[DOC] Add Ron Rivest's CnW to thanks page

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Just notion of used algorithms is excessive

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Prefix testing-related global variables for clarity

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Input transport data size check

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Check that specified MTUs are not greater than MTUMax

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Lock-values are better passed as a pointer

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move handshake make-target above, as others are dependent on it

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Take into account user's MTU and encryptionless settings for CPR calculations

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

EncLess -> Encless for convenience

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move cprCycleCalculate to peer.go, as it is the only user of it

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Use faster Salsa20 instead of HKDF in AONT

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Faster chaffing

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Rename chaffing package

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Actually we hash in different order

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Trivial URL correction

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Quick link to tarball download page

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

golang.org/x/crypto/hkdf is required for building

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Fix link to russian about page in release announcement email template

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

golang.org/x/crypto/pbkdf2 is not used anymore

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Simple handshake passing tests

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparation for 5.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Encryptionless mode

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Separate handshake diagram on three stages for beauty

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Hide handshake diagram's footer

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Create glossary in user manual and move pages to it

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Direct to maillist archives

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Configure MTU on per-user basis

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Simplify transport packet padding scheme, save 1 byte

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to explicitly specify TAP interface, without up-script using

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Initial encryptionless mode support

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Add encryptionless confidentiality preserving encoding

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Test all subpackages in govpn

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Make SliceZero function public

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

govpn-verifier can also use EGD

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Add missing source code file copyright

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Raise copyright years

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Let newclient.sh will search for executables in current directory

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 4.2 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparing for 4.2 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Already mentioned server side's verifier

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Missed verb in the sentence

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Link identity page with the verifier

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Skip peer creation if either up-script or interface call failed

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Pretty print peer's identity in statistics

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Links in russian about page

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Check that verifier with public key is provided for verifying

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

FAQ section

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Translated russian about nodename

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 4.1 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Add more underlying libraries mirrors

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Use Argon2d PHC winner instead of PBKDF2

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

@bullet is not necessary in itemize

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

If proxy is specified, then forcefully use TCP protocol for convenience

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Additional buffer bounds checks

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Add missing copyright docstrings

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fixed test passing

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Link to russian description in email template

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 4.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fix overriden tarballs texinfo document node's name

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move nonce expectation calculation to common function

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

JSON configuration

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Rename NoiseEnable field for simplicity

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Better byte notation

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fixed rehandshake-related code

* Do not use buffered termination channels: we need guarantee that
  processor is stopped. Otherwise we can be locked and client will be
  timeouted
* Single peersLock call, no separate read and write related
* Create processing goroutine earlier

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Close old sockets during rehandshake

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

No need in termination before breaking the cycle

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fix typo in code comment

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Little log messages refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Simple optimization for TCP buffer check

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Words refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Slightly lesser code in handshake

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Fixed benchmark tests

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Link to Git repository browser

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Do not expor Busy* lock to statistics

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Increase version

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Argon2 is the winner of PHC. It must replace PBKDF2

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Clearer arrows

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Mention handshake packets length hiding

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparing for 4.0 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Handshake messages noising

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Huge code refactoring

* Code simplification. Lesser synchronization channels
* Processing parallelization of clients on the server side
* Double buffers for network/Ethernet packets prefetching
* Removed length prefix in TCP messages. Now they are
  indistinguishable from random
* Constant time nonce uniqueness checking
* Increased performance

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Move 'in the media' section lower

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Update ed25519 library: performance optimizations

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Links to packages and ports

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Move nonce in another transport packet place

This is preparation for changing of TCP protocol: in TCP we can easily
predict needed nonce and udnerstand the bounds of the packet,
eliminating the need of size prefix at all.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Copy russian README during installation

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Refactoring and some info on russian

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Do not check nonce against buckets in TCP mode

There is no need in nonce checking against buckets in TCP mode because
all incoming data can not be reordered normally. Any reordering means
intrusion by the man in the middle. This is performance optimization.

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Download link for 3.5 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Merge branch 'develop'

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Refactor makedist.sh to make it aware of submodules

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Preparing for 3.5 release

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Update poly1305 upstream library with ARM-related fixes

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

[DOC] Refactoring

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to use HTTP proxies for accessing server

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Server can listen on all network protocols at once

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

Ability to use TCP as a base transport

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>