|
|
1 | 1.7 |
|
|
2 | - new per-mode option "max-retry". |
|
|
3 | - started to gnuify vpe. |
|
|
4 | - asymmetric rekeying behaviour, so hosts don't rekey simultaneously. |
|
|
5 | - new configure option --enable-static-daemon. |
|
|
6 | - fix configure --help output. |
|
|
7 | |
|
|
8 | 1.6.1 Wed May 12 14:48:20 CEST 2004 |
|
|
9 | - fix -c switch that has been broken due to a last-minute fix |
|
|
10 | to option and config file parsing. |
|
|
11 | |
|
|
12 | 1.6 Mon May 10 20:55:10 CEST 2004 |
1 | - protocol version 0.1, compatible with older releases. |
13 | - protocol version 0.1, compatible with older releases. |
2 | - do not RESET on sequence number problems. |
14 | - do not RESET on out-of-sequence packets (good for wireless). |
|
|
15 | - various non-security-related bugfixes. |
|
|
16 | - c++ify (at least make it compile with g++-3.4, which should make |
|
|
17 | it a little bit more standard c++). |
3 | |
18 | |
4 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
19 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
5 | - protocol version 0.1, compatible with older releases. |
20 | - protocol version 0.1, compatible with older releases. |
6 | - vped will refuse to start when hostkey and public key do not match. |
21 | - vped will refuse to start when hostkey and public key do not match. |
7 | - updated lzf code to version 1.2. |
22 | - updated lzf code to version 1.2. |
8 | - better error reporting for "unusual" conditions, like failing |
23 | - better error reporting for "unusual" conditions, like failing |
9 | to allocate memory, that should not normally happen and |
24 | to allocate memory, that should not normally happen and |
10 | will otherwise result in spurious other error messages. Also |
25 | will otherwise result in spurious other error messages. Also |
11 | adds paranoid checks in case openssl's API changes in a bad way. |
26 | adds paranoid checks in case openssl's API changes in a bad way. |
12 | - fix a bug where queued vpn packets were cleared to zero. while |
27 | - fix a bug where queued vpn packets were cleared to zero. while |
13 | this doesn't affect security, it did cause warning messages and |
28 | this doesn't affect security, it did cause warning messages and |
14 | unnecessary connectivity delays. |
29 | unnecessary connectivity delays. |
15 | |
30 | |
16 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
31 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
17 | - protocol version 0.1, compatible with older releases. |
32 | - protocol version 0.1, compatible with older releases. |
18 | - better retry behaviour on key mismatch. |
33 | - better retry behaviour on key mismatch. |
19 | - use select-based io_manager instead of poll-based one. |
34 | - use select-based io_manager instead of poll-based one. |
20 | - share io manager between rxvt-unicode and vpe. |
35 | - share io manager between rxvt-unicode and vpe. |
21 | - sooo many *BSD workarounds because no BSD I could find is even |
36 | - sooo many *BSD workarounds because no BSD I could find is even |
22 | remotely POSIX-compatible. |
37 | remotely POSIX-compatible. |
23 | |
38 | |
24 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
39 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
25 | - protocol version 0.1. |
40 | - protocol version 0.1. |
26 | - tincd kernel interface code imported, more supported platforms |
41 | - tincd kernel interface code imported, more supported platforms |
27 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
42 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
28 | native/cygwin). |
43 | native/cygwin). |
29 | - added primitive ethernet emulation (ipv4 only), which allows |
44 | - added primitive ethernet emulation (ipv4 only), which allows |
30 | the following platforms that only have tun drivers to work: |
45 | the following platforms that only have tun drivers to work: |
31 | /* none yet tested */ |
46 | /* none yet tested */ |
32 | - portability workarounds, especially for unfriendly freebsd |
47 | - portability workarounds, especially for unfriendly freebsd |
33 | - very minor bugfixes |
48 | - very minor bugfixes |
34 | - warnings when choosing insecure ciphers/hashes |
49 | - warnings when choosing insecure ciphers/hashes |
35 | - reduced default hmac length to 8. |
50 | - reduced default hmac length to 8. |
36 | - cvs now contains configure, Makefile.in and other generated files. |
51 | - cvs now contains configure, Makefile.in and other generated files. |
37 | - added doc/complex-example to the distribution. |
52 | - added doc/complex-example to the distribution. |
38 | |
53 | |
39 | 1.0 |
54 | 1.0 distant past |
40 | - protocol version 0.1. |
55 | - protocol version 0.1. |
41 | - tweaked various timeouts to help very slow (486) class |
56 | - tweaked various timeouts to help very slow (486) class |
42 | machines or nets with many hosts. |
57 | machines or nets with many hosts. |
43 | - tweaked rate-limiting to be more forgiving for hosts |
58 | - tweaked rate-limiting to be more forgiving for hosts |
44 | connecting through routers (not a fix). |
59 | connecting through routers (not a fix). |
45 | |
60 | |