[ViewVC] Annotation of: cvs/gvpe/NEWS

GVPE NEWS

TODO: updqate donna?
TODO: clear one-time key/auth material from memory?
        - update embedded liblzf.
        - use liblzf with static hash table: lowers stack usage.
        - do not initialise liblzf hash table for faster operation.
        - use C++ variadic templates for callback.h, get rid of callback.pl.
        - update autoconf.
        - slightly modernise code.
        - make use of ICMPFILTER again, this stopped working because it
          is not defined in the glibc header files.

3.1  Sat Oct 27 07:50:43 CEST 2018
        - port to openssl 1.1 BUT SEE WARNING IN configure.ac. Do not use!
        - tinc cruft removal: remove getopt.[ch], it's less portable to
          have it then to not have it.
        - tinc cruft removal: use pkg-config to detect libressl/openssl.
        - minor cleanups.

3.0  Thu Nov 10 15:39:58 CET 2016
        - INCOMPATIBLE CHANGE: core protocol version 1.0.
        - INCOMPATIBLE CHANGE: node sections are now introduced
          with "node nodename", not "node = nodename".
        - INCOMPATIBLE CHANGE: gvpectrl -g will now generate a single
          keypair, while -G will try to generate all keypairs as before.
        - openssl 1.0.2 is the latest supported openssl release,
          openssl 1.1.0 is not supported at the moment as the work to
          make it compatible to both versions is just too much. a switch
          to openssl 1.1 or another library will be done in a future release.
        - update examples to not generate keys centrally, but locally on each
          node.
        - add workaround for temporary/rare ENOBUFS condition.
        - while individual packets couldn't be replayed, a whole session
          could be replayed - this has been fixed by an extra key exchange.
        - fix a delete vs. delete [] mismatch in the central logging function.
        - in addition to rsa key exchange and authentication, the handshake now
          adds a diffie-hellman key exchange (using curve25119) for perfect
          forward secrecy. mac and cipher keys are derived using HKDF.
        - rsa key sizes are now configurable and larger (default is 3072).
          correspondingly, the minimum mtu is no longer 296 but 576.
        - fixed a potential (unverified) buffer overrun on rsa decryption.
        - new per-node low-power setting that tries to reduce cpu/network usage.
        - router reconnects could cause excessive rekeying on other connections.
        - gvpectrl no longer generates all missing public keys, but
          only missing private keys. private keys are also put
          into the configured location.
        - the pid-file now accepts %s as nodename as elsewhere.
        - switch to counter mode (only aes supported at the moment in
          openssl). this gets rid of the need to generate a random iv,
          is likely more secure (and, as a side effect, gets rid of
          slow randomness generation. counter mode is often faster
          then cbc mode as well, and packets are smaller).
        - no longer use RAND_bytes to generate session keys - you NEED
          a real source of entropy now (e.g. egd or /dev/random - see the
          openssl documentation).
        - multiple node statements for the same node are now supported
          and will be merged.
        - a new directive "global" switches back to the global section
          of the config file.
        - if-up scripts can now be specified with absolute paths.
        - new global option: serial, to detect configuration mismatches.
        - use HKDF as authentication proof, not HMAC or a plain hash
          (hint by Ilmari Karonen).
        - during rekeying or connection establishments, hmac authentication
          errors could occur and reset the connection. Transient hmac
          authentication errors are now being ignored for 3 seconds.
        - log the reason for a conneciton loss.
        - use a (hopefully) constant time memcmp to compare internal secrets.
        - fix a (harmless) errornous out of bounds stack read that would trigger
          gcc's -fsanitize=address.
        - bump old packet window size from 512 to 65536.
        - update for big changes in openssl 1.1 API, wrap primitives
          to make further changes easier.
        - correctly check return values for openssl 1.0.0 and later.
        - check for both public and private key file when deciding whether
          to skip generating a key to avoid accidental overwrites.
          
2.25 Sat Jul 13 06:42:33 CEST 2013
        - INCOMPATIBLE CHANGE: no longer enable udp protocol if no other
          protocols are enabled - this is necessary when you have nodes with
          completely unknown protocols, to force mediated connection requests.
        - INCOMPATIBLE CHANGE: dns transport protocol bumped to version 2.
        - core protocol version 0.1, compatible with older releases.
        - switch to using RSA_generate_key_ex, which is the badly documented
          and needlessly more complicated replacement for the RSA_generate_key
          function which is now deprecated.
        - support additional hmac hashes: sha256 and sha512, usually truncated.
        - change public exponent for rsa keys from 65535 to 65537, for
          efficiency reasons - only affects new keys.
        - nodes would sometimes declare transport endpoints valid despite
          the protocol not being configured locally.
        - new global configuration options: chroot, chuser, chuid, chgid,
          to chroot to a specified or anonymous new root, and change user id.
        - new global configuration options seed_device and seed_interval,
          to configure another device than /dev/urandom for random seeds,
          and to configure a regular interval to reseed the rng.
        - prefer inet_aton over gethostbyname, as the latter is not guaranteed
          to "resolve" literal ip addresses.
        - configure didn't detect openssl 1.0 because SHA1_version became private
          (patch by TANIGUCHI Takaki).
        - fix a bug where nodes would tell the other side that it supports
          the same protocols as that other side, instead of its own.
        - add zlib when found, as openssl depends on it in newer versions.
        - work around append-bugs in uclibc by using an extra seek.
        - new "include" directive for the config file.
        - gvpectrl no longer evaluates any "on" directives.
        - icmp and rawip protocols weren't upgradable to each other.
        - major, but incremental, dns transport improvements:
           - do not simply abort in some error cases in the dns transport,
             but try to recover.
           - allow lowercase/uppercase aliases for base-n encodings that do
             not rely on case.
           - use base26 instead of base22 encoding for dns syn's, and
             base36 instead of base22 for headers (saves one byte/packet).
           - back off far quicker in dns tunnel when idling - increases
             latency on an idle link somewhat, but avoids hundreds of
             needless packets.
           - poll more aggressively when idling in dns (poll once per
             second as opposed to once per 5 seconds).
           - reduce dns send payload size to allow greater rate of ack
             messages (should help sack and ipv6).
        - allow for ip options in rawip/icmp transports, even though gvpe
          doesn't generate them.
        - upgrade to autoconf 2.69, automake 1.11.
        - upgrade to libev 4 API.
        - replace COPYING file by actual GPLv3 - files were relicensed to GPLv3
          earlier but COPYING was forgotten.

2.24 Sat Feb 12 05:15:48 CET 2011
        - protocol version 0.1, compatible with older releases.
        - due to a bug, when packets were lost, a connection could go into a
          state where a ping/connection request from another node would be
          ignored, leading to connections not being re-established.
        - due to a bug, compression was almost always enabled.
        - enable-max-mtu was actually enable-mtu, contrary to documentation.
        - add nfmark support.
        - add node-change script support.
        - new DESTSI variable for node-xxx scripts.
        - updated codingstyle a bit, declared truly static stuff as static.
        - clarify compression docs.

2.22 Sun Feb  1 17:25:28 CET 2009
        - protocol version 0.1, compatible with older releases.
        - enabled icmp/tcp/http-proxy protocols by default.
        - updated copyright in program greetings.
        - fix some configure messages.
        - updated to libev 3.52.

2.21 Wed Sep  3 06:56:27 CEST 2008
        - protocol version 0.1, compatible with older releases.
        - add missing ev++.h include header to tarball, which everybody
          who tested it apparently had in their include path :(. Caught
          by Karl Kleinpaste and Marcus Kong.

2.2  Mon Sep  1 06:28:09 CEST 2008
        - protocol version 0.1, compatible with older releases.
          but upgrade is recommended to due changed ondemand behaviour.
        - new per-node options max-ttl and max-queue.
        - convert from iom.C to libev, a high-performance event loop
          (http://software.schmorp.de/pkg/libev).
        - tcp connections were leaking in some cases.
        - retry more aggressively (once/s) to establish a connection if
          new packets arrive for it.
        - save a lot of setsockopt calls when the tos doesn't change.
        - honor disabled even on initial connect attempt.
        - changed callback mechanism to be slightly less portable
          but more efficient mechanism (standards-compliant c++ compilers
          should work).
        - increased receive window positive size, to allow for massive
          packet loss due to occasional longer drop-outs.
        - send RST when a positive window size violation is detected, but
          not in other cases, to reconnect more quickly.
        - upgraded liblzf to version 3.4.
        - dropped -fno-exceptions due to ev++.h using it.
        - node-up/down scripts are now run in sequence.
        - new -q switch for gvpectrl, for when you run it often.
        - work around the horribly inconsistent, ad-hoc, ever-changing
          and broken texinfo syntax. YMMV. avoid texinfo.
        - keepalive is more aggressive now, sensding ping's every 3 seconds
          and killing the conenction after 15 seconds.
        - bugfixes.

2.01 Thu Mar 29 19:26:04 CEST 2007
        - protocol version 0.1, compatible with older releases.
        - bugfix of callback.h, might have cause callback return values to
          be corrupted on architectures like sparc before.
        - dns transport retries more aggressively.
        - updated documentation, improved dns transport reliability
          and throughput.
        - added experimental support for sha256 and sha512 digests.

2.0 Mon Dec  5 13:59:26 CET 2005
        - protocol version 0.1, compatible with older releases.
        - implement allow-direct, deny-direct node config statements.
        - implemented != for sockinfo. This fixes a bug where
          gvpe sent packets to the old ip address of another host
          even though it had received packets from it's new address.
          This only causes problems if you forget to -HUP your gvpe after
          your ip address changed, which is *required*.
        - sets close-on-exec flag on tcp connections. This fixes a bug
          where child processes kept tcp connections open and caused
          connections to fail when only one side can connect.
        - fixed a bug in receive sequence checking that made gvpe
          accept out-of-window packets in most cases.
        - tighter limit for the maximum sequence # to avoid overflow
          conditions + allow more headroom for packet reordering.
        - replace some asserts that trapped config mismatches by
          more useful log messages.
        - fix spurious extra newline in some log messages.

1.9 Tue Apr 19 06:21:50 CEST 2005
        - protocol version 0.1, compatible with older releases.
        - WARNING: this version checks the return value of if-up etc.
          scripts and exits on failure.
        - IMPORTANT: run if-up/node-up etc. scripts via /bin/sh.
        - IMPORTANT: interface initialization (MAC, MTU) is now done
          automatically in most configurations.
        - options can now be specified on the gvpe command line, too.
        - make some DNS transport values configurable and document them.
        - improved OS specific information in gvpe.osdep(5).
        - new tap device type "native/darwin", that supports the tap
          driver available for darwin (thanks to matthew mead who tested
          it out with me in a long session). tincd/darwin is still available.
        - new device type "tincd/bsd", which is a newer version of the
          *bsd-drivers taken from tinc.
        - fixed a bug in relying on the order of global construction
          when tcp transport was enabled. The fix makes it use no
          cpu time unless it is in use, too.
        - information about other nodes is now available to if-up etc. scripts.
        - the value of the config variable if-up-data is passed to the if-up
          etc. scripts.
        - skip unparsable config lines with a warning instead of stopping
          parsing and continuing with a certainly unusable config.

1.8 Fri Mar 18 00:58:55 CET 2005
        - protocol version 0.1, compatible with older releases.
        - enable-udp = yes is now default only when no other protocols
          are enabled. otherwise it is disabled unless explicitly enabled.
        - implemented dns tunneling (experimental now and in the future).
        - remove support for pre-release version protocol.
        - updated tincd drivers (rev 1433), added uml_socket driver, documented
          tincd drivers a bit better.
        - document icmp configuration values.
        - document transport protocols in gvpe.protocol(7).
        - remove unused ChangeLog file.
        - created a mailinglist at gvpe@lists.schmorp.de.
        - added an exemption to allow distribution of binaries linked against
          OpenSSL, as suggested by Guus Sliepen (author of tinc). No
          GNUTLS conversion in sight.
        - some portability fixes with respect to --disable-nls.

1.7 Tue Feb 22 23:58:59 CET 2005
        - protocol version 0.1, compatible with older releases.
        - first gnu release.
        - documented the special value 1 for router-priority.
        - renamed vped => gvpe and vpectrl => gvpectrl, as well as
          vped.conf => gvpe.conf.
        - new per-node option "max-retry".
        - asymmetric rekeying behaviour, so hosts don't rekey simultaneously.
        - new configure option --enable-static-daemon.
        - fix configure --help output.
        - many documentation layout fixes.
        - synced iom.[Ch] from rxvt-unicode.
        - try to cope with some non-monotonic time changes.
        - revert to locale.h - a usual, clocale is nonfunctioning on macosx.
        - considerably improved pod2texi and the resulting texi doc.

1.6.1 Wed May 12 14:48:20 CEST 2004
        - protocol version 0.1, compatible with older releases.
        - fix -c switch that has been broken due to a last-minute fix
          to option and config file parsing.

1.6 Mon May 10 20:55:10 CEST 2004
        - protocol version 0.1, compatible with older releases.
        - do not RESET on out-of-sequence packets (good for wireless).
        - various non-security-related bugfixes.
        - c++ify (at least make it compile with g++-3.4, which should make
          it a little bit more standard c++).

1.5 Fri Jan 30 00:50:04 CET 2004
        - protocol version 0.1, compatible with older releases.
        - vped will refuse to start when hostkey and public key do not match.
        - updated lzf code to version 1.2.
        - better error reporting for "unusual" conditions, like failing
          to allocate memory, that should not normally happen and
          will otherwise result in spurious other error messages. Also
          adds paranoid checks in case openssl's API changes in a bad way.
        - fix a bug where queued vpn packets were cleared to zero. while
          this doesn't affect security, it did cause warning messages and
          unnecessary connectivity delays.

1.4 Sat Jan 17 15:49:21 CET 2004
        - protocol version 0.1, compatible with older releases.
        - better retry behaviour on key mismatch.
        - use select-based io_manager instead of poll-based one.
        - share io manager between rxvt-unicode and vpe.
        - sooo many *BSD workarounds because no BSD I could find is even
          remotely POSIX-compatible.

1.2 Fri Oct 17 03:44:44 CEST 2003
        - protocol version 0.1.
        - tincd kernel interface code imported, more supported platforms
          (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd,
          native/cygwin).
        - added primitive ethernet emulation (ipv4 only), which allows
          the following platforms that only have tun drivers to work:
          /* none yet tested */
        - portability workarounds, especially for unfriendly freebsd
        - very minor bugfixes
        - warnings when choosing insecure ciphers/hashes
        - reduced default hmac length to 8.
        - cvs now contains configure, Makefile.in and other generated files.
        - added doc/complex-example to the distribution.

1.0 distant past
        - protocol version 0.1.
        - tweaked various timeouts to help very slow (486) class
          machines or nets with many hosts.
        - tweaked rate-limiting to be more forgiving for hosts
          connecting through routers (not a fix).

Revision:	1.141
Committed:	Thu Oct 6 03:25:53 2022 UTC (18 months, 4 weeks ago) by root
Branch:	MAIN
CVS Tags:	HEAD
Changes since 1.140:	+4 -0 lines
Log Message:	* empty log message *
#	User	Rev	Content
1	pcg	1.83	GVPE NEWS
2	pcg	1.57
3	root	1.140	TODO: updqate donna?
4			TODO: clear one-time key/auth material from memory?
5	root	1.139	- update embedded liblzf.
6			- use liblzf with static hash table: lowers stack usage.
7			- do not initialise liblzf hash table for faster operation.
8			- use C++ variadic templates for callback.h, get rid of callback.pl.
9	root	1.141	- update autoconf.
10			- slightly modernise code.
11			- make use of ICMPFILTER again, this stopped working because it
12			is not defined in the glibc header files.
13	root	1.138
14	root	1.137	3.1 Sat Oct 27 07:50:43 CEST 2018
15	root	1.136	- port to openssl 1.1 BUT SEE WARNING IN configure.ac. Do not use!
16	root	1.138	- tinc cruft removal: remove getopt.[ch], it's less portable to
17	root	1.134	have it then to not have it.
18	root	1.136	- tinc cruft removal: use pkg-config to detect libressl/openssl.
19	root	1.135	- minor cleanups.
20	root	1.134
21	root	1.133	3.0 Thu Nov 10 15:39:58 CET 2016
22	root	1.114	- INCOMPATIBLE CHANGE: core protocol version 1.0.
23	root	1.123	- INCOMPATIBLE CHANGE: node sections are now introduced
24	root	1.116	with "node nodename", not "node = nodename".
25	root	1.132	- INCOMPATIBLE CHANGE: gvpectrl -g will now generate a single
26			keypair, while -G will try to generate all keypairs as before.
27	root	1.131	- openssl 1.0.2 is the latest supported openssl release,
28			openssl 1.1.0 is not supported at the moment as the work to
29			make it compatible to both versions is just too much. a switch
30			to openssl 1.1 or another library will be done in a future release.
31	root	1.132	- update examples to not generate keys centrally, but locally on each
32			node.
33	root	1.128	- add workaround for temporary/rare ENOBUFS condition.
34	root	1.114	- while individual packets couldn't be replayed, a whole session
35			could be replayed - this has been fixed by an extra key exchange.
36	root	1.126	- fix a delete vs. delete [] mismatch in the central logging function.
37	root	1.114	- in addition to rsa key exchange and authentication, the handshake now
38			adds a diffie-hellman key exchange (using curve25119) for perfect
39			forward secrecy. mac and cipher keys are derived using HKDF.
40			- rsa key sizes are now configurable and larger (default is 3072).
41			correspondingly, the minimum mtu is no longer 296 but 576.
42			- fixed a potential (unverified) buffer overrun on rsa decryption.
43	root	1.120	- new per-node low-power setting that tries to reduce cpu/network usage.
44	root	1.119	- router reconnects could cause excessive rekeying on other connections.
45	root	1.114	- gvpectrl no longer generates all missing public keys, but
46			only missing private keys. private keys are also put
47			into the configured location.
48			- the pid-file now accepts %s as nodename as elsewhere.
49	root	1.124	- switch to counter mode (only aes supported at the moment in
50			openssl). this gets rid of the need to generate a random iv,
51			is likely more secure (and, as a side effect, gets rid of
52			slow randomness generation. counter mode is often faster
53	root	1.125	then cbc mode as well, and packets are smaller).
54	root	1.115	- no longer use RAND_bytes to generate session keys - you NEED
55			a real source of entropy now (e.g. egd or /dev/random - see the
56			openssl documentation).
57	root	1.116	- multiple node statements for the same node are now supported
58			and will be merged.
59			- a new directive "global" switches back to the global section
60			of the config file.
61			- if-up scripts can now be specified with absolute paths.
62	root	1.117	- new global option: serial, to detect configuration mismatches.
63	root	1.118	- use HKDF as authentication proof, not HMAC or a plain hash
64			(hint by Ilmari Karonen).
65	root	1.132	- during rekeying or connection establishments, hmac authentication
66	root	1.119	errors could occur and reset the connection. Transient hmac
67			authentication errors are now being ignored for 3 seconds.
68			- log the reason for a conneciton loss.
69	root	1.121	- use a (hopefully) constant time memcmp to compare internal secrets.
70	root	1.127	- fix a (harmless) errornous out of bounds stack read that would trigger
71			gcc's -fsanitize=address.
72	root	1.129	- bump old packet window size from 512 to 65536.
73	root	1.130	- update for big changes in openssl 1.1 API, wrap primitives
74			to make further changes easier.
75			- correctly check return values for openssl 1.0.0 and later.
76	root	1.131	- check for both public and private key file when deciding whether
77			to skip generating a key to avoid accidental overwrites.
78	root	1.116
79	root	1.114	2.25 Sat Jul 13 06:42:33 CEST 2013
80	root	1.97	- INCOMPATIBLE CHANGE: no longer enable udp protocol if no other
81			protocols are enabled - this is necessary when you have nodes with
82			completely unknown protocols, to force mediated connection requests.
83	root	1.99	- INCOMPATIBLE CHANGE: dns transport protocol bumped to version 2.
84	root	1.112	- core protocol version 0.1, compatible with older releases.
85	root	1.110	- switch to using RSA_generate_key_ex, which is the badly documented
86	root	1.108	and needlessly more complicated replacement for the RSA_generate_key
87			function which is now deprecated.
88	root	1.112	- support additional hmac hashes: sha256 and sha512, usually truncated.
89	root	1.108	- change public exponent for rsa keys from 65535 to 65537, for
90	root	1.110	efficiency reasons - only affects new keys.
91	root	1.105	- nodes would sometimes declare transport endpoints valid despite
92			the protocol not being configured locally.
93	root	1.106	- new global configuration options: chroot, chuser, chuid, chgid,
94			to chroot to a specified or anonymous new root, and change user id.
95	root	1.112	- new global configuration options seed_device and seed_interval,
96			to configure another device than /dev/urandom for random seeds,
97	root	1.116	and to configure a regular interval to reseed the rng.
98	root	1.107	- prefer inet_aton over gethostbyname, as the latter is not guaranteed
99			to "resolve" literal ip addresses.
100	root	1.102	- configure didn't detect openssl 1.0 because SHA1_version became private
101			(patch by TANIGUCHI Takaki).
102	root	1.97	- fix a bug where nodes would tell the other side that it supports
103			the same protocols as that other side, instead of its own.
104	root	1.98	- add zlib when found, as openssl depends on it in newer versions.
105			- work around append-bugs in uclibc by using an extra seek.
106	root	1.99	- new "include" directive for the config file.
107	root	1.100	- gvpectrl no longer evaluates any "on" directives.
108	root	1.102	- icmp and rawip protocols weren't upgradable to each other.
109	root	1.99	- major, but incremental, dns transport improvements:
110			- do not simply abort in some error cases in the dns transport,
111			but try to recover.
112	root	1.116	- allow lowercase/uppercase aliases for base-n encodings that do
113	root	1.99	not rely on case.
114			- use base26 instead of base22 encoding for dns syn's, and
115			base36 instead of base22 for headers (saves one byte/packet).
116			- back off far quicker in dns tunnel when idling - increases
117			latency on an idle link somewhat, but avoids hundreds of
118			needless packets.
119			- poll more aggressively when idling in dns (poll once per
120			second as opposed to once per 5 seconds).
121	root	1.104	- reduce dns send payload size to allow greater rate of ack
122			messages (should help sack and ipv6).
123	root	1.103	- allow for ip options in rawip/icmp transports, even though gvpe
124			doesn't generate them.
125	root	1.113	- upgrade to autoconf 2.69, automake 1.11.
126	root	1.101	- upgrade to libev 4 API.
127	root	1.113	- replace COPYING file by actual GPLv3 - files were relicensed to GPLv3
128			earlier but COPYING was forgotten.
129	root	1.97
130			2.24 Sat Feb 12 05:15:48 CET 2011
131			- protocol version 0.1, compatible with older releases.
132	root	1.95	- due to a bug, when packets were lost, a connection could go into a
133	root	1.94	state where a ping/connection request from another node would be
134	root	1.96	ignored, leading to connections not being re-established.
135	pcg	1.93	- due to a bug, compression was almost always enabled.
136	pcg	1.92	- enable-max-mtu was actually enable-mtu, contrary to documentation.
137	pcg	1.90	- add nfmark support.
138	pcg	1.91	- add node-change script support.
139			- new DESTSI variable for node-xxx scripts.
140	root	1.95	- updated codingstyle a bit, declared truly static stuff as static.
141	root	1.96	- clarify compression docs.
142	pcg	1.90
143	pcg	1.89	2.22 Sun Feb 1 17:25:28 CET 2009
144	root	1.97	- protocol version 0.1, compatible with older releases.
145	pcg	1.86	- enabled icmp/tcp/http-proxy protocols by default.
146	pcg	1.85	- updated copyright in program greetings.
147	pcg	1.86	- fix some configure messages.
148	pcg	1.87	- updated to libev 3.52.
149	pcg	1.85
150	pcg	1.84	2.21 Wed Sep 3 06:56:27 CEST 2008
151	root	1.97	- protocol version 0.1, compatible with older releases.
152	pcg	1.84	- add missing ev++.h include header to tarball, which everybody
153			who tested it apparently had in their include path :(. Caught
154	pcg	1.85	by Karl Kleinpaste and Marcus Kong.
155	pcg	1.84
156	pcg	1.83	2.2 Mon Sep 1 06:28:09 CEST 2008
157	root	1.97	- protocol version 0.1, compatible with older releases.
158	pcg	1.78	but upgrade is recommended to due changed ondemand behaviour.
159			- new per-node options max-ttl and max-queue.
160	pcg	1.72	- convert from iom.C to libev, a high-performance event loop
161	pcg	1.71	(http://software.schmorp.de/pkg/libev).
162	pcg	1.73	- tcp connections were leaking in some cases.
163	pcg	1.78	- retry more aggressively (once/s) to establish a connection if
164			new packets arrive for it.
165	pcg	1.75	- save a lot of setsockopt calls when the tos doesn't change.
166	pcg	1.78	- honor disabled even on initial connect attempt.
167	pcg	1.76	- changed callback mechanism to be slightly less portable
168			but more efficient mechanism (standards-compliant c++ compilers
169			should work).
170	pcg	1.80	- increased receive window positive size, to allow for massive
171			packet loss due to occasional longer drop-outs.
172			- send RST when a positive window size violation is detected, but
173			not in other cases, to reconnect more quickly.
174	pcg	1.83	- upgraded liblzf to version 3.4.
175	pcg	1.77	- dropped -fno-exceptions due to ev++.h using it.
176	pcg	1.81	- node-up/down scripts are now run in sequence.
177			- new -q switch for gvpectrl, for when you run it often.
178	pcg	1.82	- work around the horribly inconsistent, ad-hoc, ever-changing
179			and broken texinfo syntax. YMMV. avoid texinfo.
180	pcg	1.83	- keepalive is more aggressive now, sensding ping's every 3 seconds
181			and killing the conenction after 15 seconds.
182	pcg	1.71	- bugfixes.
183
184	pcg	1.70	2.01 Thu Mar 29 19:26:04 CEST 2007
185	pcg	1.69	- protocol version 0.1, compatible with older releases.
186	pcg	1.68	- bugfix of callback.h, might have cause callback return values to
187			be corrupted on architectures like sparc before.
188	pcg	1.69	- dns transport retries more aggressively.
189	pcg	1.70	- updated documentation, improved dns transport reliability
190			and throughput.
191			- added experimental support for sha256 and sha512 digests.
192	pcg	1.67
193	pcg	1.66	2.0 Mon Dec 5 13:59:26 CET 2005
194	pcg	1.56	- protocol version 0.1, compatible with older releases.
195	pcg	1.65	- implement allow-direct, deny-direct node config statements.
196	pcg	1.59	- implemented != for sockinfo. This fixes a bug where
197			gvpe sent packets to the old ip address of another host
198			even though it had received packets from it's new address.
199	pcg	1.61	This only causes problems if you forget to -HUP your gvpe after
200	pcg	1.59	your ip address changed, which is required.
201	pcg	1.64	- sets close-on-exec flag on tcp connections. This fixes a bug
202			where child processes kept tcp connections open and caused
203			connections to fail when only one side can connect.
204			- fixed a bug in receive sequence checking that made gvpe
205			accept out-of-window packets in most cases.
206	pcg	1.61	- tighter limit for the maximum sequence # to avoid overflow
207			conditions + allow more headroom for packet reordering.
208	pcg	1.66	- replace some asserts that trapped config mismatches by
209	pcg	1.62	more useful log messages.
210	pcg	1.63	- fix spurious extra newline in some log messages.
211	pcg	1.56
212	pcg	1.55	1.9 Tue Apr 19 06:21:50 CEST 2005
213	pcg	1.56	- protocol version 0.1, compatible with older releases.
214	pcg	1.49	- WARNING: this version checks the return value of if-up etc.
215			scripts and exits on failure.
216	pcg	1.50	- IMPORTANT: run if-up/node-up etc. scripts via /bin/sh.
217			- IMPORTANT: interface initialization (MAC, MTU) is now done
218			automatically in most configurations.
219	pcg	1.54	- options can now be specified on the gvpe command line, too.
220	pcg	1.49	- make some DNS transport values configurable and document them.
221			- improved OS specific information in gvpe.osdep(5).
222	pcg	1.51	- new tap device type "native/darwin", that supports the tap
223	pcg	1.45	driver available for darwin (thanks to matthew mead who tested
224	pcg	1.47	it out with me in a long session). tincd/darwin is still available.
225	pcg	1.51	- new device type "tincd/bsd", which is a newer version of the
226			*bsd-drivers taken from tinc.
227	pcg	1.46	- fixed a bug in relying on the order of global construction
228			when tcp transport was enabled. The fix makes it use no
229			cpu time unless it is in use, too.
230	pcg	1.52	- information about other nodes is now available to if-up etc. scripts.
231			- the value of the config variable if-up-data is passed to the if-up
232			etc. scripts.
233	pcg	1.49	- skip unparsable config lines with a warning instead of stopping
234			parsing and continuing with a certainly unusable config.
235	pcg	1.43
236	pcg	1.41	1.8 Fri Mar 18 00:58:55 CET 2005
237	pcg	1.56	- protocol version 0.1, compatible with older releases.
238	pcg	1.36	- enable-udp = yes is now default only when no other protocols
239			are enabled. otherwise it is disabled unless explicitly enabled.
240	pcg	1.40	- implemented dns tunneling (experimental now and in the future).
241	pcg	1.39	- remove support for pre-release version protocol.
242	pcg	1.41	- updated tincd drivers (rev 1433), added uml_socket driver, documented
243			tincd drivers a bit better.
244	pcg	1.40	- document icmp configuration values.
245			- document transport protocols in gvpe.protocol(7).
246			- remove unused ChangeLog file.
247	pcg	1.41	- created a mailinglist at gvpe@lists.schmorp.de.
248			- added an exemption to allow distribution of binaries linked against
249			OpenSSL, as suggested by Guus Sliepen (author of tinc). No
250			GNUTLS conversion in sight.
251	pcg	1.42	- some portability fixes with respect to --disable-nls.
252	pcg	1.36
253	pcg	1.35	1.7 Tue Feb 22 23:58:59 CET 2005
254	pcg	1.32	- protocol version 0.1, compatible with older releases.
255	pcg	1.26	- first gnu release.
256	pcg	1.27	- documented the special value 1 for router-priority.
257	pcg	1.26	- renamed vped => gvpe and vpectrl => gvpectrl, as well as
258			vped.conf => gvpe.conf.
259	pcg	1.29	- new per-node option "max-retry".
260	pcg	1.22	- asymmetric rekeying behaviour, so hosts don't rekey simultaneously.
261	pcg	1.24	- new configure option --enable-static-daemon.
262	pcg	1.23	- fix configure --help output.
263	pcg	1.26	- many documentation layout fixes.
264	pcg	1.28	- synced iom.[Ch] from rxvt-unicode.
265	pcg	1.34	- try to cope with some non-monotonic time changes.
266	pcg	1.30	- revert to locale.h - a usual, clocale is nonfunctioning on macosx.
267	pcg	1.32	- considerably improved pod2texi and the resulting texi doc.
268	pcg	1.22
269	pcg	1.21	1.6.1 Wed May 12 14:48:20 CEST 2004
270	pcg	1.32	- protocol version 0.1, compatible with older releases.
271	pcg	1.22	- fix -c switch that has been broken due to a last-minute fix
272			to option and config file parsing.
273	pcg	1.21
274	pcg	1.20	1.6 Mon May 10 20:55:10 CEST 2004
275	pcg	1.22	- protocol version 0.1, compatible with older releases.
276			- do not RESET on out-of-sequence packets (good for wireless).
277			- various non-security-related bugfixes.
278			- c++ify (at least make it compile with g++-3.4, which should make
279			it a little bit more standard c++).
280	pcg	1.19
281	pcg	1.18	1.5 Fri Jan 30 00:50:04 CET 2004
282	pcg	1.22	- protocol version 0.1, compatible with older releases.
283			- vped will refuse to start when hostkey and public key do not match.
284			- updated lzf code to version 1.2.
285			- better error reporting for "unusual" conditions, like failing
286			to allocate memory, that should not normally happen and
287			will otherwise result in spurious other error messages. Also
288			adds paranoid checks in case openssl's API changes in a bad way.
289			- fix a bug where queued vpn packets were cleared to zero. while
290			this doesn't affect security, it did cause warning messages and
291			unnecessary connectivity delays.
292	pcg	1.15
293	pcg	1.13	1.4 Sat Jan 17 15:49:21 CET 2004
294	pcg	1.22	- protocol version 0.1, compatible with older releases.
295			- better retry behaviour on key mismatch.
296			- use select-based io_manager instead of poll-based one.
297			- share io manager between rxvt-unicode and vpe.
298			- sooo many *BSD workarounds because no BSD I could find is even
299			remotely POSIX-compatible.
300	pcg	1.11
301	pcg	1.10	1.2 Fri Oct 17 03:44:44 CEST 2003
302	pcg	1.22	- protocol version 0.1.
303			- tincd kernel interface code imported, more supported platforms
304			(native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd,
305			native/cygwin).
306			- added primitive ethernet emulation (ipv4 only), which allows
307			the following platforms that only have tun drivers to work:
308			/* none yet tested */
309			- portability workarounds, especially for unfriendly freebsd
310			- very minor bugfixes
311			- warnings when choosing insecure ciphers/hashes
312			- reduced default hmac length to 8.
313			- cvs now contains configure, Makefile.in and other generated files.
314			- added doc/complex-example to the distribution.
315
316			1.0 distant past
317			- protocol version 0.1.
318			- tweaked various timeouts to help very slow (486) class
319			machines or nets with many hosts.
320			- tweaked rate-limiting to be more forgiving for hosts
321			connecting through routers (not a fix).
322	pcg	1.2