shapeshifter-dispatcher.git - [shapeshifter-dispatcher]

Age	Commit message (Collapse)	Author
2014-08-17	Massive cleanup/code reorg.	Yawning Angel
	* Changed obfs4proxy to be more like obfsproxy in terms of design, including being an easy framework for developing new TCP/IP style pluggable transports. * Added support for also acting as an obfs2/obfs3 client or bridge as a transition measure (and because the code itself is trivial). * Massively cleaned up the obfs4 and related code to be easier to read, and more idiomatic Go-like in style. * To ease deployment, obfs4proxy will now autogenerate the node-id, curve25519 keypair, and drbg seed if none are specified, and save them to a JSON file in the pt_state directory (Fixes Tor bug #12605).
2014-06-25	Change the import paths to point to the tp.o repository.	Yawning Angel

2014-06-19	Use Vose's Alias Method to sample the weighted distribution.	Yawning Angel
	The weight generation code also was cleaned up (and now can support generating distributions that look like what ScrambleSuit does as a compile time change). Per: http://www.keithschwarz.com/darts-dice-coins/
2014-06-02	Move the SipHash DRBG off into it's own package.	Yawning Angel

2014-05-28	Change the weighted distribution algorithm be uniform.	Yawning Angel
	The old way was biasted towards the earlier values. Thanks to asn for pointing this out and suggesting an alternative. As an additional tweak, do not reuse the drbg seed when calculating the IAT distribution, but instead run the seed through SHA256 first, for extra tinfoil goodness.
2014-05-24	Move utils.go to csrand/csrand.go, and clean up the interface.	Yawning Angel
	All of the obfs4 code except unit tests now uses the csrand wrapper routines.
2014-05-18	Change the server failure close delay/discard length to be consistent.	Yawning Angel
	It will vary per bridge as it is based off the DRBG, but ever attempt at poking at any given bridge will exhibit consistent behavior.
2014-05-16	Change the handshake wire format.	Yawning Angel
	* HMAC-SHA256 -> HMAC-SHA256-128. * Mark/MAC are now both caluclated using Public Key \| NodeID. This breaks wire protocol compatibility.
2014-05-15	Load the drbg-seed from the ServerTransportOptions args.	Yawning Angel
	This also adds the drgb-seed option to the `-gen` obfs4proxy output.
2014-05-15	Change hashDrbg to take a drbgSeed for initialization.	Yawning Angel
	This paves the way for having servers use the same seed for all incoming connections, across multiple startup/shutdown cycles. As opposed to the current situation where each Obfs4Listener will randomly generate it's seed at creation time. Additionally, use 256 bit seeds (128 bit SipHash-2-4 key + 16 bytes of initial material).
2014-05-13	Add vim modelines to some files (No functional changes).	Yawning Angel

2014-05-13	Fix e-mail address in the copyright notice.	Yawning Angel

2014-05-13	Add preliminary support for packet length obfuscation.	Yawning Angel
	The same algorithm as ScrambleSuit is used, except: * SipHash-2-4 in OFB mode is used to create the distribution. * The system CSPRNG is used when sampling the distribution. This fixes most of #3, all that remains is generating and sending a persistent distribution on the server side to the client.