ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/gvpe/NEWS
(Generate patch)

Comparing gvpe/NEWS (file contents):
Revision 1.124 by root, Thu Jan 29 00:21:38 2015 UTC vs.
Revision 1.133 by root, Thu Nov 10 15:15:23 2016 UTC

1GVPE NEWS 1GVPE NEWS
2 2
3TODO: bridge mode, finally? 33.0 Thu Nov 10 15:39:58 CET 2016
4TODO: gcm mode?
5TODO: replace ripemd160 as the only authentication hash.
6TODO: increase rsa size.
7TODO: replace transport bits by transport endpoint structs?
8TODO: http://incog-izick.blogspot.de/2011/08/using-openssl-aes-gcm.html
9TODO: http://stackoverflow.com/questions/12153009/openssl-c-example-of-aes-gcm-using-evp-interfaces
10
11TODO: verify
12TODO: make sense of overhead calculation
13TODO: if-up &c should not be scripts?
14TODO: ipv6
15TODO: gvpectrl should not use default privatekey,. or maybe document it better
16 - INCOMPATIBLE CHANGE: core protocol version 1.0. 4 - INCOMPATIBLE CHANGE: core protocol version 1.0.
17 - INCOMPATIBLE CHANGE: node sections are now introduced 5 - INCOMPATIBLE CHANGE: node sections are now introduced
18 with "node nodename", not "node = nodename". 6 with "node nodename", not "node = nodename".
7 - INCOMPATIBLE CHANGE: gvpectrl -g will now generate a single
8 keypair, while -G will try to generate all keypairs as before.
9 - openssl 1.0.2 is the latest supported openssl release,
10 openssl 1.1.0 is not supported at the moment as the work to
11 make it compatible to both versions is just too much. a switch
12 to openssl 1.1 or another library will be done in a future release.
13 - update examples to not generate keys centrally, but locally on each
14 node.
15 - add workaround for temporary/rare ENOBUFS condition.
19 - while individual packets couldn't be replayed, a whole session 16 - while individual packets couldn't be replayed, a whole session
20 could be replayed - this has been fixed by an extra key exchange. 17 could be replayed - this has been fixed by an extra key exchange.
18 - fix a delete vs. delete [] mismatch in the central logging function.
21 - in addition to rsa key exchange and authentication, the handshake now 19 - in addition to rsa key exchange and authentication, the handshake now
22 adds a diffie-hellman key exchange (using curve25119) for perfect 20 adds a diffie-hellman key exchange (using curve25119) for perfect
23 forward secrecy. mac and cipher keys are derived using HKDF. 21 forward secrecy. mac and cipher keys are derived using HKDF.
24 - rsa key sizes are now configurable and larger (default is 3072). 22 - rsa key sizes are now configurable and larger (default is 3072).
25 correspondingly, the minimum mtu is no longer 296 but 576. 23 correspondingly, the minimum mtu is no longer 296 but 576.
32 - the pid-file now accepts %s as nodename as elsewhere. 30 - the pid-file now accepts %s as nodename as elsewhere.
33 - switch to counter mode (only aes supported at the moment in 31 - switch to counter mode (only aes supported at the moment in
34 openssl). this gets rid of the need to generate a random iv, 32 openssl). this gets rid of the need to generate a random iv,
35 is likely more secure (and, as a side effect, gets rid of 33 is likely more secure (and, as a side effect, gets rid of
36 slow randomness generation. counter mode is often faster 34 slow randomness generation. counter mode is often faster
37 then cbc mode as well). 35 then cbc mode as well, and packets are smaller).
38 - no longer use RAND_bytes to generate session keys - you NEED 36 - no longer use RAND_bytes to generate session keys - you NEED
39 a real source of entropy now (e.g. egd or /dev/random - see the 37 a real source of entropy now (e.g. egd or /dev/random - see the
40 openssl documentation). 38 openssl documentation).
41 - multiple node statements for the same node are now supported 39 - multiple node statements for the same node are now supported
42 and will be merged. 40 and will be merged.
44 of the config file. 42 of the config file.
45 - if-up scripts can now be specified with absolute paths. 43 - if-up scripts can now be specified with absolute paths.
46 - new global option: serial, to detect configuration mismatches. 44 - new global option: serial, to detect configuration mismatches.
47 - use HKDF as authentication proof, not HMAC or a plain hash 45 - use HKDF as authentication proof, not HMAC or a plain hash
48 (hint by Ilmari Karonen). 46 (hint by Ilmari Karonen).
49 - during rekeying or conenction establishments, hmac authentication 47 - during rekeying or connection establishments, hmac authentication
50 errors could occur and reset the connection. Transient hmac 48 errors could occur and reset the connection. Transient hmac
51 authentication errors are now being ignored for 3 seconds. 49 authentication errors are now being ignored for 3 seconds.
52 - log the reason for a conneciton loss. 50 - log the reason for a conneciton loss.
53 - use a (hopefully) constant time memcmp to compare internal secrets. 51 - use a (hopefully) constant time memcmp to compare internal secrets.
52 - fix a (harmless) errornous out of bounds stack read that would trigger
53 gcc's -fsanitize=address.
54 - bump old packet window size from 512 to 65536.
55 - update for big changes in openssl 1.1 API, wrap primitives
56 to make further changes easier.
57 - correctly check return values for openssl 1.0.0 and later.
58 - check for both public and private key file when deciding whether
59 to skip generating a key to avoid accidental overwrites.
54 60
552.25 Sat Jul 13 06:42:33 CEST 2013 612.25 Sat Jul 13 06:42:33 CEST 2013
56 - INCOMPATIBLE CHANGE: no longer enable udp protocol if no other 62 - INCOMPATIBLE CHANGE: no longer enable udp protocol if no other
57 protocols are enabled - this is necessary when you have nodes with 63 protocols are enabled - this is necessary when you have nodes with
58 completely unknown protocols, to force mediated connection requests. 64 completely unknown protocols, to force mediated connection requests.

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines