Ivo Timmermans [Sun, 25 Jun 2000 20:52:29 +0000 (20:52 +0000)]
Version 1.0pre3.
Guus Sliepen [Sun, 25 Jun 2000 16:39:17 +0000 (16:39 +0000)]
- More verbose connection list
- Added "myself" as hostname when logging indirect ADD_HOSTs
Guus Sliepen [Sun, 25 Jun 2000 16:20:27 +0000 (16:20 +0000)]
Hostlookup() is actually being called now.
Guus Sliepen [Sun, 25 Jun 2000 16:01:12 +0000 (16:01 +0000)]
Hostnames are back!
Guus Sliepen [Sun, 25 Jun 2000 15:45:09 +0000 (15:45 +0000)]
- Log possible spoofing attacks.
- Don't broadcast DEL_HOSTs for hosts that haven't been activated yet.
- If a host sends a TERMREQ, deactivate them.
Ivo Timmermans [Sun, 25 Jun 2000 15:42:40 +0000 (15:42 +0000)]
Changed version number to 1.0pre3.
Guus Sliepen [Sun, 25 Jun 2000 15:22:16 +0000 (15:22 +0000)]
Added CVS Id tags to header files.
Guus Sliepen [Sun, 25 Jun 2000 15:16:12 +0000 (15:16 +0000)]
Large cleanup:
- Removed hostname lookup (it blocks, and you can always do it yourself)
- Reorganized debug levels (after hints from Axel M�ller):
0 Startup message and errors
1 Connection logging
2 Meta protocol information
3 Verbose meta protocol (includes copy of transmitted requests)
4 Packet information (logs transmission/errors of UDP packets)
5 Verbose packet information (every single byte, not implemented yet
to protect ourselves from filling up /var/log directories)
- Made log messages more consistent
Guus Sliepen [Sat, 24 Jun 2000 12:35:42 +0000 (12:35 +0000)]
If we have "indirectdata" flag set, we only send data to our uplink.
Guus Sliepen [Fri, 23 Jun 2000 19:27:03 +0000 (19:27 +0000)]
First step for implementation of the "indirectdata" directive. This should
allow _leaf_ tincds to be behind firewalls.
The protocol has changed and is INCOMPATIBLE with previous versions. The
PROT_CURRENT value has been incremented.
Ivo Timmermans [Sat, 17 Jun 2000 20:55:54 +0000 (20:55 +0000)]
Configuration directive `IndirectData'.
Ivo Timmermans [Sat, 17 Jun 2000 20:30:44 +0000 (20:30 +0000)]
Merge changes from 1.6-1.8.
Ivo Timmermans [Tue, 6 Jun 2000 10:24:33 +0000 (10:24 +0000)]
Include ../intl in the include path, and add @INTLLIBS@ to the list of libraries.
Ivo Timmermans [Sun, 4 Jun 2000 12:14:31 +0000 (12:14 +0000)]
These files are created by gettextize (run by autogen.sh) (should have known that).
Ivo Timmermans [Sat, 3 Jun 2000 23:32:03 +0000 (23:32 +0000)]
Don't touch VPNMASK if it's defined, otherwise use $MSK.
Ivo Timmermans [Fri, 2 Jun 2000 17:30:33 +0000 (17:30 +0000)]
Alphabetized the list, added Lubom�r Bulej, removed Sander Smeenk and Tijs van Bakel, put merits after all names.
Guus Sliepen [Thu, 1 Jun 2000 20:21:27 +0000 (20:21 +0000)]
Debian init.d script automatically sets tap device's MTU to 1448 now.
Ivo Timmermans [Wed, 31 May 2000 18:23:06 +0000 (18:23 +0000)]
Miscellaneous copyright updates.
Ivo Timmermans [Wed, 31 May 2000 18:21:27 +0000 (18:21 +0000)]
Handle locale settings.
Ivo Timmermans [Wed, 31 May 2000 18:19:33 +0000 (18:19 +0000)]
Version 1.0pre2-1.
Ivo Timmermans [Wed, 31 May 2000 18:18:21 +0000 (18:18 +0000)]
Updated Dutch translation.
Ivo Timmermans [Wed, 31 May 2000 18:17:45 +0000 (18:17 +0000)]
Tell about /etc/tinc/nets.boot.
Ivo Timmermans [Wed, 31 May 2000 18:17:27 +0000 (18:17 +0000)]
Include news for 1.0pre2.
Ivo Timmermans [Tue, 30 May 2000 21:36:16 +0000 (21:36 +0000)]
Only accept an ADD_HOST request for a host that already exists in our conn_list if the nexthop field matches the sender. This is a workaround for older clients.
Ivo Timmermans [Tue, 30 May 2000 12:38:15 +0000 (12:38 +0000)]
In terminate_connection, only send a notification to hosts that are directly connected to us. (DEL_HOST gets forwarded automatically.)
Ivo Timmermans [Tue, 30 May 2000 12:31:41 +0000 (12:31 +0000)]
When a connection is terminated, all hosts that are still connected get notified of the lost connections.
Ivo Timmermans [Tue, 30 May 2000 11:18:12 +0000 (11:18 +0000)]
Added new configuration directive `Hostnames', which controls the resolving of IP addresses to hostnames.
Guus Sliepen [Mon, 29 May 2000 23:40:05 +0000 (23:40 +0000)]
Only activate a connection upon receiving it's public key if it's an
incoming connection. When it's outgoing, we need to receive an ack first.
Ivo Timmermans [Mon, 29 May 2000 22:27:15 +0000 (22:27 +0000)]
Updated changes list for version 1.0pre2.
Ivo Timmermans [Mon, 29 May 2000 22:20:04 +0000 (22:20 +0000)]
Bounds check for request id (between 0 and 255).
Ivo Timmermans [Mon, 29 May 2000 22:15:38 +0000 (22:15 +0000)]
Dutch translation of tinc.
Ivo Timmermans [Mon, 29 May 2000 21:40:51 +0000 (21:40 +0000)]
Define LOCALEDIR in CFLAGS.
Ivo Timmermans [Mon, 29 May 2000 21:40:20 +0000 (21:40 +0000)]
Include GNU gettext checks.
Ivo Timmermans [Mon, 29 May 2000 21:38:02 +0000 (21:38 +0000)]
Update acconfig.h to include values for gettext inclusion.
Ivo Timmermans [Mon, 29 May 2000 21:36:28 +0000 (21:36 +0000)]
Include system.h and ABOUT-NLS.
Ivo Timmermans [Mon, 29 May 2000 21:04:55 +0000 (21:04 +0000)]
Include intl/ directory in the list of subdirs.
Ivo Timmermans [Mon, 29 May 2000 21:01:26 +0000 (21:01 +0000)]
Internationalization of tinc.
Guus Sliepen [Sat, 27 May 2000 20:23:01 +0000 (20:23 +0000)]
Terminate a connection on any error. Furthermore, disallow del_host,
add_host and other important requests until remote host has properly
authenticated itself.
Guus Sliepen [Sat, 27 May 2000 19:44:04 +0000 (19:44 +0000)]
Made tinc persistent. If no outgoing connection can be established right
after the start of the daemon, it won't quit anymore but will retry in 5
minutes. Also, 5 minutes is now the maximum time to wait for a retry.
Guus Sliepen [Sat, 27 May 2000 19:23:20 +0000 (19:23 +0000)]
Fixed typos. When terminating a connection, it's status is not only set to
remove=1 but also active=0.
Guus Sliepen [Sat, 27 May 2000 19:04:12 +0000 (19:04 +0000)]
Fix for a DoS attack:
A remote user could telnet to the tinc daemon and type only this line:
61 6
00000000/
00000000:28f
This would deny any packets to be sent to other tinc networks (except
for to the hosts that run tincd's themselves). Solution is to skip
hosts in lookup_conn() that have not been activated yet.
Fixed potential conn_list table corruption:
If a new connection is accepted but a connection with the same subnet
would already exist in the connection list, the OLD connection is
terminated.
Guus Sliepen [Sat, 27 May 2000 13:21:20 +0000 (13:21 +0000)]
Documentation updates. Removed all references to configuration variable
"AllowConnect", since it is NOT used in tinc. Added information about
"VpnMask". Elaborated a bit about "private" and "virtual" networks.
Ivo Timmermans [Fri, 26 May 2000 11:25:59 +0000 (11:25 +0000)]
Updated by Lubomir Bulej and Mads Kiilerich: it uses /etc/tinc/nets.boot and the VpnMask directive in the config files.
Ivo Timmermans [Sun, 21 May 2000 23:01:28 +0000 (23:01 +0000)]
Create an empty /etc/tinc/nets.boot.
Ivo Timmermans [Sun, 21 May 2000 22:40:41 +0000 (22:40 +0000)]
Use /etc/tinc/example as a base directory for an example. /etc/tinc/example/README points to /usr/share/doc/tinc/README.Debian.
Ivo Timmermans [Sun, 21 May 2000 22:38:01 +0000 (22:38 +0000)]
Add an example of using VpnMask.
Ivo Timmermans [Sun, 21 May 2000 22:27:31 +0000 (22:27 +0000)]
When VpnMask is not present in the config file, silently use $MSK as vpnmask.
Guus Sliepen [Sun, 21 May 2000 22:21:38 +0000 (22:21 +0000)]
Fixed last typo. Init.d now uses ifconfig command to set both the tap's IP
address as well as the correct route. Furthermore, if no VpnMask is given,
a default of 255.255.0.0 is chosen and a warning issued.
Guus Sliepen [Sun, 21 May 2000 22:08:21 +0000 (22:08 +0000)]
Typo.
Guus Sliepen [Sun, 21 May 2000 22:04:56 +0000 (22:04 +0000)]
VpnMask truely works now.
Ivo Timmermans [Fri, 19 May 2000 01:17:32 +0000 (01:17 +0000)]
Mask the vpn net with the vpn netmask, route would give an error if the netmask didn't match the net.
Ivo Timmermans [Fri, 19 May 2000 00:58:01 +0000 (00:58 +0000)]
Fixed typo.
Ivo Timmermans [Fri, 19 May 2000 00:33:44 +0000 (00:33 +0000)]
Updated copyright notice.
Ivo Timmermans [Fri, 19 May 2000 00:15:37 +0000 (00:15 +0000)]
Errors will not terminate the script or result in a nonzero exit code.
Ivo Timmermans [Fri, 19 May 2000 00:14:34 +0000 (00:14 +0000)]
Include postinst in the distribution.
Ivo Timmermans [Fri, 19 May 2000 00:09:20 +0000 (00:09 +0000)]
Find networks in instead of .
Ivo Timmermans [Thu, 18 May 2000 23:33:44 +0000 (23:33 +0000)]
Don't distribute the file files.
Ivo Timmermans [Thu, 18 May 2000 23:28:51 +0000 (23:28 +0000)]
Version 1.0pre2-0.3
Ivo Timmermans [Thu, 18 May 2000 23:18:54 +0000 (23:18 +0000)]
Create a default /etc/tinc/nets.boot after installation, containing all directories under /etc/tinc by default.
Ivo Timmermans [Thu, 18 May 2000 23:09:31 +0000 (23:09 +0000)]
Read /etc/tinc/nets.boot to find the networks that have to be started.
Ivo Timmermans [Wed, 17 May 2000 23:13:51 +0000 (23:13 +0000)]
This file is generated with dpkg-buildpackage.
Guus Sliepen [Tue, 16 May 2000 16:07:15 +0000 (16:07 +0000)]
TODO file reinstated:
- Append your name to items if you're working on them.
- Remove them if you fixed the problem/implemented that feature.
- Add any (suspected) bugs.
Ivo Timmermans [Tue, 16 May 2000 14:34:44 +0000 (14:34 +0000)]
Use the new VpnMask directive to add a route to the rest of the VPN.
Guus Sliepen [Tue, 16 May 2000 13:09:15 +0000 (13:09 +0000)]
Stub for VpnMask config directive.
Ivo Timmermans [Tue, 16 May 2000 13:03:32 +0000 (13:03 +0000)]
Look if the tap devices exist before bluntly remaking them.
Ivo Timmermans [Tue, 16 May 2000 07:56:05 +0000 (07:56 +0000)]
*** empty log message ***
Ivo Timmermans [Mon, 15 May 2000 19:48:46 +0000 (19:48 +0000)]
Depend on perl5.
Ivo Timmermans [Mon, 15 May 2000 18:28:45 +0000 (18:28 +0000)]
Unlimited length in the config file, thanks to Cris van Pelt.
Ivo Timmermans [Mon, 15 May 2000 17:15:52 +0000 (17:15 +0000)]
Exit with zero status if is empty.
Ivo Timmermans [Mon, 15 May 2000 15:54:37 +0000 (15:54 +0000)]
Updated to newer version.
Guus Sliepen [Mon, 15 May 2000 09:41:34 +0000 (09:41 +0000)]
Test for existence of configured tinc networks. This will also make
first install of tinc possible without errors.
Ivo Timmermans [Sun, 14 May 2000 23:03:37 +0000 (23:03 +0000)]
.deb version number 1.0pre2-0.4.
Ivo Timmermans [Sun, 14 May 2000 23:00:44 +0000 (23:00 +0000)]
tincd->tinc
Delete libblowfish.y not be in the .deb.
Ivo Timmermans [Sun, 14 May 2000 22:59:47 +0000 (22:59 +0000)]
Mention both upstream authors.
Ivo Timmermans [Sun, 14 May 2000 22:59:19 +0000 (22:59 +0000)]
Add description, better dependancies.
Ivo Timmermans [Sun, 14 May 2000 22:58:47 +0000 (22:58 +0000)]
Add initscript, tincd->tinc.
Ivo Timmermans [Sun, 14 May 2000 21:18:10 +0000 (21:18 +0000)]
Inserted useful content.
Ivo Timmermans [Sun, 14 May 2000 21:14:23 +0000 (21:14 +0000)]
Add shlibs control file for the blowfish library.
Ivo Timmermans [Sun, 14 May 2000 21:07:16 +0000 (21:07 +0000)]
Give IP address instead of hex number when connecting tcp socket failed.
Ivo Timmermans [Sun, 14 May 2000 21:04:53 +0000 (21:04 +0000)]
Changed version to 1.0pre2.
Ivo Timmermans [Sun, 14 May 2000 20:58:34 +0000 (20:58 +0000)]
Version 1.0pre1-0.1.
Ivo Timmermans [Sun, 14 May 2000 20:56:41 +0000 (20:56 +0000)]
Add check for mpz_powm in libgmp3.
Ivo Timmermans [Sun, 14 May 2000 13:50:10 +0000 (13:50 +0000)]
Only print an error with send_termreq if debug_lvl is 2 or more.
Guus Sliepen [Sun, 14 May 2000 13:06:52 +0000 (13:06 +0000)]
Fixed typos.
Guus Sliepen [Sun, 14 May 2000 13:02:20 +0000 (13:02 +0000)]
Changed ping behaviour (backwards compatible). If we don't have any data
to send, we don't need to check if the connection is still alive.
Furthermore, if we receive any kind of data from the other end, we know
it's alive, so we don't need to check it either. So, PING requests are
only sent if we send packets but there is no response.
Guus Sliepen [Sun, 14 May 2000 12:22:42 +0000 (12:22 +0000)]
Cleanups.
Guus Sliepen [Sun, 14 May 2000 11:39:18 +0000 (11:39 +0000)]
Proxymode removed.
Ivo Timmermans [Sat, 13 May 2000 00:54:27 +0000 (00:54 +0000)]
Perl version of the system startup script.
Ivo Timmermans [Fri, 12 May 2000 13:31:00 +0000 (13:31 +0000)]
Deleted the protocol description.
Guus Sliepen [Mon, 8 May 2000 18:44:15 +0000 (18:44 +0000)]
Added new config variable "ProxyMode". If enabled, all outgoing packets
are sent to the uplink (ConnectTo), which will have to forward them for
us (kernel should do that). This is for people behind firewalls.
Ivo Timmermans [Fri, 5 May 2000 10:48:54 +0000 (10:48 +0000)]
Added semicolons required by bash2 (Mads Kiilerich).
Ivo Timmermans [Thu, 4 May 2000 23:26:24 +0000 (23:26 +0000)]
Copied most of the code from the redhat script.
Ivo Timmermans [Thu, 4 May 2000 23:17:02 +0000 (23:17 +0000)]
Include sys/types.h.
Ivo Timmermans [Thu, 4 May 2000 23:16:43 +0000 (23:16 +0000)]
Don't link in libdl.
Ivo Timmermans [Thu, 4 May 2000 00:01:05 +0000 (00:01 +0000)]
Check for the existance of libdl.
Ivo Timmermans [Thu, 4 May 2000 00:00:50 +0000 (00:00 +0000)]
More for getopt support.
Ivo Timmermans [Thu, 4 May 2000 00:00:06 +0000 (00:00 +0000)]
Include stdio.h for fprintf.
Ivo Timmermans [Wed, 3 May 2000 23:47:06 +0000 (23:47 +0000)]
getopt_long() support for platforms that don't have it.
Ivo Timmermans [Wed, 3 May 2000 23:00:38 +0000 (23:00 +0000)]
Don't use error.h or error(), put #error in front of cpp errors.
Guus Sliepen [Wed, 3 May 2000 18:02:15 +0000 (18:02 +0000)]
Squashed gcc warning.