1 files changed, 49 insertions, 7 deletions

diff --git a/net/amnezia-tools/files/patch-man_wg.8 b/net/amnezia-tools/files/patch-man_wg.8
index 87e018ff2856..5356f8d2069c 100644
--- a/net/amnezia-tools/files/patch-man_wg.8
+++ b/net/amnezia-tools/files/patch-man_wg.8
@@ -1,4 +1,4 @@
---- man/wg.8.orig	2024-10-01 13:02:42 UTC
+--- man/wg.8.orig	2025-09-03 14:11:13 UTC
 +++ man/wg.8
 @@ -1,10 +1,10 @@
 -.TH WG 8 "2015 August 13" ZX2C4 "WireGuard"
@@ -67,7 +67,7 @@
  is optional and is by default off; setting it to 0 or "off" disables it.
  Otherwise it represents, in seconds, between 1 and 65535 inclusive, how often
  to send an authenticated empty packet to the peer, for the purpose of keeping
-@@ -119,11 +121,52 @@ A private key and a corresponding public key may be ge
+@@ -119,11 +121,94 @@ A private key and a corresponding public key may be ge
  .br
      $ umask 077
  .br
@@ -103,25 +103,67 @@
 +\fBs1\fP
 +Size of handshake initiation packet prepend junk. Should be the same on both ends.
 +.br
-+0–1132 (recomended 15–150), s1 + 56 ≠ s2
++0–1304 (recomended 15–150)
 +
 +.TP
 +\fBs2\fP
 +Size of handshake response packet prepend junk. Should be the same on both ends.
 +.br
-+0–1188 (recomended 15–150), s1 + 56 ≠ s2
++0–1360 (recomended 15–150)
++
++.TP
++\fBs3\fP
++Size of handshake cookie packet prepend junk. Should be the same on both ends.
++.br
++0–1388 (recomended 15–150)
++
++.TP
++\fBs4\fP
++Size of data transport packet prepend junk. Should be the same on both ends.
++Will effectively decrease maximum possible MTU of interface.
++.br
++0–160 (recomended 15-32)
 +
 +.TP
 +\fBh1-h4\fP
 +Custom identifiers for initiation/response/cookie/data packets. Should be the same on both ends.
 +.br
-+The unique value in range of 5 - 4,294,967,295 (0x5 - 0xFFFFFFFF), h1 != h2 != h3 != h4
++Should be either the unique value in range of 5 - 4294967295 (0x5 - 0xFFFFFFFF)
++.br
++Or should be either the range of two such values, via '-', like 2294967295-4294970000, when range is used a random number from the range selected for each packet.
++For range, first value should be less then second.
++.br
++Such ranges or values should not intersect/match each other.
++
++.TP
++\fBi1-i5\fP
++Pre-crafted custom signature packets to be send before hadshake. May be configured on either side and may be different between sides.
++These packets are being send prior to every handshake, in the same way as Junk packets do. The sending order is i1, i2, i3, i4, i5. If there is no value specified, the packet is skipped.
++.br
++Value is a sequence of tags specified below:
 +
++.br
++\fB<b 0x[seq]>\fP - static bytes tag. Dumps [seq] as-is to the packet. [seq] is hex-encoded sequence which represents bytes sequence (2 hex numbers per byte) and is always even-sized
++
++.br
++\fB<r [size]>\fP - random bytes tag. Dumps [size] amount of randomly-generated bytes to the packet
++
++.br
++\fB<rd [size]>\fP - random digits tag. Dumps [size] amount of randomly-generated bytes from [0-9] set to the packet
++
++.br
++\fB<rc [size]>\fP - random chars tag. Dumps [size] amount of randomly-generated bytes from [a-zA-Z] set to the packet
++
++.br
++\fB<t>\fP - timestamp tag. Dumps 4-bytes long current system time in UNIX format
++
++.br
++\fB<c>\fP - packet counter tag. Dumps 4-bytes long amount of packets sent by AWG
 +
  .SH CONFIGURATION FILE FORMAT
  The configuration file format is based on \fIINI\fP. There are two top level sections
  -- \fIInterface\fP and \fIPeer\fP. Multiple \fIPeer\fP sections may be specified, but
-@@ -224,7 +267,7 @@ on a per-interface basis by using
+@@ -224,7 +309,7 @@ on a per-interface basis by using
  on a per-interface basis by using
  .BR ifconfig (1):
  
@@ -130,7 +172,7 @@
  
  On userspace implementations, it is customary to set the \fILOG_LEVEL\fP environment variable to \fIverbose\fP.
  
-@@ -240,19 +283,18 @@ If set to an integer or to \fIinfinity\fP, DNS resolut
+@@ -240,19 +325,18 @@ If set to an integer or to \fIinfinity\fP, DNS resolut
  If set to an integer or to \fIinfinity\fP, DNS resolution for each peer's endpoint will be retried that many times for non-permanent errors, with an increasing delay between retries. If unset, the default is 15 retries.
  
  .SH SEE ALSO