aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/src (follow)
Commit message (Collapse)AuthorAgeFilesLines
* version: bump snapshotJason A. Donenfeld2019-11-272-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: bump versionJason A. Donenfeld2019-11-271-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: respect PATH when finding CBUILDJason A. Donenfeld2019-11-271-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: work around build bug with powerpc64leJason A. Donenfeld2019-11-271-0/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* allowedips: avoid double lock in selftest error caseJason A. Donenfeld2019-11-261-8/+9
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* socket: remove redundant check of new4Jason A. Donenfeld2019-11-261-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* allowedips: safely dereference rcu rootsJason A. Donenfeld2019-11-261-6/+10
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* messages: recalculate rekey max based on a one minute floodJason A. Donenfeld2019-10-301-1/+1
| | | | | Discussed-with: Mathias Hall-Andersen <mathias@hall-andersen.dk> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-10-122-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* noise: recompare stamps after taking write lockJason A. Donenfeld2019-10-111-2/+6
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* netlink: allow preventing creation of new peers when updatingJason A. Donenfeld2019-10-112-9/+12
| | | | | | | This enables race-free updates for wg-dynamic and similar tools. Suggested-by: Thomas Gschwantner <tharre3@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* netns: add test for failing 5.3 FIB changesJason A. Donenfeld2019-10-112-1/+24
| | | | | Reference: https://lore.kernel.org/netdev/20190924073615.31704-1-Jason@zx2c4.com/ Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: bump default versionJason A. Donenfeld2019-10-111-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-09-132-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: support rhel/centos 7.7Jason A. Donenfeld2019-09-131-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* Kbuild: squelch warnings for stack limit on broken kernel configsJason A. Donenfeld2019-09-131-0/+1
| | | | | | 1280 is considered the absolute minimum for 64bit archs. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: don't rewrite siphash when it's from compatJason A. Donenfeld2019-09-131-0/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: support newer PaXJason A. Donenfeld2019-09-111-0/+1
| | | | | Reported-by: PaX Team <pageexec@freemail.hu> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-09-052-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: work around ubuntu breakageJason A. Donenfeld2019-09-051-0/+9
| | | | | | They forgot to backport hsiphash. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* Makefile: allow specifying kernel releaseMikk Mar2019-08-281-2/+3
| | | | | | | | This makes depmod work when building/installing the module for a kernel other than the currently running one. Signed-off-by: Mikk Mar <mikkmar@airmail.cc> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: account for android-4.9 backport of addr_gen_modeNathan Chancellor2019-08-252-4/+4
| | | | | | | | | Android kernels backported d35a00b8e33dab7385f724e713ae71c8be0a49f4, so now we need to do feature detection. Link: https://android-review.googlesource.com/c/kernel/common/+/1103831 Signed-off-by: Nathan Chancellor <natechancellor@gmail.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* Kbuild: account for upstream configuration maze changesJason A. Donenfeld2019-08-071-0/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* netlink: skip peers with invalid keysJason A. Donenfeld2019-08-052-6/+15
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: do not run bc on clean targetJason A. Donenfeld2019-08-031-0/+2
| | | | | | | Certain targets don't define CONFIG_*, which means this bc command was previously failing. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: support running in OpenVZ environmentsJason A. Donenfeld2019-07-191-0/+8
| | | | | | | | Overriding LLTX like this is pretty ugly, but at least it means we don't have to let OpenVZ infect the real source tree. Requested-by: Benedikt Braunger <b.braunger@syseleven.de> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* noise: immediately rekey all peers after changing device private keyJason A. Donenfeld2019-07-116-7/+47
| | | | | Reported-by: Derrick Pallas <derrick@pallas.us> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* netlink: enforce that unused bits of flags are zeroJason A. Donenfeld2019-07-082-5/+16
| | | | | Reported-by: Toke Høiland-Jørgensen <toke@toke.dk> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: define conversion constants for ancient kernelsJason A. Donenfeld2019-07-042-1/+5
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-07-022-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* receive: queue dead packets to napi queue instead of empty rx_queueJason A. Donenfeld2019-07-022-5/+3
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* peer: use LIST_HEAD macroJason A. Donenfeld2019-06-281-1/+1
| | | | | Suggested-by: Sultan Alsawaf <sultan@kerneltoast.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* netlink: cast struct over cb->args for type safetyJason A. Donenfeld2019-06-281-29/+34
| | | | | | | This eliminates the headache of managing cb->args[??]. Suggested-by: Johannes Berg <johannes@sipsolutions.net> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: support RHEL8's skb_mark_not_on_list backportJason A. Donenfeld2019-06-281-1/+3
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: rhel backported list modificationsJason A. Donenfeld2019-06-251-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* global: switch to coarse ktimeJason A. Donenfeld2019-06-2511-36/+43
| | | | | | | | | | | | | | Coarse ktime is broken until [1] in 5.2 and kernels without the backport, so we use fallback code there. The fallback code has also been improved significantly. It now only uses slower clocks on kernels < 3.17, at the expense of some accuracy we're not overly concerned about. [1] https://lore.kernel.org/lkml/tip-e3ff9c3678b4d80e22d2557b68726174578eaf52@git.kernel.org/ Suggested-by: Arnd Bergmann <arnd@arndb.de> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: unify custom function prefix/suffixJason A. Donenfeld2019-06-243-48/+48
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: some kernels weirdly backport prandom_u32_maxJason A. Donenfeld2019-06-241-2/+3
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: show signal when failingJason A. Donenfeld2019-06-181-3/+14
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* blake2s: spacingJason A. Donenfeld2019-06-032-123/+123
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* curve25519: not all linkers support bmi2 and adxJason A. Donenfeld2019-06-023-6/+58
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-06-012-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* compat: don't call xgetbv on cpus with no XSAVEJason A. Donenfeld2019-05-311-1/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* blake2s: add ssse3 to nobsJason A. Donenfeld2019-05-311-1/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* blake2s: do not use xgetbv for ssse3 detectionJason A. Donenfeld2019-05-311-3/+1
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* version: bump snapshotJason A. Donenfeld2019-05-312-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* zinc: update copyrightJason A. Donenfeld2019-05-292-2/+2
| | | | Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* blake2s: shorten ssse3 loopSamuel Neves2019-05-291-857/+66
| | | | | | | | This (mostly) preserves the performance (as measured on Haswell and *lake) of last commit, but it drastically reduces code size. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* blake2s,chacha: latency tweakSamuel Neves2019-05-295-618/+982
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In every odd-numbered round, instead of operating over the state x00 x01 x02 x03 x05 x06 x07 x04 x10 x11 x08 x09 x15 x12 x13 x14 we operate over the rotated state x03 x00 x01 x02 x04 x05 x06 x07 x09 x10 x11 x08 x14 x15 x12 x13 The advantage here is that this requires no changes to the 'x04 x05 x06 x07' row, which is in the critical path. This results in a noticeable latency improvement of roughly R cycles, for R diagonal rounds in the primitive. In the case of BLAKE2s, which I also moved from requiring AVX to only requiring SSSE3, we save approximately 30 cycles per compression function call on Haswell and Skylake. In other words, this is an improvement of ~0.6 cpb. This idea was pointed out to me by Shunsuke Shimizu, though it appears to have been around for longer. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* qemu: do not check for alignment with ubsanJason A. Donenfeld2019-05-291-0/+1
| | | | | | It insta-crashes on x86. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.