1. 08 Nov, 2019 1 commit
  2. 07 Nov, 2019 1 commit
  3. 06 Nov, 2019 1 commit
  4. 31 Oct, 2019 2 commits
  5. 22 Oct, 2019 1 commit
  6. 04 Jul, 2019 1 commit
  7. 03 Jul, 2019 1 commit
  8. 27 Jun, 2019 1 commit
  9. 26 Jun, 2019 1 commit
  10. 19 Jun, 2019 1 commit
    • Implement HMAC for babel · 12ba2ee4
      HMAC is added in babel call to prevent babel communication between nodes of different re6st networks. 
      This solves the problem of machines in different re6st networks but on the same LAN that exchange routes through babel. 
      The key used to authenticate packets is randomly created on 16 bytes by the registry and sent to nodes when they fetch network parameters. 
      This uses the WIP hmac branch of jech/babeld with Nexedi patches and the added possibility to not check HMAC in incoming packets for better HMAC integration on a HMAC-less network.
      
      /reviewed-on !18
      Killian Lufau committed
  11. 18 Jun, 2019 1 commit
  12. 12 Jun, 2019 1 commit
  13. 04 Jun, 2019 1 commit
  14. 15 May, 2019 2 commits
  15. 09 May, 2019 1 commit
    • OpenVPN 2.4.7 workaround to revert to previous MTU settings · d398aa93
      In commit 06974788,
      we increased the --link-mtu value as a temporary way to compensate the
      unexplained behaviour change of recent OpenVPN.
      
      This was partly due to encryption, which was enabled despite
      `--cipher none`. And it happens that the behaviour of --link-mtu only
      changed for the server, with a mysterious difference of 93 bytes.
      
      Hence the workaround to get identical tunnel MTU on both sides.
      
      /reviewed-on !13
      Killian Lufau committed
  16. 06 May, 2019 1 commit
    • Remove old fix in ovpn-client · 24fea8cd
      The fix to mark an interface as "up" and indicate its MTU was
      useful for machines with a single client, because OpenVPN would fail
      to configure them this way in OpenVPN 2.3. It has been fixed in 2.4
      so the fix has been removed.
      
      /reviewed-on !14
      Killian Lufau committed
  17. 03 May, 2019 1 commit
  18. 29 Apr, 2019 1 commit
    • Switch to OpenVPN 2.4 · 06974788
      The behaviour of --link-mtu has changed and we increase the values to
      at least have interface MTU greater than IPv6 minimum.
      We'll see later to have even greater values in ovpn_link_mtu_dict
      (so that the resulting MTU is closer to what we had with 2.3)
      or review the whole MTU part completely.
      Killian Lufau committed
  19. 10 Apr, 2019 1 commit
  20. 12 Mar, 2019 1 commit
  21. 21 Feb, 2019 1 commit
  22. 05 Feb, 2019 1 commit
  23. 14 Dec, 2018 1 commit
    • x509: gracefully handle ENOMEM when running openssl · 2b0d5043
      prevent this kind of errors when running openssl fail:
      
      ```
      10-12-2018 19:04:02 ERROR     AttributeError: 'NoneType' object has no attribute 'splitlines'
      Traceback (most recent call last):
        File "/opt/re6st/eggs/re6stnet-0.513-py2.7.egg/re6st/cli/node.py", line 428, in main
          s(*args)
        File "/opt/re6st/eggs/re6stnet-0.513-py2.7.egg/re6st/utils.py", line 191, in select
          R[r]()
        File "/opt/re6st/eggs/re6stnet-0.513-py2.7.egg/re6st/tunnel.py", line 399, in handlePeerEvent
          True, crypto.FILETYPE_ASN1)
        File "/opt/re6st/eggs/re6stnet-0.513-py2.7.egg/re6st/x509.py", line 136, in loadVerify
          for x in err.splitlines():
      ```
      
      /reviewed-on !6
      Jérome Perrin committed
  24. 17 Oct, 2018 2 commits
  25. 02 Oct, 2018 1 commit
  26. 25 Sep, 2018 2 commits
  27. 30 Aug, 2018 3 commits
  28. 09 Aug, 2018 1 commit
  29. 07 Aug, 2018 1 commit
  30. 01 Aug, 2018 3 commits
  31. 03 Jul, 2018 1 commit
  32. 02 Jul, 2018 1 commit