aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/.gitignore (unfollow)
Commit message (Collapse)AuthorFilesLines
2017-05-30rust test: convert screech test to snowJake McGinty2-39/+31
2017-05-30style: spaces after for loopsJason A. Donenfeld7-15/+15
2017-05-30peer: use iterator macro instead of callbackJason A. Donenfeld6-77/+73
2017-05-30noise: precompute static-static ECDH operationJason A. Donenfeld4-15/+30
2017-05-30noise: no need to store ephemeral public keyJason A. Donenfeld2-7/+6
2017-05-30handshake: process in parallelJason A. Donenfeld7-35/+61
2017-05-30compat: ship padata if kernel doesn't have itJason A. Donenfeld3-11/+1055
2017-05-30man: update wg-quick(8) to show Debian resolvconf braindamageJason A. Donenfeld1-2/+2
While OpenResolv supports explicit ordering directives such as `-m` and exclusivity directives such as `-x`, Debian's own resolvconf supports none of this, instead using a hard coded list of interface name templates for determining ordering. While trying to emulate `-x` is difficult [*], we can at least try to mostly emulate `-m 0` by masquerading as a `tun*` interface to resolvconf. Ugly, but it works. [*] One heavy handed way of emulating `-x` would be something like: # echo nameserver 8.8.8.8 > /etc/resolv.conf.wg0-exclusive # mount --bind -o ro /etc/resolv.conf.wg0-exclusive /etc/resolv.conf # rm -f /etc/resolv.conf.wg0-exclusive This in practice works quite well, but is a bit heavy to put in a man page. It also doesn't "stack" well. For example, if we simply run `umount /etc/resolv.conf`, how do we know which resolv.conf entry we're unmounting?
2017-05-30chacha20poly1305: add NEON versions for ARM and ARM64Jason A. Donenfeld6-12/+1048
2017-05-21chacha20poly1305: move constants to rodataJason A. Donenfeld5-14/+27
2017-05-18wg-quick: use src routing for default routes in v6Jason A. Donenfeld1-3/+11
Otherwise, traffic is sent with the IP address of a different interface, and then packets don't actually get delivered.
2017-05-18man: fix psk mention in wg-quick man pageJason A. Donenfeld1-2/+2
2017-05-17version: bump snapshot0.0.20170517Jason A. Donenfeld2-2/+2
2017-05-17tools: opt-in globally to GNU-isms to keep the BSDs happyJason A. Donenfeld2-2/+1
2017-05-17tools: support text-based ipcJason A. Donenfeld8-131/+321
2017-05-17tools: check for proto error on set tooJason A. Donenfeld1-3/+4
2017-05-17Kbuild: optimize debug builds tooJason A. Donenfeld1-1/+1
2017-05-17tests: check for stats counter increasesJason A. Donenfeld1-0/+4
The kernel API for this has changed a lot, so this test is important to ensure our compat layer is doing the right thing.
2017-05-17qemu: new location for test kernelsJason A. Donenfeld1-3/+3
2017-05-17tools: stricter key file readingJason A. Donenfeld1-31/+40
2017-05-17jerry-rig: symlinks are better for tree patchingJason A. Donenfeld3-5/+6
Use a symlink instead of lots of ../../.. Suggested-by: Benedikt Morbach <benedikt.morbach@googlemail.com>
2017-05-17noise: redesign preshared key modeJason A. Donenfeld19-225/+224
2017-05-17chacha20poly1305: implement vectorized hchacha20Jason A. Donenfeld2-21/+157
2017-05-17qemu: new packages and better debuggingJason A. Donenfeld2-12/+13
2017-05-17tools: wg-quick: auto MTU discoveryJason A. Donenfeld2-1/+28
2017-05-17tools: retry name resolution on temporary failureJason A. Donenfeld1-1/+10
This should solve many problems at init time.
2017-05-17compat: remember to call iptunnel_xmit_statsJason A. Donenfeld1-4/+13
Upstream's 039f50629b7f860f36644ed1f34b27da9aa62f43 only came in 4.5
2017-05-17compat: use real crypto_memneqJason A. Donenfeld4-14/+181
2017-05-17compat: work around ubnt offloadingJason A. Donenfeld1-0/+4
2017-05-04compat: ssse3 supportJason A. Donenfeld1-0/+4
2017-04-24compat: use existing iptunnel_xmit function for statsJason A. Donenfeld1-7/+2
2017-04-21version: bump snapshot0.0.20170421Jason A. Donenfeld2-2/+2
2017-04-21routingtable: rewrite core functionsJason A. Donenfeld5-439/+634
When removing by peer, prev needs to be set to *nptr in order to traverse that part of the trie. The other remove by IP function can simply be removed, as it's not in use. The root freeing function can use pre-order traversal instead of post-order. The pre-order traversal code in general is now a nice iterator macro. The common bits function can use the fast fls instructions and the match function can be rewritten to simply compare common bits. While we're at it, let's add tons of new tests, randomized checking against a dumb implementation, and graphviz output. And in general, it's nice to clean things up.
2017-04-21compat: work on old 3.10Jason A. Donenfeld2-0/+35
2017-04-21config: don't allow no-privatekey to mask presharedJason A. Donenfeld1-1/+2
2017-04-21cookie: move the bangsJason A. Donenfeld1-2/+2
2017-04-20tools: no hyphen in preshared, to keep uniformityJason A. Donenfeld4-5/+5
2017-04-19tools: argc is always 1Jason A. Donenfeld1-1/+1
2017-04-19tools: check for malloc failureJason A. Donenfeld1-0/+4
2017-04-19tools: side channel resistant base64Jason A. Donenfeld10-260/+87
2017-04-14netns: cleanup and add diagramJason A. Donenfeld1-7/+18
2017-04-14device: use rcu_barrier_bhJason A. Donenfeld1-2/+2
2017-04-14qemu: work on ARM64Jason A. Donenfeld3-5/+21
2017-04-09receive: netif_rx consumesJason A. Donenfeld1-1/+3
2017-04-09version: bump snapshot0.0.20170409Jason A. Donenfeld2-2/+2
2017-04-09compat: warn on < 4.1Jason A. Donenfeld1-0/+2
2017-04-09compat: careful with destructorsJason A. Donenfeld2-7/+7
2017-04-09compat: support 3.10Jason A. Donenfeld3-5/+106
2017-04-09compat: support 3.12Jason A. Donenfeld8-7/+240
2017-04-09compat: support 3.14Jason A. Donenfeld3-8/+132
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.