aboutsummaryrefslogtreecommitdiffstatshomepage
Commit message (Collapse)AuthorAgeFilesLines
* poly1305: generic: Reduce opaque size.rvd/poly1305_opaque_lengthRené van Dorst2018-05-301-0/+3
| | | | Signed-off-by: René van Dorst <opensource@vdorst.com>
* poly1305: mips64: Reduce opaque size.René van Dorst2018-05-301-0/+2
| | | | Signed-off-by: René van Dorst <opensource@vdorst.com>
* poly1305: mips32r2: Reduce opaque size.René van Dorst2018-05-301-2/+3
| | | | Signed-off-by: René van Dorst <opensource@vdorst.com>
* Set POLY1305_OPAQUE_LEN at compiletime.René van Dorst2018-05-301-1/+7
| | | | Signed-off-by: René van Dorst <opensource@vdorst.com>
* poly1305: mips: compute S on flyRené van Dorst2018-05-301-31/+22
| | | | | | This reduces memory access and the total opaque size. Signed-off-by: René van Dorst <opensource@vdorst.com>
* chacha20poly1305: test for authtag failureJason A. Donenfeld2018-05-301-3/+21
|
* chacha20poly1305: test scattergather functions tooJason A. Donenfeld2018-05-301-2/+44
|
* crypto: consistent constificationJason A. Donenfeld2018-05-306-23/+23
|
* wg-quick: darwin: set DNS servers after delay on route changeJason A. Donenfeld2018-05-301-2/+6
| | | | | | This works around a race condition in macOS's network daemons, while also adding one in the form of possibly calling kill -ALRM on a stale PID; unfortunately bash can't wait from a trap.
* chacha20poly1305: combine stack variables into unionJason A. Donenfeld2018-05-302-62/+64
|
* chacha20poly1305: split up into separate filesJason A. Donenfeld2018-05-3010-627/+740
|
* curve25519: x86_64: make symbol staticJason A. Donenfeld2018-05-291-2/+2
|
* curve25519: x86_64: satisfy sparseJason A. Donenfeld2018-05-291-260/+260
|
* wg-quick: freebsd: configure as p2p linkJason A. Donenfeld2018-05-271-3/+5
|
* wg-quick: darwin: add multiple IP addressesJason A. Donenfeld2018-05-271-2/+2
|
* wg-quick: determine IPs when saving interfaceJason A. Donenfeld2018-05-273-12/+14
|
* compat: don't clash with get_random_u32 backportsJason A. Donenfeld2018-05-241-3/+2
| | | | | | Our previous heuristic wasn't good enough, since CopperheadOS backported CANARY_MASK without backporting get_random_u32, as Qualcomm did, so now we just entirely rename all invocations of the function.
* version: bump snapshot0.0.20180524Jason A. Donenfeld2018-05-242-2/+2
|
* wg-quick: freebsd: work around security vulnerabilities in bashJason A. Donenfeld2018-05-241-7/+29
|
* wg-quick: allow enumeration of socket filesJason A. Donenfeld2018-05-232-2/+2
| | | | | These OSes have an unpriv'd ifconfig, so this isn't an even larger info leak.
* wg-quick: better bash completion for non-renaming OSesJason A. Donenfeld2018-05-231-5/+14
|
* wg-quick: support FreeBSD/Darwin search pathJason A. Donenfeld2018-05-234-16/+39
|
* tools: always pass -v as first argument to installJason A. Donenfeld2018-05-231-7/+7
| | | | This lets crippled OSes sed out our -v more easily.
* wg-quick: openbsd: add new implementationJason A. Donenfeld2018-05-221-0/+451
|
* wg-quick: freebsd: add new implementationJason A. Donenfeld2018-05-222-16/+434
|
* wg-quick: darwin: do not remove routes when no real interfaceJason A. Donenfeld2018-05-221-0/+1
|
* wg-quick: darwin: rename namefile environment variableJason A. Donenfeld2018-05-221-1/+1
| | | | This paves the way for an openbsd implementation.
* tools: fix OpenBSD buildFilippo Valsorda2018-05-224-2/+4
| | | | | License: MIT Signed-off-by: Filippo Valsorda <valsorda@google.com>
* compat: work around qcom 4.9 backportsJason A. Donenfeld2018-05-221-0/+3
| | | | | | | Qualcomm backported the get_random_u32 patch, even though kernel.org didn't, which is a problem. They also backported another patch in the same place which defines a new macro variable, so use this as a differentiator.
* qemu: bump default kernel for gcc 8.1Jason A. Donenfeld2018-05-221-1/+1
|
* allowedips: set pointer to null before freeingJason A. Donenfeld2018-05-221-2/+3
|
* ncat-client-server: do not always call sudo and use env bashJason A. Donenfeld2018-05-221-2/+3
|
* version: bump snapshot0.0.20180519Jason A. Donenfeld2018-05-192-2/+2
|
* timers: no need to clear keepalive in persistent keepaliveJason A. Donenfeld2018-05-191-4/+1
| | | | | | | | We do this after sending the keepalive anyway. This is something of a regression, though, since before we'd cancel and then send, but now we send and then cancel, so it introduces a potential race, but hopefully that isn't too big of a deal.
* timers: clear send_keepalive timer on sending handshake responseJason A. Donenfeld2018-05-193-6/+12
| | | | | | We reorganize this into also doing so on sending keepalives itself, which means the state machine is much more consistent, even if this was already implied.
* timers: fix up commentJason A. Donenfeld2018-05-191-2/+2
|
* timers: remove slack_timeJason A. Donenfeld2018-05-191-8/+2
| | | | | It's already done implicitly by recent kernels and it's not adding much here.
* timers: reinitialize state on initJason A. Donenfeld2018-05-181-0/+3
|
* tools: fix errno propagation and messagesJason A. Donenfeld2018-05-185-9/+8
|
* timers: round up instead of down in slack_timeJason A. Donenfeld2018-05-181-2/+2
| | | | | | | | | On systems with a 100hz tick, this causes handshakes to be retried in slightly less than 5 seconds, which means they aren't sent at all. This has the effect of the handshakes entirely stopping their retry cycle until the next data packet is sent. Reported-by: Andrew He <andrewhe@mit.edu>
* chacha20poly1305: add mips32 implementationRené van Dorst2018-05-184-5/+913
| | | | Signed-off-by: René van Dorst <opensource@vdorst.com>
* device: remove allowedips before individual peersJason A. Donenfeld2018-05-181-1/+1
| | | | This avoids an O(n^2) traversal in favor of an O(n) one.
* wg-quick: darwin: simpler inclusion checkJason A. Donenfeld2018-05-171-1/+1
|
* wg-quick: darwin: reorder functionsJason A. Donenfeld2018-05-171-19/+19
|
* wg-quick: darwin: networksetup does not like missing stdioJason A. Donenfeld2018-05-171-1/+1
|
* wg-quick: darwin: avoid routing loop if no defaultJason A. Donenfeld2018-05-171-6/+16
|
* wg-quick: darwin: sometimes there are no network servicesJason A. Donenfeld2018-05-171-2/+1
|
* wg-quick: use invoking shell in auto rootingJason A. Donenfeld2018-05-162-2/+3
|
* wg-quick: add intentionally undocumented userspace implementation knobJason A. Donenfeld2018-05-162-3/+3
| | | | | | This knob might disappear at some point, and we don't want to encourage its use, so it's not being documented, but this should help with development of new implementations.
* wg-quick: darwin: use bash from environment and require bash 4+Jason A. Donenfeld2018-05-162-23/+23
| | | | | | For properly configured Homebrew installations /usr/local/bin should be before /bin, so this should still work. This allows the script to be used in more than one setting.
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.