Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								37ed4265fa 
								
							 
						 
						
							
							
								
								Remove all unnecessary status.meta and status.active checks.  
							
							
							
						 
						
							2001-07-20 13:54:19 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								5e2ded68bf 
								
							 
						 
						
							
							
								
								Correctly use the active_tree.  
							
							
							
						 
						
							2001-07-19 12:29:40 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								319e0cb48e 
								
							 
						 
						
							
							
								
								Split connection list into two lists:  
							
							... 
							
							
							
							- one list to handle all incoming/outgoing TCP connections
 - another list to handle all UDP connections
This will prevent race conditions. 
							
						 
						
							2001-07-15 18:07:31 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								b3074590b1 
								
							 
						 
						
							
							
								
								Correct inclusion of standard if_tun.h header file.  
							
							
							
						 
						
							2001-07-15 14:21:12 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								5dc4ade0b9 
								
							 
						 
						
							
							
								
								Don't load table of verbose OpenSSL errormessages.  
							
							
							
						 
						
							2001-07-04 08:43:32 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								1e2bdc2b6d 
								
							 
						 
						
							
							
								
								- Always use <openssl/include.h> instead of just <include.h>  
							
							... 
							
							
							
							- Check if RAND_pseudo_bytes() exists, otherwise just use RAND_bytes() 
							
						 
						
							2001-07-04 08:41:36 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								6bd93e4c06 
								
							 
						 
						
							
							
								
								Check for all potential duplicate entries in the id tree.  
							
							
							
						 
						
							2001-07-01 21:42:13 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								9645cabc8e 
								
							 
						 
						
							
							
								
								Fix compiler warning.  
							
							
							
						 
						
							2001-07-01 09:21:14 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								6365d0627b 
								
							 
						 
						
							
							
								
								Fix printf format bug.  
							
							
							
						 
						
							2001-07-01 09:21:01 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								c9591bd1de 
								
							 
						 
						
							
							
								
								Fix gcc 3.0 warnings.  
							
							
							
						 
						
							2001-06-29 13:09:55 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								402b85c482 
								
							 
						 
						
							
							
								
								Log error if two hosts connect with same IP/port tuple.  
							
							
							
						 
						
							2001-06-29 13:09:32 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								5d34503574 
								
							 
						 
						
							
							
								
								Execute tinc-down BEFORE tap device is closed. This is a. more symmetric  
							
							... 
							
							
							
							(tinc-up is started after tap device is opened) and b. is needed for
tun/tap device, where the interface does not exist anymore after the
device file is closed. 
							
						 
						
							2001-06-29 10:30:18 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								9e96840da8 
								
							 
						 
						
							
							
								
								Remove #warnings I used for debugging stuff.  
							
							
							
						 
						
							2001-06-21 16:37:47 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								04ec0b82ab 
								
							 
						 
						
							
							
								
								- Solaris compile fixes  
							
							... 
							
							
							
							- Set mymac to broadcast MAC so that ifconfig hw ether <...> is really not
  needed anymore.
- Forwarding of indirect packets when in switch mode (because the kernel
  will not do it for us then). 
							
						 
						
							2001-06-21 16:16:32 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								9a0a50cd3c 
								
							 
						 
						
							
							
								
								Woops - big bug in send_key_changed fixed.  
							
							
							
						 
						
							2001-06-09 10:00:34 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								ba918dce28 
								
							 
						 
						
							
							
								
								Only reset seconds_till_retry when we activate the outgoing connection.  
							
							
							
						 
						
							2001-06-08 18:02:10 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								96ef7becdd 
								
							 
						 
						
							
							
								
								Fixes to make switching work between hosts that have no meta-connection.  
							
							
							
						 
						
							2001-06-06 19:12:38 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								ce6c8e6d08 
								
							 
						 
						
							
							
								
								Log and warn about duplicate subnet_add()'s for the same subnet.  
							
							
							
						 
						
							2001-06-06 19:11:16 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								9cd9b03923 
								
							 
						 
						
							
							
								
								Add missing? counting of total_socket_in.  
							
							
							
						 
						
							2001-06-05 19:45:47 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								7bd7f5b436 
								
							 
						 
						
							
							
								
								You can now put an option "Mode" in tinc.conf, and choose from:  
							
							... 
							
							
							
							- Mode = router (default, work like tinc has always worked)
- Mode = switch (work like a switch)
- Mode = hub    (work like a hub, broadcasting everything) 
							
						 
						
							2001-06-05 19:39:54 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								edd6734faa 
								
							 
						 
						
							
							
								
								Fix bug where lookup_subnet_ipv4() could go into an infinite loop.  
							
							
							
						 
						
							2001-06-05 18:07:14 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								fa376fbd4e 
								
							 
						 
						
							
							
								
								- This oneliner removes the need for ifconfig tap? hw ether fe:fd:0:0:0:0  
							
							
							
						 
						
							2001-06-05 16:31:59 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								4f9dad0972 
								
							 
						 
						
							
							
								
								- tinc can now act as a switch or a hub too (as opposed to a router only)  
							
							... 
							
							
							
							- cleaner initialisation of "UNKNOWN" and "MYSELF" names 
							
						 
						
							2001-06-05 16:09:55 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								428482d86f 
								
							 
						 
						
							
							
								
								Added proxy-arp support. No more ifconfig -arp needed. Works like a charm  
							
							... 
							
							
							
							under FreeBSD now :). 
							
						 
						
							2001-06-04 11:14:35 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								0a3c8cefd4 
								
							 
						 
						
							
							
								
								Fix subnet_lookup() for overlapping subnets. Needs rethinking.  
							
							
							
						 
						
							2001-06-01 08:02:09 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								7db1b999c8 
								
							 
						 
						
							
							
								
								Make sure Solaris is happy too.  
							
							
							
						 
						
							2001-05-28 08:56:57 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								65247c063b 
								
							 
						 
						
							
							
								
								Small fixes to allow correct compilation under FreeBSD (tested with 4.3)  
							
							
							
						 
						
							2001-05-28 08:21:43 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								fcf869cd42 
								
							 
						 
						
							
							
								
								TCPonly now works (in a relatively clean way too).  
							
							
							
						 
						
							2001-05-25 11:54:28 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								a5e2ae6b2b 
								
							 
						 
						
							
							
								
								With recent kernels the tun device file is located in /dev/net.  
							
							
							
						 
						
							2001-05-25 10:08:11 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								4dee76522e 
								
							 
						 
						
							
							
								
								Small fixes:  
							
							... 
							
							
							
							- Fix compiler warnings (one was a real (but harmless) bug)
- Don't send PING packets if there is UDP traffic
- Correctly terminate strings containing salt for PING/PONG packets 
							
						 
						
							2001-05-25 08:36:11 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								bfc5d6014e 
								
							 
						 
						
							
							
								
								Only send key_changed if it was previously requested.  
							
							
							
						 
						
							2001-05-24 21:52:26 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								58893f0875 
								
							 
						 
						
							
							
								
								Since this is incompatible with some earlier versions, PROT_CURRENT is  
							
							... 
							
							
							
							increased. 
							
						 
						
							2001-05-24 21:30:36 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								d1b597758e 
								
							 
						 
						
							
							
								
								Add randomness to PING/PONG packets to prevent crypto attacks on quiet  
							
							... 
							
							
							
							tunnels. 
							
						 
						
							2001-05-24 21:29:09 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								e4f3d93ec6 
								
							 
						 
						
							
							
								
								- s/ip_t/ipv4_t/g  
							
							... 
							
							
							
							- Add "salt" to the beginning of UDP packets. Replaces length field which
  is not useful anyway. 
							
						 
						
							2001-05-07 19:08:46 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								a26081467c 
								
							 
						 
						
							
							
								
								Correctly cycle through ConnectTo variables.  
							
							
							
						 
						
							2001-05-04 18:45:02 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								156ec67652 
								
							 
						 
						
							
							
								
								Check indirectdata option before forwarding certain requests.  
							
							
							
						 
						
							2001-03-13 21:33:31 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								c426e981ee 
								
							 
						 
						
							
							
								
								Ignore alarm signals if we do not need to respond to them.  
							
							
							
						 
						
							2001-03-13 21:32:24 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								b413257e10 
								
							 
						 
						
							
							
								
								Fixed bug in setup_signals() that would make tinc die when unexpected  
							
							... 
							
							
							
							signals were caught. 
							
						 
						
							2001-03-13 09:55:14 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								f1a082823c 
								
							 
						 
						
							
							
								
								Fixed a race condition triggered by receive_meta() and the new  
							
							... 
							
							
							
							authentication scheme. 
							
						 
						
							2001-03-12 23:58:19 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								34f9e6cf2d 
								
							 
						 
						
							
							
								
								- route.c is now used to determine destination  
							
							... 
							
							
							
							- flags are removed, since they were not used at all. Use options instead.
- indirectdata works now, tcponly almost...
- made functions that don't return useful information void 
							
						 
						
							2001-03-04 13:59:32 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								d2a54597e0 
								
							 
						 
						
							
							
								
								Added explaination of our key exchange using RSA encryption.  
							
							
							
						 
						
							2001-03-02 11:25:56 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								125c497881 
								
							 
						 
						
							
							
								
								Various small fixes.  
							
							
							
						 
						
							2001-03-01 21:32:04 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								4fa12eb85d 
								
							 
						 
						
							
							
								
								Removed lots of compiler warnings.  
							
							
							
						 
						
							2001-02-27 16:37:31 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								173d606514 
								
							 
						 
						
							
							
								
								- Fixed Interface option (untested)  
							
							... 
							
							
							
							- Removed error handling for non-critical socket options
- Added TCP_NODELAY and IPTOS_LOWDELAY options for meta sockets. 
							
						 
						
							2001-02-27 16:17:04 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								24fa685859 
								
							 
						 
						
							
							
								
								Don't forget to reconnect if outgoing connection fails during  
							
							... 
							
							
							
							authentication. 
							
						 
						
							2001-02-27 15:33:39 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								34b7a876c3 
								
							 
						 
						
							
							
								
								- Make sure METAKEY is smaller than the modulus of the RSA key  
							
							... 
							
							
							
							- Get symmetric key from the least significant bytes of the RSA message 
							
						 
						
							2001-02-26 11:37:20 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								82455be966 
								
							 
						 
						
							
							
								
								Implemented new authentication scheme from doc/SECURITY2.  
							
							
							
						 
						
							2001-02-25 19:09:45 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								54881faf6f 
								
							 
						 
						
							
							
								
								Encrypt network packets in CBC mode instead of CFB mode.  
							
							... 
							
							
							
							(This breaks compatibility with all previous versions!) 
							
						 
						
							2001-02-25 16:34:19 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								9de5787574 
								
							 
						 
						
							
							
								
								Copy packets before putting them in the queue.  
							
							
							
						 
						
							2001-02-25 16:04:00 +00:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guus Sliepen 
								
							 
						 
						
							
							
							
							
								
							
							
								e250d64300 
								
							 
						 
						
							
							
								
								Add missing \n.  
							
							
							
						 
						
							2001-02-25 14:51:42 +00:00