Better byte notation

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fixed rehandshake-related code

* Do not use buffered termination channels: we need guarantee that
  processor is stopped. Otherwise we can be locked and client will be
  timeouted
* Single peersLock call, no separate read and write related
* Create processing goroutine earlier

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Close old sockets during rehandshake

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

No need in termination before breaking the cycle

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fix typo in code comment

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Little log messages refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Simple optimization for TCP buffer check

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Words refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Slightly lesser code in handshake

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fixed benchmark tests

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Link to Git repository browser

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Do not expor Busy* lock to statistics

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Increase version

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Argon2 is the winner of PHC. It must replace PBKDF2

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Clearer arrows

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Mention handshake packets length hiding

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparing for 4.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Handshake messages noising

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Huge code refactoring

* Code simplification. Lesser synchronization channels
* Processing parallelization of clients on the server side
* Double buffers for network/Ethernet packets prefetching
* Removed length prefix in TCP messages. Now they are
  indistinguishable from random
* Constant time nonce uniqueness checking
* Increased performance

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Move 'in the media' section lower

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Update ed25519 library: performance optimizations

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Links to packages and ports

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move nonce in another transport packet place

This is preparation for changing of TCP protocol: in TCP we can easily
predict needed nonce and udnerstand the bounds of the packet,
eliminating the need of size prefix at all.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Copy russian README during installation

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Refactoring and some info on russian

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Do not check nonce against buckets in TCP mode

There is no need in nonce checking against buckets in TCP mode because
all incoming data can not be reordered normally. Any reordering means
intrusion by the man in the middle. This is performance optimization.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.5 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Refactor makedist.sh to make it aware of submodules

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparing for 3.5 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Update poly1305 upstream library with ARM-related fixes

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to use HTTP proxies for accessing server

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Server can listen on all network protocols at once

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to use TCP as a base transport

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Make transport less dependent on UDP nature

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Example network throughput

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Do not mention sourceforge.net anymore

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Recommend Go 1.5, because of performance reasons

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Go 1.5 recommends slightly different LDFLAGS usage

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Go 1.5 sets GOMAXPROC automatically

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

develop branch should be default for the developer

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Link in developer-related section to source code getting

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Replace src/Makefile with git submodules

Self-written Makefile did exactly the same task as git-submodule,
so replace with this already got tool for simplicity.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Update golang.org/x/crypto/poly1305 upstream library

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Official repository is on git.cypherpunks.ru

Because github.com blocked SSH access to me.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Reverse downloadable versions list

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Sections deabbreviations

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Aim FDL to concrete section

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move UDP-network related code from the transport file

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Add links to several articles

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.4 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Various fixes

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Handshake packets currently have fixed sizes

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Replace -noncediff with the hash keeping up to 256 seen nonces

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to use EGD-compatible PRNGs

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] 832 bits in average from PRNG are required for handshake

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Dots at end of list items

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Update TODOs with suggestions from the mailling list

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.3 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Preparing for 3.3 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Replace many panic() with Fatalln less verbose and scary printing

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ignore UDP sending errors as it is not necessary to know about

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Update user examples, making it more understandable

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Use /dev/urandom for new client identity generation

* FreeBSD has /dev/random and it never blocks, giving as much entropy as requested
* GNU/Linux has /dev/random can give shorter output
* /dev/urandom exists in both systems and never blocks

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Example on CLIENTID+verifier creation

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Forgotten common.mk

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Separate BSD and old GNU Makes related part

Current Makefile can be used with BSD Make and GNU Make 4.x. Old GNU
Make versions does not work. Separate that dependent parts to two
Makefiles: one for BSD Make, other for GNU Make >=3.x.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Add download link for 3.2 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Created installation targets for ease of porting

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Preparing for 3.2 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Capitalize makefile filename

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

BSD Make compatible makefile

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Include dependent libraries source code in release tarballs

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move source code to separate directory. Bind dependent libraries to commits

Prepare to supply all dependent libraries together with GoVPN source
code. Move everything to src subdirectory. Write makefile that will
clone necessary repositories with specified commits.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Add missing separate curve25519 library notice

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Remove Git-related information from contacts

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Missed closing parenthesis

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.1 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Mention dependent libraries mirror

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Preparing for 3.1 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Encode public keys with Elligator before sending over the wire

This should prevent detection of successful password guess try.
Thanks to Watson Ladd for the suggestion!

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Remove all new variable allocations at all in transport protocol

Also remove success check of WriteToUDP. It is unnecessary in practice.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

WriteToUDP is lighter than WriteTo

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Fix grammar

Thanks to Patrick Chkoreff.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Use A-EKE instead of EKE. Doc refactoring. Preparing for 3.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Per-peer timeout, noncediff, noise, cpr settings

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Add Established statistics field to know when connection was established

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] XTEA used as PRP

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] README updating due to noise and CPR features

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to generate Constant Packet Rate traffic

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Overview refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Correct FramesIn counting, take into account heartbeats

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Timeout is duration, not integer. Simplify code

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>