Commit message (Collapse) | Author | Files | Lines | ||
---|---|---|---|---|---|
2019-01-23 | netlink: use __kernel_timespec for handshake time | Jason A. Donenfeld | 10 | -13/+45 | |
2019-01-23 | contrib: introduce simple highlighter library | Jason A. Donenfeld | 8 | -0/+904 | |
2019-01-23 | global: normalize -> clamp | Jason A. Donenfeld | 9 | -26/+19 | |
2019-01-23 | keygen-html: bring back pure javascript implementation | Jason A. Donenfeld | 6 | -139/+186 | |
This reverts commit 9d5baf7d1d14ca7eb0852b41566330259229d489. BenoƮt Viguier has proofs that values will stay well within 2^53. We also have an improved carry function that's much simpler. | |||||
2019-01-23 | qemu: enable FP on MIPS | Jason A. Donenfeld | 4 | -0/+4 | |
This is a change for Linux 5.0. | |||||
2019-01-23 | qemu: version bump to bash 5.0 | Jason A. Donenfeld | 1 | -1/+1 | |
2019-01-23 | Kconfig: IPsec isn't IPSec | Jason A. Donenfeld | 2 | -2/+2 | |
Reported-by: Raf Czlonka <rczlonka@gmail.com> | |||||
2019-01-23 | ratelimiter: totalram_pages is now a function | Jason A. Donenfeld | 2 | -2/+6 | |
Reported-by: Alex Xu <alex@alxu.ca> | |||||
2019-01-23 | noise: replace getnstimeofday64 with ktime_get_real_ts64 | Jason A. Donenfeld | 2 | -2/+2 | |
The former was just a wrapper around the latter, and so upstream is now removing it. Also adjust the compat kludge to deal with this. Reported-by: Alex Xu <alex@alxu.ca> | |||||
2019-01-23 | ratelimiter: build tests with !IPV6 | Jason A. Donenfeld | 1 | -5/+2 | |
2019-01-23 | qemu: version bump kernel | Jason A. Donenfeld | 1 | -1/+1 | |
2019-01-07 | global: update copyright | Jason A. Donenfeld | 135 | -136/+136 | |
2018-12-30 | netlink: auth socket changes against namespace of socket | Jason A. Donenfeld | 1 | -0/+7 | |
In WireGuard, the underlying UDP socket lives in the namespace where the interface was created and doesn't move if the interface is moved. This allows one to create the interface in some privileged place that has Internet access, and then move it into a container namespace that only has the WireGuard interface for egress. Consider the following situation: 1. Interface created in namespace A. Socket therefore lives in namespace A. 2. Interface moved to namespace B. Socket remains in namespace A. 3. Namespace B now has access to the interface and changes the listen port and/or fwmark of socket. Change is reflected in namespace A. This behavior is arguably _fine_ and perhaps even expected or acceptable. But there's also an argument to be made that B should have A's cred to do so. So, this patch adds a simple ns_capable check. | |||||
2018-12-20 | tools: curve25519: handle unaligned loads/stores safely | Jason A. Donenfeld | 2 | -5/+19 | |
Reported-by: Chris Hewitt <chris@chrishewitt.net> | |||||
2018-12-18 | version: bump snapshot0.0.20181218 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-12-18 | makefile: use immediate expansion and use correct template patterns | Jason A. Donenfeld | 4 | -7/+9 | |
2018-12-18 | netns: nmap != ncat | Jason A. Donenfeld | 1 | -4/+4 | |
2018-12-18 | wg-quick: bring interface up while setting MTU | Aaron Jones | 1 | -9/+4 | |
This avoids another ip(8) invocation for little benefit. Confirmed to work with iproute2 and busybox. Signed-off-by: Aaron Jones <aaronmdjones@gmail.com> | |||||
2018-12-12 | compat: account for Clang CFI | Jason A. Donenfeld | 1 | -1/+1 | |
2018-12-07 | chacha20: do not define unused asm function | Jason A. Donenfeld | 1 | -4/+2 | |
This causes RAP to be unhappy, and we're not using it anyway. Reported-by: Ivan J. <parazyd@dyne.org> | |||||
2018-12-07 | embeddable-wg-library: do not warn on unrecognized netlink attributes | Jason A. Donenfeld | 1 | -15/+1 | |
This is a follow up of bcf8684c9ec90fe0d283a67d1654d05fb3eae019. | |||||
2018-12-07 | compat: don't undef BUILD_BUG_ON for Clang >=8 | Nathan Chancellor | 1 | -1/+1 | |
This has been fixed upstream. To keep this hack working for toolchains that don't have it, use CONFIG_CLANG_VERSION, which was added in commit 469cb7376c06 ("kconfig: add CC_IS_CLANG and CLANG_VERSION"), introduced in 4.18. I have added the '!defined(CONFIG_CLANG_VERSION)' to keep the hack around for Android. Most custom kernel developers are using AOSP's Clang, which currently does not have the fix and might not for a while (although it is probably on Google's mind given that it has been an issue for ChromeOS on 4.19: https://crbug.com/897215). I have verified this change against my Pixel 2 kernel and 4.20-rc3 with the latest ToT Clang. Link: https://github.com/ClangBuiltLinux/linux/issues/7 Signed-off-by: Nathan Chancellor <natechancellor@gmail.com> | |||||
2018-12-07 | chacha20,poly1305: simplify perlasm fanciness | Jason A. Donenfeld | 3 | -75/+69 | |
2018-11-19 | jerry-rig: replace S_shipped with pl | Jason A. Donenfeld | 1 | -1/+1 | |
2018-11-19 | version: bump snapshot0.0.20181119 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-11-19 | chacha20,poly1305: do not use xlate | Jason A. Donenfeld | 3 | -1496/+73 | |
2018-11-17 | poly1305: make frame pointers for auxiliary calls | Samuel Neves | 1 | -31/+43 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-16 | crypto: better path resolution and more specific generated .S | Jason A. Donenfeld | 2 | -14/+9 | |
2018-11-15 | chacha20,poly1305: don't do compiler testing in generator and remove xor helper | Jason A. Donenfeld | 2 | -30/+39 | |
2018-11-15 | crypto: resolve target prefix on buggy kernels | Jason A. Donenfeld | 1 | -1/+6 | |
We also move to .SECONDARY, since older kernels don't use targets like that. | |||||
2018-11-15 | poly1305: cleanup leftover debugging changes | Jason A. Donenfeld | 1 | -3/+3 | |
2018-11-15 | poly1305: only export neon symbols when in use | Jason A. Donenfeld | 1 | -2/+6 | |
2018-11-15 | chacha20,poly1305: fix up for win64 | Samuel Neves | 2 | -27/+29 | |
These don't help us, but it is important to keep this working for when it's re-added to cryptogams. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-15 | version: bump snapshot0.0.20181115 | Jason A. Donenfeld | 2 | -2/+2 | |
2018-11-15 | perlasm: avoid rep ret | Jason A. Donenfeld | 1 | -1/+1 | |
The original hardcodes returns as .byte 0xf3,0xc3, aka "rep ret". We replace this by "ret". "rep ret" was meant to help with AMD K8 chips, cf. http://repzret.org/p/repzret. It makes no sense to continue to use this kludge for code that won't even run on ancient AMD chips. | |||||
2018-11-15 | poly1305: specialize to wireguard | Jason A. Donenfeld | 1 | -11/+20 | |
2018-11-15 | chacha20: specialize to wireguard | Jason A. Donenfeld | 2 | -20/+38 | |
2018-11-15 | perlasm: cleanup whitespace | Jason A. Donenfeld | 1 | -5/+5 | |
2018-11-15 | poly1305: adjust to kernel | Samuel Neves | 1 | -220/+291 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: cleaner function declarations | Samuel Neves | 1 | -23/+23 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: normalize names | Samuel Neves | 1 | -71/+71 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: fixup win64 stack offsets | Samuel Neves | 1 | -129/+129 | |
We don't need to do this for kernel purposes, but it's polite to leave things unbroken. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: simplify stack unwinding on ChaCha20_ctr32 | Samuel Neves | 1 | -10/+8 | |
objtool did not quite understand the stack arithmetic employed here. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: use DRAP idiom | Samuel Neves | 1 | -236/+235 | |
This effectively means swapping the usage of %r9 and %r10 globally. Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: add hchacha_ssse3 | Samuel Neves | 1 | -0/+39 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20: begin adapting to kernel setting | Samuel Neves | 2 | -68/+116 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20,poly1305: switch to perlasm originals on x86_64 | Samuel Neves | 5 | -5424/+9596 | |
Signed-off-by: Samuel Neves <sneves@dei.uc.pt> | |||||
2018-11-14 | chacha20,poly1305: use CONFIG_KERNEL_MODE_NEON in .pl on arm | Jason A. Donenfeld | 4 | -8/+11 | |
While Andy is right to desire a separation between compiler defines and project defines, there are simply too many odd kernel configurations and we require testing for CONFIG_KERNEL_MODE_NEON. | |||||
2018-11-14 | chacha20,poly1305: switch to perlasm originals on mips and arm | Jason A. Donenfeld | 15 | -6107/+5573 | |
We also separate out Eric Biggers' Cortex A7 implementation into its own file. | |||||
2018-11-13 | global: various formatting tweeks | Jason A. Donenfeld | 10 | -47/+44 | |