Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-02-05 | tai64n: whiten nano seconds | Jason A. Donenfeld | |
Avoid being too precise of a time oracle. | |||
2019-02-05 | uapi: Simpler function signature | Jason A. Donenfeld | |
2019-02-05 | Extend structs rather than embed, when possible | Jason A. Donenfeld | |
2019-02-05 | Update copyright | Jason A. Donenfeld | |
2018-12-25 | Properly bubble up setsockopt error from closure | Jason A. Donenfeld | |
2018-12-22 | version: bump snapshot | Jason A. Donenfeld | |
2018-12-19 | Make error messages consistent | Jason A. Donenfeld | |
2018-12-11 | Freebsd is finally normal in sys/unix | Jason A. Donenfeld | |
2018-12-11 | Separate out mark setting for Windows | Jason A. Donenfeld | |
2018-12-10 | Use upstream's xchacha20poly1305 | Jason A. Donenfeld | |
2018-12-10 | Update go x/ libraries | Jason A. Donenfeld | |
Android 9's Bionic disallows inotify_init with seccomp, so we want the latest unix change, and while we're at it, we update the others too. Reported-by: Berk D. Demir <bdd@mindcast.org> Go CL: https://go-review.googlesource.com/c/sys/+/153318 Fixes: https://lists.zx2c4.com/pipermail/wireguard/2018-December/003642.html | |||
2018-12-06 | tun: remove nonblock hack for linux | Jason A. Donenfeld | |
This is no longer necessary and actually breaks things Reported-by: Chris Branch <cbranch@cloudflare.com> | |||
2018-11-08 | tai64n: use proper nanoseconds offset | Jason A. Donenfeld | |
The code before was obviously wrong. Reported-by: Vlad Krasnov <vlad@cloudflare.com> | |||
2018-11-06 | Use darwin tun on ios | Jason A. Donenfeld | |
2018-11-05 | uapi: typo | Jason A. Donenfeld | |
2018-11-01 | receive: make started status uniform | Jason A. Donenfeld | |
2018-10-18 | send: do not unlock already freed object | Jason A. Donenfeld | |
2018-10-18 | version: bump snapshot | Jason A. Donenfeld | |
2018-10-17 | Makefile: rename default to all | Jason A. Donenfeld | |
2018-10-17 | tun: only call .Fd() once | Jason A. Donenfeld | |
Doing so tends to make the tunnel blocking, so we only retrieve it once before we call SetNonblock, and then cache the result. | |||
2018-10-12 | Use go modules always | Jason A. Donenfeld | |
2018-10-12 | Do not build if nothing to do | Jason A. Donenfeld | |
2018-10-09 | Switch to go modules | Jason A. Donenfeld | |
2018-10-01 | version: bump snapshot | Jason A. Donenfeld | |
2018-10-01 | Adding missing queueconstants file | Jason A. Donenfeld | |
2018-09-25 | Fix transport message length check | Chris Branch | |
wireguard-go has a bad length check in its transport message handling. Although it cannot be exploited because of another length check earlier in the function, this should be fixed regardless. | |||
2018-09-25 | Make it easy to restrict queue sizes more | Jason A. Donenfeld | |
2018-09-24 | Fix shutdown races | Jason A. Donenfeld | |
2018-09-24 | More pooling | Jason A. Donenfeld | |
2018-09-22 | Fixup buffer freeing | Jason A. Donenfeld | |
2018-09-16 | send: more precise padding calculation | Jason A. Donenfeld | |
2018-09-16 | device: preallocated buffers scheme | Jason A. Donenfeld | |
Not useful now but quite possibly later. | |||
2018-09-16 | Change queueing drop order and fix memory leaks | Jason A. Donenfeld | |
If the queues are full, we drop the present packet, which is better for network traffic flow. Also, we try to fix up the memory leaks with not putting buffers from our shared pool. | |||
2018-09-16 | send: use accessor function for buffer pool | Jason A. Donenfeld | |
2018-09-16 | Fixed port overwrite issue on kernels without ipv6 | Mathias Hall-Andersen | |
Fixed an issue in CreateBind for Linux: If ipv6 was not supported the error code would be correctly identified as EAFNOSUPPORT and ipv4 binding attempted. However the port would be set to 0, which results in the subsequent create4 call requesting a random port rather than the one provided to CreateBind. This issue was identified by: Kent Friis <leeloored@gmx.com> | |||
2018-09-16 | global: fix up copyright headers | Jason A. Donenfeld | |
2018-09-02 | uapi: insert peer version placeholder | Jason A. Donenfeld | |
While we don't want people to ever use old protocols, people will complain if the API "changes", so explicitly make the unset protocol mean the latest, and add a dummy mechanism of specifying the protocol on a per-peer basis, which we hope nobody actually ever uses. | |||
2018-07-30 | Fix duplicate copyright line | Jason A. Donenfeld | |
2018-07-24 | uapi: allow overriding socket directory at compile time | Jason A. Donenfeld | |
2018-07-16 | send: better debug message for failed data packet | Jason A. Donenfeld | |
2018-06-13 | version: bump snapshot | Jason A. Donenfeld | |
2018-06-12 | Support IPv6-less kernels | Jason A. Donenfeld | |
2018-06-09 | Do not build tun device on ios | Jason A. Donenfeld | |
2018-06-02 | Fix duplicated wording | Jason A. Donenfeld | |
2018-06-02 | Makefile: export PWD for OpenBSD's ksh(1) | Jason A. Donenfeld | |
Interestingly, ksh(1) on OpenBSD does not export PWD by default, and it also has a notion of the "logical cwd" vs the "physical cwd", with the latter being passed to chdir, but the former being stored in the non-exported PWD and displayed to the user. This means that if you `cd` into a directory that's comprised of symlinks, exec'd processes will see the physical path. Observe: # ksh # mkdir a # ln -s a b # cd b # pwd /root/b # ksh -c pwd /root/a The fact of separating physical and logical paths is not too uncommon for shells (bash does it too), but not exporting PWD is very odd. Since this is common behavior for many shells, libraries that return the working directory will do something strange: they `stat(".")` and then `stat(getenv("PWD"))`, and if these point to the same inode, they roll with the value of `getenv("PWD")`, or otherwise fallback to asking the kernel for the cwd. Since PWD was not exported by ksh(1), Go's dep utility did not understand it was operating inside of our faked GOPATH and became upset. This patch works around the whole situation by simply exporting PWD before executing dep. | |||
2018-05-31 | version: bump snapshot | Jason A. Donenfeld | |
2018-05-30 | Print version number in log | Jason A. Donenfeld | |
2018-05-28 | Update deps | Jason A. Donenfeld | |
2018-05-27 | Fix typo in timers | Jason A. Donenfeld | |
2018-05-27 | Disable broadcast mode on *BSD | Jason A. Donenfeld | |
Keeping it on makes IPv6 problematic and confuses routing daemons. |