summaryrefslogtreecommitdiff
path: root/doc
AgeCommit message (Collapse)Author
2015-04-03Move logging wrappers into common/log, and add a DEBUG log level.Yawning Angel
Implements feature #15576.
2015-02-17Add support for acting as a ScrambleSuit client.Yawning Angel
This allows obfs4proxy to be used as a ScrambleSuit client that is wire compatible with the obfs4proxy implementation, including session ticket support, and length obfuscation. The current implementation has the following limitations: * IAT obfuscation is not supported (and is disabled in all other ScrambleSuit implementations by default). * The length distribution and probabilites are different from those generated by obfsproxy and obfsclient due to a different DRBG. * Server support is missing and is unlikely to be implemented.
2015-01-14Document the obfs4 NaCl secretbox nonce generation.Yawning Angel
Forgot to include this in the spec, though it was documented as a comment in the framing code.
2014-09-24Write an example obfs4 bridge line to "obfs4_bridgeline.txt".Yawning Angel
Write an example client bridge line suitable for use with the running obfs4 server instance to "obfs4_bridgeline.txt" for the convenience of bridge operators.
2014-09-06Fix spelling error in man page, no functional changes.Yawning Angel
2014-09-06Add a man page for obfs4proxy.Yawning Angel
2014-08-27Change the TYPE_PRNG_SEED length to 24.Yawning Angel
This matches what the code actually sends. It's shorter than the ScrambleSuit PRNG seed, but that's because the SipHash-2-4 based Hash_DRBG has 24 bytes of internal state (key + initial output).
2014-06-02Change how the length obfsucation mask is derived.Yawning Angel
Instead of using the nonce for the secret box, just use SipHash-2-4 in OFB mode instead. The IV is generated as part of the KDF. This simplifies the code a decent amount and also is better on the off chance that SipHash-2-4 does not avalanche as well as it is currently assumed. While here, also decouple the fact that *this implementation* of obfs4 uses a PRNG with 24 bytes of internal state for protocol polymorphism instead of 32 bytes (that the spec requires). THIS CHANGE BREAKS WIRE PROTCOL COMPATIBILITY.
2014-05-23Change the maximm handshake length to 8192 bytes.Yawning Angel
* handhake_ntor_test now is considerably more comprehensive. * The padding related constants in the spec were clarified. This breaks wireprotocol compatibility.
2014-05-21Fix constants in the spec to reflect the code.Yawning Angel
2014-05-21Change the MSS to 1448 bytes, because timestamps are a thing.Yawning Angel
This breaks wireprotocol compatibility.
2014-05-17Update the spec with feedback from arma (No functional changes).Yawning Angel
2014-05-16Add a protocol specification.Yawning Angel
This fixes #4.