Age | Commit message (Collapse) | Author | |
---|---|---|---|
2016-03-20 | ec25519_fhmqvc: simplify protocol_handle_recv control flow | Matthias Schiffer | |
2016-03-19 | ec25519_fhmqvc: update to follow new libuecc recommendations | Matthias Schiffer | |
2016-02-22 | capabilities: guard packet mark check with USE_PACKET_MARK | Matthias Schiffer | |
At the moment, both capabilities and packet marks are supported on Linux only, so this doesn't really matter except for testing. | |||
2016-02-22 | capabilities: print message about retained capabilities | Matthias Schiffer | |
2016-02-22 | Retain CAP_NET_ADMIN if a packet mark is configured and dynamic binds are ↵ | Matthias Schiffer | |
required | |||
2016-02-22 | Add "drop privileges force" option which allows to drop CAP_NET_ADMIN even ↵ | Matthias Schiffer | |
when fastd thinks it might still need it | |||
2016-02-22 | Improve capability handling, retain required capabilities | Matthias Schiffer | |
2016-02-22 | Update copyright years | Matthias Schiffer | |
2016-02-22 | socket: improve and simplify error handling | Matthias Schiffer | |
Rather exit on errors we're unlikely to recover from than retrying indefinitely. | |||
2016-02-22 | peer: remove dead code in fastd_peer_reset_socket() | Matthias Schiffer | |
2016-02-22 | types: replace static consts with defines | Matthias Schiffer | |
2016-02-22 | Handle optional features (capabilities, status socket) more consistently | Matthias Schiffer | |
2016-02-21 | Print UID and GID as unsigned in log message | Matthias Schiffer | |
2016-02-21 | Replace setuid/setgid with setresuid/setresgid (or setreuid/setregid) | Matthias Schiffer | |
The semantics of setuid in SUID processes are not entirely clear on all Unix-like systems. Better use setresuid to drop privileges where available. | |||
2015-12-21 | Don't block fatal signals | Matthias Schiffer | |
2015-12-21 | Terminate with the received signal | Matthias Schiffer | |
2015-11-25 | log: clean up fastd_logf | Matthias Schiffer | |
Also, return early when no log destination would get the message anyways. | |||
2015-11-18 | Unify periodic handshakes and peer maintenance | Matthias Schiffer | |
2015-11-18 | Clean up peer task handling | Matthias Schiffer | |
2015-11-17 | Use task queue for peer resets and keepalives | Matthias Schiffer | |
This makes it unnecessary to iterate over all peers for maintenance, and desynchronizes different peers' keepalives. | |||
2015-11-16 | Call ethernet address cleanup from generic maintenance task | Matthias Schiffer | |
2015-11-10 | Add lots of missing doxygen comments | Matthias Schiffer | |
2015-11-10 | Implement generic task queue to handle handshakes and maintenance | Matthias Schiffer | |
2015-11-10 | pqueue: remove some unnessasary assignments | Matthias Schiffer | |
2015-11-10 | Remove now unused doubly-linked list implementation | Matthias Schiffer | |
2015-11-10 | Use heap-based priority queue to schedule handshakes instead of a linked list | Matthias Schiffer | |
2015-11-10 | Add efficient priority queue implementation | Matthias Schiffer | |
2015-11-09 | Destroy interfaces on OpenBSD as well | Matthias Schiffer | |
2015-11-09 | Implement interface cleanup on FreeBSD | Matthias Schiffer | |
Based-on-patch-by: Julian Kornberger <jk+github@digineo.de> | |||
2015-11-09 | Add generic interface cleanup infrastructure | Matthias Schiffer | |
Some systems (like FreeBSD) don't delete TUN/TAP interfaces after closing, add some infrastructure to do that. | |||
2015-11-09 | Check return value of sodium_init() | Matthias Schiffer | |
Fixes a warning with -Wunused-result. | |||
2015-11-09 | Use a global ioctl socket | Matthias Schiffer | |
Based-on-patch-by: Julian Kornberger <jk+github@digineo.de> | |||
2015-10-25 | Update libuecc dependency to v6 and remove use of deprecated API | Matthias Schiffer | |
2015-10-20 | Improve include_directories to prevent conflicts between system and fastd ↵ | Matthias Schiffer | |
headers In in-tree builds, fastd's poll.h was conflicting with the system one on non-Linux systems. | |||
2015-10-18 | peer_group: add fastd_peer_group_lookup_peer_shell_command macro to simplify ↵ | Matthias Schiffer | |
shell command lookup | |||
2015-10-18 | config: make on_up/down/establish/disestablish commands configurable per ↵ | Matthias Schiffer | |
peer group | |||
2015-10-18 | peer_group: move to a new header, add recursive lookup macros | Matthias Schiffer | |
2015-10-18 | status: ensure that the status socket is unlinked when fastd exits with an error | Matthias Schiffer | |
2015-09-04 | config: allow moving the 'on verify' clause into a peer group | Matthias Schiffer | |
2015-06-25 | Use __attribute__((packed)) instead of __attribute__((__packed__)) consistently | Matthias Schiffer | |
2015-06-25 | Don't depend on net/if_ether.h | Matthias Schiffer | |
Instead of adding compatiblity code to make this work with musl, just duplicate the needed definitions in fastd. | |||
2015-06-22 | salsa20{,12}/xmm: avoid symbol conflicts with libnacl | Matthias Schiffer | |
Also remove some dead code | |||
2015-05-12 | config: allow on-verify configuration without any other peers | Matthias Schiffer | |
2015-03-24 | Add some MTU-related Doxygen comments | Matthias Schiffer | |
2015-03-24 | Make build dependencies more configurable | Matthias Schiffer | |
2015-03-24 | Add support for defining the MTU per peer | Matthias Schiffer | |
2015-03-24 | peer: fix segfault on on-connect with unknown peer | Matthias Schiffer | |
2015-03-24 | config: add missing Doxygen comment | Matthias Schiffer | |
2015-03-24 | iface: add support for interface name patterns | Matthias Schiffer | |
2015-03-24 | log: allow escaping % patterns | Matthias Schiffer | |