aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/src (follow)
Commit message (Collapse)AuthorAgeFilesLines
* compat: support 4.15's netlink and barrier changesJason A. Donenfeld2017-11-262-1/+7
|
* allowedips: simplifyJason A. Donenfeld2017-11-251-35/+12
|
* allowedips: optimizeJason A. Donenfeld2017-11-251-14/+52
|
* qemu: use netfilter.org https siteJason A. Donenfeld2017-11-251-2/+2
|
* chacha20: directly assign constant and initial stateJason A. Donenfeld2017-11-231-59/+20
|
* compat: fix typo and rangesJason A. Donenfeld2017-11-231-1/+1
|
* tools: fix removing preshared keysJason A. Donenfeld2017-11-232-69/+73
| | | | Also clean up related logic quite a bit and add unit tests.
* compat: support AVX512BW+VL by lyingJason A. Donenfeld2017-11-221-2/+15
|
* blake2s: hmac space optimizationSamuel Neves2017-11-221-16/+12
| | | | Signed-off-by: Samuel Neves <sneves@dei.uc.pt>
* blake2s: AVX512F+VL implementationSamuel Neves2017-11-222-0/+132
| | | | Signed-off-by: Samuel Neves <sneves@dei.uc.pt>
* poly1305-avx512: requires AVX512F+VL+BWSamuel Neves2017-11-221-1/+6
| | | | Signed-off-by: Samuel Neves <sneves@dei.uc.pt>
* compat: support timespec64 on old kernelsJason A. Donenfeld2017-11-221-0/+5
|
* version: bump snapshot0.0.20171122Jason A. Donenfeld2017-11-222-2/+2
|
* chacha20poly1305: poly cleans up its own stateJason A. Donenfeld2017-11-221-5/+1
|
* poly1305-x86_64: unclobber %rbpSamuel Neves2017-11-221-131/+145
| | | | | | | | | | | | | | OpenSSL's Poly1305 kernels use %rbp as a scratch register. However, the kernel expects rbp to be a valid frame pointer at any given time in order to do proper unwinding. Thus we need to alter the code in order to preserve it. The most straightforward manner in which this was accomplished was by replacing $d3 in poly1305-x86_64.pl -- formerly %r10 -- by %rdi, and replace %rbp by %r10. Because %rdi, a pointer to the context structure, does not change and is not used by poly1305_iteration, it is safe to use it here, and the overhead of saving and restoring it should be minimal. Signed-off-by: Samuel Neves <sneves@dei.uc.pt>
* global: switch from timeval to timespecJason A. Donenfeld2017-11-228-15/+15
| | | | | | | | | | | | | | | | | | | This gets us nanoseconds instead of microseconds, which is better, and we can do this pretty much without freaking out existing userspace, which doesn't actually make use of the nano/micro seconds field: zx2c4@thinkpad ~ $ cat a.c void main() { puts(sizeof(struct timeval) == sizeof(struct timespec) ? "success" : "failure"); } zx2c4@thinkpad ~ $ gcc a.c -m64 && ./a.out success zx2c4@thinkpad ~ $ gcc a.c -m32 && ./a.out success This doesn't solve y2038 problem, but timespec64 isn't yet a thing in userspace.
* poly1305: import MIPS64 primitive from OpenSSLJason A. Donenfeld2017-11-227-20/+411
|
* chacha20poly1305: import ARM primitives from OpenSSLJason A. Donenfeld2017-11-2212-1032/+5515
| | | | ARMv4-ARMv8, with NEON for ARMv7 and ARMv8.
* chacha20poly1305: import x86_64 primitives from OpenSSLSamuel Neves2017-11-2212-2470/+5267
| | | | | | x86_64 only at the moment. SSSE3, AVX, AVX2, AVX512. Signed-off-by: Samuel Neves <sneves@dei.uc.pt>
* chacha20poly1305: add more test vectors, some of which are weirdJason A. Donenfeld2017-11-221-3/+244
|
* compat: new kernels have netlink fixesJason A. Donenfeld2017-11-222-13/+10
|
* compat: stable finally backported fixJason A. Donenfeld2017-11-221-1/+1
|
* qemu: use unprefixed strip when not cross-compilingJason A. Donenfeld2017-11-171-1/+2
| | | | | | | Fedora/Redhat doesn't ship with a prefixed strip, and we don't need to use it anyway when we're not cross compiling, so don't. Reported-by: Samuel Neves <sneves@dei.uc.pt>
* tools: tighten up strtoul parsingJason A. Donenfeld2017-11-172-36/+62
| | | | Reported-by: Cedric Buxin <cedric.buxin@izri.org>
* device: uninitialize socket first in destructionJason A. Donenfeld2017-11-171-2/+2
|
* socket: only free socket after successful creation of newJason A. Donenfeld2017-11-174-47/+35
| | | | | | | | | | | | | | When an interface is down, the socket port can change freely. A socket will be allocated when the interface comes up, and if a socket can't be allocated, the interface doesn't come up. However, a socket port can change while the interface is up. In this case, if a new socket with a new port cannot be allocated, it's important to keep the interface in a consistent state. The choices are either to bring down the interface or to preserve the old socket. This patch implements the latter. Reported-by: Marc-Antoine Perennou <keruspe@exherbo.org>
* compat: fix compilation with PaXJason A. Donenfeld2017-11-141-0/+12
| | | | | | Despite not having access to the latest grsecurity source, I still do very much want to keep supporting it, so this patch is my best guess at what will work.
* curve25519-neon: compile in thumb modeJason A. Donenfeld2017-11-143-10/+7
| | | | | In thumb mode, it's not possible to use sp as an operand of and, so we have to muck around with r3 as a scratch register.
* compat: 3.16.50 got proper rt6_get_cookieJason A. Donenfeld2017-11-141-1/+1
|
* qemu: update kernelJason A. Donenfeld2017-11-141-1/+1
|
* allowedips: do not write out of boundsJason A. Donenfeld2017-11-131-2/+4
|
* selftest: allowedips: randomized test mutex updateJason A. Donenfeld2017-11-131-5/+6
|
* wg-quick: document localhost exception and v6 ruleJason A. Donenfeld2017-11-121-3/+4
| | | | Reported-by: Hermann Lienstromberg <nurtic-vibe@grmml.net>
* version: bump snapshot0.0.20171111Jason A. Donenfeld2017-11-112-2/+2
|
* tools: allow for NULL keys everywhereJason A. Donenfeld2017-11-115-29/+50
|
* curve25519: reject deriving from NULL private keysJason A. Donenfeld2017-11-112-7/+16
| | | | | These aren't actually valid 25519 points pre-normalization, and doing this is required to make unsetting private keys based on all zeros.
* tools: remove ioctl cruftJason A. Donenfeld2017-11-111-4/+0
|
* allowedips: rename from routingtableJason A. Donenfeld2017-11-1011-149/+149
| | | | Makes it more clear that this _not_ a routing table replacement.
* wg-quick: allow for tabs in keysJason A. Donenfeld2017-11-101-2/+2
|
* netlink: make sure we reserve space for NLMSG_DONEJason A. Donenfeld2017-11-102-1/+25
| | | | | | | Otherwise, if messages pack really close together, we'll exceed the size of the sk_buff and return ENOBUFS. I suspect this has been the cause of a lot of weird bugs that people just worked around by increasing the receive buffer size. This actually addresses the root cause.
* compat: 4.4.0 has strange ECN functionJason A. Donenfeld2017-11-101-1/+2
|
* wg-quick: stat the correct enclosing folder of config fileJason A. Donenfeld2017-11-101-1/+2
|
* qemu: bump kernel versionJason A. Donenfeld2017-11-101-1/+1
|
* receive: hoist fpu outside of receive loopJason A. Donenfeld2017-11-103-18/+19
|
* qemu: more debuggingJason A. Donenfeld2017-11-103-1/+15
|
* device: wait for all peers to be freed before destroyingJason A. Donenfeld2017-11-101-0/+1
|
* qemu: check for memory leaksJason A. Donenfeld2017-11-103-6/+28
|
* netlink: plug memory leakJason A. Donenfeld2017-11-031-1/+1
|
* device: please lockdepJason A. Donenfeld2017-11-031-1/+1
|
* global: revert checkpatch.pl changesJason A. Donenfeld2017-11-022-2/+2
| | | | | These changes were suggested by checkpatch.pl, but actually cause big problems depending on the options. Revert.
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.