Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | wg-quick: darwin: add multiple IP addresses | Jason A. Donenfeld | 2018-05-27 | 1 | -2/+2 |
| | |||||
* | wg-quick: determine IPs when saving interface | Jason A. Donenfeld | 2018-05-27 | 3 | -12/+14 |
| | |||||
* | compat: don't clash with get_random_u32 backports | Jason A. Donenfeld | 2018-05-24 | 1 | -3/+2 |
| | | | | | | Our previous heuristic wasn't good enough, since CopperheadOS backported CANARY_MASK without backporting get_random_u32, as Qualcomm did, so now we just entirely rename all invocations of the function. | ||||
* | version: bump snapshot0.0.20180524 | Jason A. Donenfeld | 2018-05-24 | 2 | -2/+2 |
| | |||||
* | wg-quick: freebsd: work around security vulnerabilities in bash | Jason A. Donenfeld | 2018-05-24 | 1 | -7/+29 |
| | |||||
* | wg-quick: allow enumeration of socket files | Jason A. Donenfeld | 2018-05-23 | 2 | -2/+2 |
| | | | | | These OSes have an unpriv'd ifconfig, so this isn't an even larger info leak. | ||||
* | wg-quick: better bash completion for non-renaming OSes | Jason A. Donenfeld | 2018-05-23 | 1 | -5/+14 |
| | |||||
* | wg-quick: support FreeBSD/Darwin search path | Jason A. Donenfeld | 2018-05-23 | 4 | -16/+39 |
| | |||||
* | tools: always pass -v as first argument to install | Jason A. Donenfeld | 2018-05-23 | 1 | -7/+7 |
| | | | | This lets crippled OSes sed out our -v more easily. | ||||
* | wg-quick: openbsd: add new implementation | Jason A. Donenfeld | 2018-05-22 | 1 | -0/+451 |
| | |||||
* | wg-quick: freebsd: add new implementation | Jason A. Donenfeld | 2018-05-22 | 2 | -16/+434 |
| | |||||
* | wg-quick: darwin: do not remove routes when no real interface | Jason A. Donenfeld | 2018-05-22 | 1 | -0/+1 |
| | |||||
* | wg-quick: darwin: rename namefile environment variable | Jason A. Donenfeld | 2018-05-22 | 1 | -1/+1 |
| | | | | This paves the way for an openbsd implementation. | ||||
* | tools: fix OpenBSD build | Filippo Valsorda | 2018-05-22 | 4 | -2/+4 |
| | | | | | License: MIT Signed-off-by: Filippo Valsorda <valsorda@google.com> | ||||
* | compat: work around qcom 4.9 backports | Jason A. Donenfeld | 2018-05-22 | 1 | -0/+3 |
| | | | | | | | Qualcomm backported the get_random_u32 patch, even though kernel.org didn't, which is a problem. They also backported another patch in the same place which defines a new macro variable, so use this as a differentiator. | ||||
* | qemu: bump default kernel for gcc 8.1 | Jason A. Donenfeld | 2018-05-22 | 1 | -1/+1 |
| | |||||
* | allowedips: set pointer to null before freeing | Jason A. Donenfeld | 2018-05-22 | 1 | -2/+3 |
| | |||||
* | ncat-client-server: do not always call sudo and use env bash | Jason A. Donenfeld | 2018-05-22 | 1 | -2/+3 |
| | |||||
* | version: bump snapshot0.0.20180519 | Jason A. Donenfeld | 2018-05-19 | 2 | -2/+2 |
| | |||||
* | timers: no need to clear keepalive in persistent keepalive | Jason A. Donenfeld | 2018-05-19 | 1 | -4/+1 |
| | | | | | | | | We do this after sending the keepalive anyway. This is something of a regression, though, since before we'd cancel and then send, but now we send and then cancel, so it introduces a potential race, but hopefully that isn't too big of a deal. | ||||
* | timers: clear send_keepalive timer on sending handshake response | Jason A. Donenfeld | 2018-05-19 | 3 | -6/+12 |
| | | | | | | We reorganize this into also doing so on sending keepalives itself, which means the state machine is much more consistent, even if this was already implied. | ||||
* | timers: fix up comment | Jason A. Donenfeld | 2018-05-19 | 1 | -2/+2 |
| | |||||
* | timers: remove slack_time | Jason A. Donenfeld | 2018-05-19 | 1 | -8/+2 |
| | | | | | It's already done implicitly by recent kernels and it's not adding much here. | ||||
* | timers: reinitialize state on init | Jason A. Donenfeld | 2018-05-18 | 1 | -0/+3 |
| | |||||
* | tools: fix errno propagation and messages | Jason A. Donenfeld | 2018-05-18 | 5 | -9/+8 |
| | |||||
* | timers: round up instead of down in slack_time | Jason A. Donenfeld | 2018-05-18 | 1 | -2/+2 |
| | | | | | | | | | On systems with a 100hz tick, this causes handshakes to be retried in slightly less than 5 seconds, which means they aren't sent at all. This has the effect of the handshakes entirely stopping their retry cycle until the next data packet is sent. Reported-by: Andrew He <andrewhe@mit.edu> | ||||
* | chacha20poly1305: add mips32 implementation | René van Dorst | 2018-05-18 | 4 | -5/+913 |
| | | | | Signed-off-by: René van Dorst <opensource@vdorst.com> | ||||
* | device: remove allowedips before individual peers | Jason A. Donenfeld | 2018-05-18 | 1 | -1/+1 |
| | | | | This avoids an O(n^2) traversal in favor of an O(n) one. | ||||
* | wg-quick: darwin: simpler inclusion check | Jason A. Donenfeld | 2018-05-17 | 1 | -1/+1 |
| | |||||
* | wg-quick: darwin: reorder functions | Jason A. Donenfeld | 2018-05-17 | 1 | -19/+19 |
| | |||||
* | wg-quick: darwin: networksetup does not like missing stdio | Jason A. Donenfeld | 2018-05-17 | 1 | -1/+1 |
| | |||||
* | wg-quick: darwin: avoid routing loop if no default | Jason A. Donenfeld | 2018-05-17 | 1 | -6/+16 |
| | |||||
* | wg-quick: darwin: sometimes there are no network services | Jason A. Donenfeld | 2018-05-17 | 1 | -2/+1 |
| | |||||
* | wg-quick: use invoking shell in auto rooting | Jason A. Donenfeld | 2018-05-16 | 2 | -2/+3 |
| | |||||
* | wg-quick: add intentionally undocumented userspace implementation knob | Jason A. Donenfeld | 2018-05-16 | 2 | -3/+3 |
| | | | | | | This knob might disappear at some point, and we don't want to encourage its use, so it's not being documented, but this should help with development of new implementations. | ||||
* | wg-quick: darwin: use bash from environment and require bash 4+ | Jason A. Donenfeld | 2018-05-16 | 2 | -23/+23 |
| | | | | | | For properly configured Homebrew installations /usr/local/bin should be before /bin, so this should still work. This allows the script to be used in more than one setting. | ||||
* | wg-quick: darwin: restore DNS on down | Jason A. Donenfeld | 2018-05-16 | 1 | -13/+25 |
| | |||||
* | wg-quick: darwin: bash correctness | Jason A. Donenfeld | 2018-05-16 | 1 | -5/+4 |
| | |||||
* | wg-quick: darwin: remove v6 routes after shutdown | Jason A. Donenfeld | 2018-05-16 | 1 | -3/+3 |
| | | | | This works around a Darwin kernel bug regarding interface removal. | ||||
* | wg-quick: darwin: ensure socket directory exists | Jason A. Donenfeld | 2018-05-16 | 1 | -5/+1 |
| | |||||
* | dns-hatchet: update paths | Jason A. Donenfeld | 2018-05-16 | 1 | -1/+1 |
| | | | | Suggested-by: Martin Hauke <mardnh@gmx.de> | ||||
* | version: bump snapshot0.0.20180514 | Jason A. Donenfeld | 2018-05-15 | 2 | -2/+2 |
| | |||||
* | ncat-client-server: add wg-quick variant | Jason A. Donenfeld | 2018-05-15 | 2 | -4/+37 |
| | |||||
* | wg-quick: add darwin implementation | Jason A. Donenfeld | 2018-05-15 | 1 | -0/+444 |
| | | | | It's pretty rough and leaves much to be desired, but it works. | ||||
* | compat: backport for OpenSUSE 15 | Jason A. Donenfeld | 2018-05-14 | 1 | -1/+1 |
| | |||||
* | wg-quick: add wg symlink | Jason A. Donenfeld | 2018-05-14 | 1 | -0/+1 |
| | |||||
* | wg-quick: add android implementation | Jason A. Donenfeld | 2018-05-14 | 1 | -0/+666 |
| | |||||
* | tools: reorganize for multiplatform wg-quick | Jason A. Donenfeld | 2018-05-14 | 5 | -7/+9 |
| | |||||
* | allowedips: Fix graphviz output after endianness patch | Jonathan Neuschäfer | 2018-05-14 | 1 | -3/+16 |
| | | | | | | | | | | | | Commit 5e3532e ("allowedips: use native endian on lookup") did two things: It changed the endianness of (struct allowedips_node).bits to native endian, and it moved the CIDR masking to the output code path (walk_by_peer). Adjust print_node in src/selftest/allowedips.h to deal with these changes. Signed-off-by: Jonathan Neuschäfer <j.neuschaefer@gmx.net> | ||||
* | version: bump snapshot0.0.20180513 | Jason A. Donenfeld | 2018-05-13 | 2 | -2/+2 |
| |