|
|
1 | 1.7 |
|
|
2 | - asymmetric rekeying behaviour, so hosts don't rekey simultaneously. |
|
|
3 | |
| 1 | 1.6.1 Wed May 12 14:48:20 CEST 2004 |
4 | 1.6.1 Wed May 12 14:48:20 CEST 2004 |
| 2 | - fix -c switch that has been broken due to a last-minute fix |
5 | - fix -c switch that has been broken due to a last-minute fix |
| 3 | to option and config file parsing. |
6 | to option and config file parsing. |
| 4 | |
7 | |
| 5 | 1.6 Mon May 10 20:55:10 CEST 2004 |
8 | 1.6 Mon May 10 20:55:10 CEST 2004 |
| 6 | - protocol version 0.1, compatible with older releases. |
9 | - protocol version 0.1, compatible with older releases. |
| 7 | - do not RESET on out-of-sequence packets (good for wireless). |
10 | - do not RESET on out-of-sequence packets (good for wireless). |
| 8 | - various non-security-related bugfixes. |
11 | - various non-security-related bugfixes. |
| 9 | - c++ify (at least make it compile with g++-3.4, which should make |
12 | - c++ify (at least make it compile with g++-3.4, which should make |
| 10 | it a little bit more standard c++). |
13 | it a little bit more standard c++). |
| 11 | |
14 | |
| 12 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
15 | 1.5 Fri Jan 30 00:50:04 CET 2004 |
| 13 | - protocol version 0.1, compatible with older releases. |
16 | - protocol version 0.1, compatible with older releases. |
| 14 | - vped will refuse to start when hostkey and public key do not match. |
17 | - vped will refuse to start when hostkey and public key do not match. |
| 15 | - updated lzf code to version 1.2. |
18 | - updated lzf code to version 1.2. |
| 16 | - better error reporting for "unusual" conditions, like failing |
19 | - better error reporting for "unusual" conditions, like failing |
| 17 | to allocate memory, that should not normally happen and |
20 | to allocate memory, that should not normally happen and |
| 18 | will otherwise result in spurious other error messages. Also |
21 | will otherwise result in spurious other error messages. Also |
| 19 | adds paranoid checks in case openssl's API changes in a bad way. |
22 | adds paranoid checks in case openssl's API changes in a bad way. |
| 20 | - fix a bug where queued vpn packets were cleared to zero. while |
23 | - fix a bug where queued vpn packets were cleared to zero. while |
| 21 | this doesn't affect security, it did cause warning messages and |
24 | this doesn't affect security, it did cause warning messages and |
| 22 | unnecessary connectivity delays. |
25 | unnecessary connectivity delays. |
| 23 | |
26 | |
| 24 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
27 | 1.4 Sat Jan 17 15:49:21 CET 2004 |
| 25 | - protocol version 0.1, compatible with older releases. |
28 | - protocol version 0.1, compatible with older releases. |
| 26 | - better retry behaviour on key mismatch. |
29 | - better retry behaviour on key mismatch. |
| 27 | - use select-based io_manager instead of poll-based one. |
30 | - use select-based io_manager instead of poll-based one. |
| 28 | - share io manager between rxvt-unicode and vpe. |
31 | - share io manager between rxvt-unicode and vpe. |
| 29 | - sooo many *BSD workarounds because no BSD I could find is even |
32 | - sooo many *BSD workarounds because no BSD I could find is even |
| 30 | remotely POSIX-compatible. |
33 | remotely POSIX-compatible. |
| 31 | |
34 | |
| 32 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
35 | 1.2 Fri Oct 17 03:44:44 CEST 2003 |
| 33 | - protocol version 0.1. |
36 | - protocol version 0.1. |
| 34 | - tincd kernel interface code imported, more supported platforms |
37 | - tincd kernel interface code imported, more supported platforms |
| 35 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
38 | (native/linux (2.4), tincd/linux (2.2 and 2.4), tincd/freebsd, |
| 36 | native/cygwin). |
39 | native/cygwin). |
| 37 | - added primitive ethernet emulation (ipv4 only), which allows |
40 | - added primitive ethernet emulation (ipv4 only), which allows |
| 38 | the following platforms that only have tun drivers to work: |
41 | the following platforms that only have tun drivers to work: |
| 39 | /* none yet tested */ |
42 | /* none yet tested */ |
| 40 | - portability workarounds, especially for unfriendly freebsd |
43 | - portability workarounds, especially for unfriendly freebsd |
| 41 | - very minor bugfixes |
44 | - very minor bugfixes |
| 42 | - warnings when choosing insecure ciphers/hashes |
45 | - warnings when choosing insecure ciphers/hashes |
| 43 | - reduced default hmac length to 8. |
46 | - reduced default hmac length to 8. |
| 44 | - cvs now contains configure, Makefile.in and other generated files. |
47 | - cvs now contains configure, Makefile.in and other generated files. |
| 45 | - added doc/complex-example to the distribution. |
48 | - added doc/complex-example to the distribution. |
| 46 | |
49 | |
| 47 | 1.0 |
50 | 1.0 distant past |
| 48 | - protocol version 0.1. |
51 | - protocol version 0.1. |
| 49 | - tweaked various timeouts to help very slow (486) class |
52 | - tweaked various timeouts to help very slow (486) class |
| 50 | machines or nets with many hosts. |
53 | machines or nets with many hosts. |
| 51 | - tweaked rate-limiting to be more forgiving for hosts |
54 | - tweaked rate-limiting to be more forgiving for hosts |
| 52 | connecting through routers (not a fix). |
55 | connecting through routers (not a fix). |
| 53 | |
56 | |
