aboutsummaryrefslogtreecommitdiffstatshomepage
Commit message (Collapse)AuthorAgeFilesLines
* jerry-rig: symlinks are better for tree patchingJason A. Donenfeld2017-05-173-5/+6
| | | | | | Use a symlink instead of lots of ../../.. Suggested-by: Benedikt Morbach <benedikt.morbach@googlemail.com>
* noise: redesign preshared key modeJason A. Donenfeld2017-05-1719-225/+224
|
* chacha20poly1305: implement vectorized hchacha20Jason A. Donenfeld2017-05-172-21/+157
|
* qemu: new packages and better debuggingJason A. Donenfeld2017-05-172-12/+13
|
* tools: wg-quick: auto MTU discoveryJason A. Donenfeld2017-05-172-1/+28
|
* tools: retry name resolution on temporary failureJason A. Donenfeld2017-05-171-1/+10
| | | | This should solve many problems at init time.
* compat: remember to call iptunnel_xmit_statsJason A. Donenfeld2017-05-171-4/+13
| | | | Upstream's 039f50629b7f860f36644ed1f34b27da9aa62f43 only came in 4.5
* compat: use real crypto_memneqJason A. Donenfeld2017-05-174-14/+181
|
* compat: work around ubnt offloadingJason A. Donenfeld2017-05-171-0/+4
|
* compat: ssse3 supportJason A. Donenfeld2017-05-041-0/+4
|
* compat: use existing iptunnel_xmit function for statsJason A. Donenfeld2017-04-241-7/+2
|
* version: bump snapshot0.0.20170421Jason A. Donenfeld2017-04-212-2/+2
|
* routingtable: rewrite core functionsJason A. Donenfeld2017-04-215-439/+634
| | | | | | | | | | | | | | | | | | | | | When removing by peer, prev needs to be set to *nptr in order to traverse that part of the trie. The other remove by IP function can simply be removed, as it's not in use. The root freeing function can use pre-order traversal instead of post-order. The pre-order traversal code in general is now a nice iterator macro. The common bits function can use the fast fls instructions and the match function can be rewritten to simply compare common bits. While we're at it, let's add tons of new tests, randomized checking against a dumb implementation, and graphviz output. And in general, it's nice to clean things up.
* compat: work on old 3.10Jason A. Donenfeld2017-04-212-0/+35
|
* config: don't allow no-privatekey to mask presharedJason A. Donenfeld2017-04-211-1/+2
|
* cookie: move the bangsJason A. Donenfeld2017-04-211-2/+2
|
* tools: no hyphen in preshared, to keep uniformityJason A. Donenfeld2017-04-204-5/+5
|
* tools: argc is always 1Jason A. Donenfeld2017-04-191-1/+1
|
* tools: check for malloc failureJason A. Donenfeld2017-04-191-0/+4
|
* tools: side channel resistant base64Jason A. Donenfeld2017-04-1910-260/+87
|
* netns: cleanup and add diagramJason A. Donenfeld2017-04-141-7/+18
|
* device: use rcu_barrier_bhJason A. Donenfeld2017-04-141-2/+2
|
* qemu: work on ARM64Jason A. Donenfeld2017-04-143-5/+21
|
* receive: netif_rx consumesJason A. Donenfeld2017-04-091-1/+3
|
* version: bump snapshot0.0.20170409Jason A. Donenfeld2017-04-092-2/+2
|
* compat: warn on < 4.1Jason A. Donenfeld2017-04-091-0/+2
|
* compat: careful with destructorsJason A. Donenfeld2017-04-092-7/+7
|
* compat: support 3.10Jason A. Donenfeld2017-04-093-5/+106
|
* compat: support 3.12Jason A. Donenfeld2017-04-098-7/+240
|
* compat: support 3.14Jason A. Donenfeld2017-04-093-8/+132
|
* compat: support 3.16Jason A. Donenfeld2017-04-098-111/+579
|
* data: alloca is actually as dangerous as they sayJason A. Donenfeld2017-04-091-6/+4
| | | | | | | | | | | | | It turns out that calling alloca from an inline function means that the memory isn't ever deallocated until the caller function exits, which means we were using tons of stack space for every iteration of the call. So, we hard code the sg array. While 128 seems like a reasonable number, we actually wind up using "MAX_SKB_FRAGS * 2 + 1". An skb has its data segment, so that's 1. Then it has its frags, which are MAX_SKB_FRAGS at max. Then it has its frag list, which, so far as I can tell, are potentially unbounded. So we just hope it's no more than MAX_SKB_FRAGS, and so we plan for at most two of those.
* debug: cleanupsJason A. Donenfeld2017-04-082-3/+3
|
* qemu: ensure kernel is configured before headers are installedJason A. Donenfeld2017-04-081-1/+1
|
* data: cleanup parallel workqueue and use two max_activeJason A. Donenfeld2017-04-087-29/+31
|
* data: simplify flowJason A. Donenfeld2017-04-044-94/+45
|
* chacha20poly1305: check return values of sgopsJason A. Donenfeld2017-04-043-14/+22
|
* locking: always use _bhJason A. Donenfeld2017-04-048-78/+81
| | | | | All locks are potentially between user context and softirq, which means we need to take the _bh variant.
* qemu: new stable kernelJason A. Donenfeld2017-04-041-1/+1
|
* chacha20poly1305: enforce authtag checking with compilerJason A. Donenfeld2017-03-304-32/+22
|
* curve25519: protect against potential invalid point attacksJason A. Donenfeld2017-03-305-43/+74
|
* config: do not allow peers with public keys the same as the interfaceJason A. Donenfeld2017-03-281-0/+20
|
* tools: do not use addrconfig with port in gaiJason A. Donenfeld2017-03-281-1/+1
|
* main: add /sys/module/wireguard/versionJason A. Donenfeld2017-03-271-0/+1
| | | | Suggested-by: Samuel Holland <samuel@sholland.org>
* compat: allow create-patch to work on debian-based buildsJason A. Donenfeld2017-03-271-0/+4
|
* version: bump snapshot0.0.20170324Jason A. Donenfeld2017-03-242-2/+2
|
* uapi: add version magicJason A. Donenfeld2017-03-244-23/+58
|
* wg-quick: various cleanupsJason A. Donenfeld2017-03-241-5/+6
|
* socket: avoid deadlock on port retryJason A. Donenfeld2017-03-241-4/+3
|
* tools: document # comments in wg(8) man pageJason A. Donenfeld2017-03-241-1/+3
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.