|
|
1 | 1.7 |
|
|
2 | - started to gnuify vpe. |
|
|
3 | - asymmetric rekeying behaviour, so hosts don't rekey simultaneously. |
|
|
4 | - new configure option --enable-static-daemon. |
|
|
5 | - fix configure --help output. |
|
|
6 | |
|
|
7 | 1.6.1 Wed May 12 14:48:20 CEST 2004 |
|
|
8 | - fix -c switch that has been broken due to a last-minute fix |
|
|
9 | to option and config file parsing. |
|
|
10 | |
|
|
11 | 1.6 Mon May 10 20:55:10 CEST 2004 |
1 | - protocol version 0.1, compatible with older releases. |
12 | - protocol version 0.1, compatible with older releases. |
2 | - do not RESET on sequence number problems. |
13 | - do not RESET on out-of-sequence packets (good for wireless). |
|
|
14 | - various non-security-related bugfixes. |
|
|
15 | - c++ify (at least make it compile with g++-3.4, which should make |
|
|
16 | it a little bit more standard c++). |
3 | |
17 | |
4 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
18 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
5 | - protocol version 0.1, compatible with older releases. |
19 | - protocol version 0.1, compatible with older releases. |
6 | - vped will refuse to start when hostkey and public key do not match. |
20 | - vped will refuse to start when hostkey and public key do not match. |
7 | - updated lzf code to version 1.2. |
21 | - updated lzf code to version 1.2. |
8 | - better error reporting for "unusual" conditions, like failing |
22 | - better error reporting for "unusual" conditions, like failing |
9 | to allocate memory, that should not normally happen and |
23 | to allocate memory, that should not normally happen and |
10 | will otherwise result in spurious other error messages. Also |
24 | will otherwise result in spurious other error messages. Also |
11 | adds paranoid checks in case openssl's API changes in a bad way. |
25 | adds paranoid checks in case openssl's API changes in a bad way. |
12 | - fix a bug where queued vpn packets were cleared to zero. while |
26 | - fix a bug where queued vpn packets were cleared to zero. while |
13 | this doesn't affect security, it did cause warning messages and |
27 | this doesn't affect security, it did cause warning messages and |
14 | unnecessary connectivity delays. |
28 | unnecessary connectivity delays. |
15 | |
29 | |
16 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
30 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
17 | - protocol version 0.1, compatible with older releases. |
31 | - protocol version 0.1, compatible with older releases. |
18 | - better retry behaviour on key mismatch. |
32 | - better retry behaviour on key mismatch. |
19 | - use select-based io_manager instead of poll-based one. |
33 | - use select-based io_manager instead of poll-based one. |
20 | - share io manager between rxvt-unicode and vpe. |
34 | - share io manager between rxvt-unicode and vpe. |
21 | - sooo many *BSD workarounds because no BSD I could find is even |
35 | - sooo many *BSD workarounds because no BSD I could find is even |
22 | remotely POSIX-compatible. |
36 | remotely POSIX-compatible. |
23 | |
37 | |
24 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
38 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
25 | - protocol version 0.1. |
39 | - protocol version 0.1. |
26 | - tincd kernel interface code imported, more supported platforms |
40 | - tincd kernel interface code imported, more supported platforms |
27 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
41 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
28 | native/cygwin). |
42 | native/cygwin). |
29 | - added primitive ethernet emulation (ipv4 only), which allows |
43 | - added primitive ethernet emulation (ipv4 only), which allows |
30 | the following platforms that only have tun drivers to work: |
44 | the following platforms that only have tun drivers to work: |
31 | /* none yet tested */ |
45 | /* none yet tested */ |
32 | - portability workarounds, especially for unfriendly freebsd |
46 | - portability workarounds, especially for unfriendly freebsd |
33 | - very minor bugfixes |
47 | - very minor bugfixes |
34 | - warnings when choosing insecure ciphers/hashes |
48 | - warnings when choosing insecure ciphers/hashes |
35 | - reduced default hmac length to 8. |
49 | - reduced default hmac length to 8. |
36 | - cvs now contains configure, Makefile.in and other generated files. |
50 | - cvs now contains configure, Makefile.in and other generated files. |
37 | - added doc/complex-example to the distribution. |
51 | - added doc/complex-example to the distribution. |
38 | |
52 | |
39 | 1.0 |
53 | 1.0 distant past |
40 | - protocol version 0.1. |
54 | - protocol version 0.1. |
41 | - tweaked various timeouts to help very slow (486) class |
55 | - tweaked various timeouts to help very slow (486) class |
42 | machines or nets with many hosts. |
56 | machines or nets with many hosts. |
43 | - tweaked rate-limiting to be more forgiving for hosts |
57 | - tweaked rate-limiting to be more forgiving for hosts |
44 | connecting through routers (not a fix). |
58 | connecting through routers (not a fix). |
45 | |
59 | |