summaryrefslogtreecommitdiffstats
path: root/src
AgeCommit message (Collapse)Author
2015-01-11config: allow ipv4/ipv6 keywords before static addressesMatthias Schiffer
2015-01-10poll: more include cleanupMatthias Schiffer
2015-01-10poll:remove sys/signal.h includeMatthias Schiffer
This had been added accidentially.
2015-01-09Comment typo fixMatthias Schiffer
2015-01-09ec25519-fhmqvc: don't check group order of peers' public keysMatthias Schiffer
Skipping this check will significantly speed up startup with many peers. As we now do embedded group order verification, an attacker can't gain anything from small-subgroup attacks, so skipping the check isn't a security issue.
2015-01-09ec25519-fhmqvc: optimize handshake by using embedded group element verificationMatthias Schiffer
Using the embedded group element verification allows us to get away without explicit verification, thus needing one scalar multiplication less. This reduces the number of expensive operations needed for a handshake to three: one Galois field square root (for key unpacking) and two scalar multiplications. For this optimization to be secure, private keys must be divisible by 8. This is the case for all keys generated with all but extremely old versions of fastd (pre-0.4). If fastd finds that its secret is not divisible by 8, it will refuse to start now.
2015-01-09Move protocol-specific TLV specifications to main handshake record enumMatthias Schiffer
2015-01-09poll: define SYS_epoll_pwait if it isn't availableMatthias Schiffer
2015-01-09ec25519-fhmqvc: unpack peers' keys only onceMatthias Schiffer
2015-01-09poll: directly call epoll_pwait syscall instead of using the libc wrapperMatthias Schiffer
There are systems without the wrapper (e.g. older Android versions), and the wrapper is broken in some versions of uClibc.
2015-01-09More comment fixesMatthias Schiffer
2015-01-09Add support for a new big-endian handshake formatMatthias Schiffer
Because of strange dicisions in the past, fastd currently uses little endian type and length values in its handshake. As the common network byte order is big endian, changing the handshake format would be preferable. This commit adds support for a new big-endian handshake. For now, fastd will continue to send little-endian handshakes so ensure backwarts compatiblity, but if it receives a big-endian handshake, it will respond with a big-endian one.
2015-01-08ecc25519-fhmqvc: add doxygen comments to the key check functionsMatthias Schiffer
2015-01-06status socket: better error messages on bind errorsMatthias Schiffer
2015-01-06ec25519-fhmqvc: additional key checksMatthias Schiffer
Until now, it wasn't checked if a public key was the identity element. I don't think this mistake allows any actual attacks against the handshake though.
2015-01-06handshake: get rid of stpcpyMatthias Schiffer
stpcpy was added in POSIX.1-2008 and is not present on some systems like Android.
2014-11-15Use the peer key instead of the name as keys in the status socket outputMatthias Schiffer
This fixes the status socket segfault in a nicer way than the reverted commit "Use peer specifier from log instead of the peer name for the status output".
2014-11-15ec25519-fhmqvc: extend describe_peer to return the whole keyMatthias Schiffer
2014-11-15Revert "Use peer specifier from log instead of the peer name for the status ↵Matthias Schiffer
output" This reverts commit be929dbe2dffa82ca1f91538f56a1bb0490000bd.
2014-11-15Fix segfault when checking peer addressesMatthias Schiffer
This segfault would occur when a peer with a static IP address (e.i. not a hostname resolved via DNS) is read, and any other peer after that.
2014-11-12Use peer specifier from log instead of the peer name for the status outputMatthias Schiffer
This fixes a crash when status sockets are used with peers without names, but the JSON output format is changed: named peers will now use "<name>" as key instead of "name".
2014-11-11ec25519-fhmqvc: add missing Doxygen commentMatthias Schiffer
2014-10-22Use big endian for handshake field values by defaultMatthias Schiffer
At the moment the only multi-byte field is the MTU; it is kept in little endian to provide backwards compatiblity. Future fields will be big endian.
2014-10-13ec25519-fhmqvc: improve unknown key messageMatthias Schiffer
2014-09-26Don't forward frames with local destination MAC addressMatthias Schiffer
2014-09-26Move get_source_address and get_dest_address to fastd.hMatthias Schiffer
2014-09-20Some handshake fixes for future protocol extensionsMatthias Schiffer
Extensions for arbitrary-length integers.
2014-09-16More fixes for zero-length VLAsMatthias Schiffer
2014-09-16Fix undefined behaviour due to zero length VLAs in null+* methodsMatthias Schiffer
2014-09-15Don't try to poll on invalid status socket FDMatthias Schiffer
2014-09-15Reorder fields of the peer structureMatthias Schiffer
This tries to get the structure a bit smaller and improve cache locality.
2014-09-15status: add uptime and established timesMatthias Schiffer
2014-09-12Add per-peer statsMatthias Schiffer
2014-09-12Restructure traffics stats to keep all stats in a single structureMatthias Schiffer
2014-09-10ec25519-fhmqvc: refactor old session check codeMatthias Schiffer
2014-09-09Add current method of connections to status outputMatthias Schiffer
2014-09-08Make stats of reordered packetsMatthias Schiffer
2014-09-06Move UNUSED attribute to the start of arguments to help editors understand ↵Matthias Schiffer
the syntax
2014-09-06Don't count stats when WITH_STATUS_SOCKET is not setMatthias Schiffer
2014-09-06Fix async command waitpid error handling (again...)Matthias Schiffer
2014-09-06Fix poll initialization on systems without epollMatthias Schiffer
2014-09-05Add status socket to get the current status as JSONMatthias Schiffer
2014-09-05Dynamically grow hashtable when there are more than twice as many entries as ↵Matthias Schiffer
buckets This allows us to start with a much smaller hashtable and scale much higher.
2014-09-04Support dynamic binds with extra options (interface binds, specific ↵Matthias Schiffer
addresses...)
2014-09-04Nicer handshake error messages instead of "unacceptable value"Matthias Schiffer
2014-09-03Fix UHASH build on MacOS XMatthias Schiffer
2014-09-03Fix clock_gettime() on MacOS XMatthias Schiffer
2014-09-03Fix UHASH build on *BSDMatthias Schiffer
2014-09-01Remove old state dump featureMatthias Schiffer
It will be replaced by a nicer version.
2014-09-01Add missing docs to secure_memequal and block_equalMatthias Schiffer