Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | timers: switch to kees' new timer_list functions | Jason A. Donenfeld | 2017-11-01 | 1 | -17/+17 |
| | |||||
* | timers: guard entire setting in block | Jason A. Donenfeld | 2017-10-31 | 1 | -4/+6 |
| | |||||
* | global: style nits | Jason A. Donenfeld | 2017-10-31 | 1 | -2/+4 |
| | |||||
* | global: accept decent check_patch.pl suggestions | Jason A. Donenfeld | 2017-10-31 | 1 | -4/+4 |
| | |||||
* | global: add space around variable declarations | Jason A. Donenfeld | 2017-10-03 | 1 | -0/+6 |
| | |||||
* | timers: ensure safe timer removal | Jason A. Donenfeld | 2017-10-02 | 1 | -12/+17 |
| | |||||
* | timers: convert to use netif_running | Jason A. Donenfeld | 2017-09-24 | 1 | -19/+14 |
| | |||||
* | queue: entirely rework parallel system | Jason A. Donenfeld | 2017-09-18 | 1 | -8/+11 |
| | | | | | | | | | | This removes our dependency on padata and moves to a different mode of multiprocessing that is more efficient. This began as Samuel Holland's GSoC project and was gradually reworked/redesigned/rebased into this present commit, which is a combination of his initial contribution and my subsequent rewriting and redesigning. | ||||
* | timers: style | Jason A. Donenfeld | 2017-09-15 | 1 | -1/+1 |
| | |||||
* | timers: do not send out double keepalive | Jason A. Donenfeld | 2017-08-05 | 1 | -1/+4 |
| | | | | | | It's possible that a persistent keepalive that comes before a normal keepalive will not invalidate the normal keepalive, and then we'll needlessly send two keepalives. | ||||
* | timers: rename confusingly named functions and variables | Jason A. Donenfeld | 2017-08-04 | 1 | -9/+9 |
| | | | | Suggested-by: Mathias Hall-Andersen <mathias@hall-andersen.dk> | ||||
* | receive: move lastminute guard into timer event | Jason A. Donenfeld | 2017-08-04 | 1 | -0/+1 |
| | | | | Suggested-by: Mathias Hall-Andersen <mathias@hall-andersen.dk> | ||||
* | global: use pointer to net_device | Jason A. Donenfeld | 2017-07-20 | 1 | -4/+4 |
| | | | | | | DaveM prefers it to be this way per [1]. [1] http://www.spinics.net/lists/netdev/msg443992.html | ||||
* | timers: queue up killing ephemerals only if not already | Jason A. Donenfeld | 2017-05-31 | 1 | -1/+1 |
| | |||||
* | timers: reset retry-attempt counter when not retrying | Jason A. Donenfeld | 2017-05-31 | 1 | -2/+2 |
| | |||||
* | timers: the completion of a handshake also is on key confirmation | Jason A. Donenfeld | 2017-05-31 | 1 | -2/+2 |
| | |||||
* | timers: rework handshake reply control flow | Jason A. Donenfeld | 2017-05-31 | 1 | -9/+8 |
| | |||||
* | debug: print interface name in dmesg | Jason A. Donenfeld | 2017-05-31 | 1 | -3/+5 |
| | |||||
* | timers: fix typo in comment | Jason A. Donenfeld | 2017-05-30 | 1 | -1/+1 |
| | | | | Suggested-by: Peter Wu <peter@lekensteyn.nl> | ||||
* | handshake: process in parallel | Jason A. Donenfeld | 2017-05-30 | 1 | -1/+1 |
| | |||||
* | data: cleanup parallel workqueue and use two max_active | Jason A. Donenfeld | 2017-04-08 | 1 | -1/+1 |
| | |||||
* | timers: elide enable check | Jason A. Donenfeld | 2017-03-14 | 1 | -3/+3 |
| | |||||
* | timers: use simpler uninit sync technique | Jason A. Donenfeld | 2017-02-07 | 1 | -35/+22 |
| | |||||
* | timers: use setup_timer macro helper | Jason A. Donenfeld | 2017-01-23 | 1 | -20/+5 |
| | |||||
* | Update copyright | Jason A. Donenfeld | 2017-01-10 | 1 | -1/+1 |
| | |||||
* | peer: don't use sockaddr_storage to reduce memory usage | Jason A. Donenfeld | 2016-12-13 | 1 | -3/+3 |
| | |||||
* | socket: clear src address when retrying handshake | Jason A. Donenfeld | 2016-12-09 | 1 | -0/+6 |
| | |||||
* | timers: add random jitter to handshake retry | Jason A. Donenfeld | 2016-12-09 | 1 | -1/+1 |
| | |||||
* | headers: cleanup notices | Jason A. Donenfeld | 2016-11-21 | 1 | -1/+1 |
| | |||||
* | socket: keep track of src address in sending packets | Jason A. Donenfeld | 2016-11-15 | 1 | -3/+3 |
| | |||||
* | send: simplify handshake initiation queueing and introduce lock | Jason A. Donenfeld | 2016-11-07 | 1 | -4/+6 |
| | |||||
* | timers: take reference like a lookup table | Jason A. Donenfeld | 2016-11-03 | 1 | -23/+18 |
| | |||||
* | timers: only have initiator rekey | Jason A. Donenfeld | 2016-10-19 | 1 | -33/+0 |
| | | | | | | | | | If it's time to rekey, and the responder sends a message, the initator will begin the rekeying when sending his response message. In the worst case, this response message will actually just be the keepalive. This generally works well, with the one edge case of the message arriving less than 10 seconds before key expiration, in which the keepalive is not sufficient. In this case, we simply rehandshake immediately. | ||||
* | timers: always delay handshakes for responder | Jason A. Donenfeld | 2016-10-19 | 1 | -0/+33 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With the prior behavior, when sending a packet, we checked to see if it was about time to start a new handshake, and if we were past a certain time, we started it. For the responder, we made that time a bit further in the future than for the initiator, to prevent the thundering herd problem of them both starting at the same time. However, this was flawed. If both parties stopped communicating after 2.2 minutes, and then one party decided to initiate a TCP connection before the 3 minute mark, the currently open session would be used. However, because it was after the 2.2 minute mark, both peers would try to initiate a handshake upon sending their first packet. The errant flow was as follows: 1. Peer A sends SYN. 2. Peer A sees that his key is getting old and initiates new handshake. 3. Peer B receives SYN and sends ACK. 4. Peer B sees that his key is getting old and initiates new handshake. Since these events happened after the 2.2 minute mark, there's no delay between handshake initiations, and problems begin. The new behavior is changed to: 1. Peer A sends SYN. 2. Peer A sees that his key is getting old and initiates new handshake. 3. Peer B receives SYN and sends ACK. 4. Peer B sees that his key is getting old and schedules a delayed handshake for 12.5 seconds in the future. 5. Peer B receives handshake initiation and cancels scheduled handshake. | ||||
* | timers: move constants to header | Jason A. Donenfeld | 2016-10-19 | 1 | -11/+6 |
| | |||||
* | timers: kill half-open handshakes after a while | Jason A. Donenfeld | 2016-10-19 | 1 | -0/+4 |
| | |||||
* | timers: avoid thundering herd for simultaneous initiation | Jason A. Donenfeld | 2016-10-19 | 1 | -1/+1 |
| | | | | | | Since it's extremely unlikely for jiffies to be exactly identical everywhere, applying quarter second power of two slack not only improves power efficiency but also ensures that retries have a bit of jitter. | ||||
* | debug: keep alive -> keepalive | Jason A. Donenfeld | 2016-10-19 | 1 | -2/+0 |
| | |||||
* | Rework headers and includes | Jason A. Donenfeld | 2016-09-29 | 1 | -2/+2 |
| | |||||
* | timers: use more clear pow macro | Jason A. Donenfeld | 2016-08-02 | 1 | -1/+1 |
| | |||||
* | timers: upstream removed the slack concept | Jason A. Donenfeld | 2016-07-23 | 1 | -4/+7 |
| | | | | | No longer do we specify slack ourselves. Instead we need to add it directly in the main scheduling. | ||||
* | timers: apply slack to hotpath timers | Jason A. Donenfeld | 2016-07-10 | 1 | -0/+3 |
| | | | | | | | | | | | For timers in the hotpath, we don't want them to be rescheduled so aggressively, and since they don't need to be that precise, we can set a decent amount of slack. With the persistent keepalive timer, we have something of a special case. Since the timeout isn't fixed like the others, we don't want to make it more often than the kernel ordinarily would. So, instead, we make it a minimum. | ||||
* | timers: document conditions for calling | Jason A. Donenfeld | 2016-07-10 | 1 | -0/+8 |
| | |||||
* | persistent keepalive: use unsigned long to avoid multiplication in hotpath | Jason A. Donenfeld | 2016-07-10 | 1 | -2/+2 |
| | |||||
* | persistent keepalive: use authenticated keepalives | Jason A. Donenfeld | 2016-07-10 | 1 | -2/+3 |
| | |||||
* | timers: rename *authorized* functions to *authenticated* | Jason A. Donenfeld | 2016-07-08 | 1 | -1/+1 |
| | |||||
* | persistent keepalive: add kernel mechanism | Jason A. Donenfeld | 2016-07-08 | 1 | -0/+23 |
| | |||||
* | Initial commit | Jason A. Donenfeld | 2016-06-25 | 1 | -0/+168 |