reset peers as soon as their current session times outMatthias Schiffer
2013-08-28Cancel the session establishment earlier when the address can't be claimed by...Matthias Schiffer
2013-08-28Introduce constants for tristate valuesMatthias Schiffer
2013-08-27Introduce new log level debug2 for potentially very frequent messagesMatthias Schiffer
2013-08-26options: change `config error' to `command line error' messagesMatthias Schiffer
2013-08-25ec25519-fhmqvc: use different handshake keys as initiator and responderMatthias Schiffer
2013-08-25ec25519-fhmqvc: put public and secret keys together in a keypair structureMatthias Schiffer
2013-08-20OpenBSD doesn't support IPv4 on IPv6 socketsMatthias Schiffer
2013-08-20Use v4-mapped addresses for IPv4 peers on IPv6 socketsMatthias Schiffer
2013-08-20Prevent zero-before-free operations from being optimized outMatthias Schiffer
2013-08-20Fix lots of -Wextra warningsMatthias Schiffer
2013-08-19ec25519: add alignment attributes to all keys used as hash inputsMatthias Schiffer
2013-08-19ec25519: reorder some code to fix a false-positive "may be used uninitialized...Matthias Schiffer
2013-08-18ec25519: minor code simplifications in handshake handlingMatthias Schiffer
2013-08-17Cache values calculated in the handshake reponse to reuse them in the finish ...Matthias Schiffer
2013-08-17Make handshake records const uint8_t* instead of void*Matthias Schiffer
2013-08-17Slightly improve the SHA256 APIMatthias Schiffer
2013-08-17Check closedir return valueMatthias Schiffer
2013-08-17Use readdir instead of readdir_rMatthias Schiffer
2013-08-16lex: fix scanning of IPv6 addressesMatthias Schiffer
2013-08-16Fix segfault on single peer includes without nameMatthias Schiffer
2013-08-15Always compile with -Wall (and fix other property settings)Matthias Schiffer
2013-08-15Align sender keyMatthias Schiffer
2013-08-15Replace NaCl's HMAC implementationMatthias Schiffer
2013-08-15Add small SHA256 implementationMatthias Schiffer
2013-08-14Allow disabling redundant command line optionsMatthias Schiffer
2013-08-14Change the order of the option handlers to match the option definionMatthias Schiffer