DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
2,643 Commits 15 Branches 0 Tags
Commit Graph

165 Commits

Author SHA1 Message Date
Pierre Pronchery
cb8632f4db Avoid TOCTOU by using fstat() after open() 
This also needs fileno() after fopen().

This is the second part of three for Coverity issue 1355235.
 2018-08-27 20:19:31 +02:00
Michael Rash
b046599849 [build] add MemorySanitizer support 2018-08-17 21:16:12 -04:00
Michael Rash
71b8f22402
Merge pull request #282 from DeforaNetworks/khorben/execvp 
Use execvp() instead of execvpe()
 2018-08-08 17:05:55 -07:00
Michael Rash
81a264ad24 bump version to 2.6.10 2018-08-06 17:26:12 -07:00
Pierre Pronchery
0b475ec7b3 Use execvp() instead of execvpe() 
execvp() is (usually) equivalent to execvpe(), without enforcing any
change to the environment. However, unlike execvp(), execvpe() is not
standardized by POSIX, and may therefore not be available nor detected
when configuring the project (like on NetBSD).

No place could be found in fwknop to be using execvpe() and changing the
environment. Therefore it seems only logical (and safer) to use execvp()
instead.

This also updates the tests to reflect this change.
 2018-08-06 12:04:45 +02:00
Pierre Pronchery
4d88f08f56 Let fwknop build on NetBSD 2018-04-25 03:47:56 +02:00
Michael Rash
3686eab348 bump version numbers in preparation for 2.6.9 release 2016-06-08 17:12:37 -07:00
Jonathan Bennett
f0ca6fc4b2 Adds linking order magic to fix compiling CUint and libfiu together 2016-05-02 11:40:09 -05:00
Damien Stuart
4fc9d05660 Tweaks for MINGW builds 2016-01-17 13:09:15 -05:00
Damien Stuart
97970dccb9 Added "AM_CONDITIONAL(MINGW, false)" before the host check section of configure.ac 2016-01-16 15:12:39 -05:00
Jonathan Bennett
c0ad75704e Fixes to allow for MINGW32 compilation 2016-01-15 09:42:57 -06:00
Michael Rash
6247fe9e6a Merge remote-tracking branch 'origin/dstuart_netfilter_queue' 2016-01-03 08:31:12 -05:00
Michael Rash
fb65fbe3aa bump version to 2.6.8 2015-12-21 16:30:48 -08:00
Damien Stuart
0d41b78d18 Merge branch 'master' into dstuart_netfilter_queue and resolved one conflict in cmd_opts.h 2015-12-21 00:12:11 -05:00
Damien Stuart
ba611a2d2c Many additions and modifications for support of capture via Netfilter Queue. 2015-12-20 21:58:31 -05:00
Michael Rash
d8dc1fcdee [server] add is_valid_file() function, default to lstat() instead of stat(), more %include_folder tests 2015-12-13 01:39:29 -08:00
Michael Rash
d509925822 [extras] add build support for Google's UndefinedBehaviorSanitizer 2015-12-09 18:19:42 -08:00
Michael Rash
0adb4ac2ba add -fPIC to enforce position-independent code (necessary for gcc > 5.0), fixes #170 2015-11-29 21:30:41 -05:00
Damien Stuart
d2cef1746c Initial update for NETFILTER_QUEUE support. These changes are not tested at all as they were edit on a Mac, but are linux-specific. 2015-11-28 15:03:39 -05:00
Damien Stuart
02049cb473 Added AM_CONDITIONAL to check if OS is Darwin (Apple) and not use the --whole-archive option if it is. 2015-11-02 23:02:22 -05:00
Damien Stuart
24b3a216bd Updated c-unit-test README for changes in test locations. Updated autoconf files to remove references to the old c-unit-test configuration. 2015-09-05 11:05:32 -04:00
Michael Rash
042bf2d438 bump version to 2.6.7 (getting close to 2.6.7-pre1) 2015-07-16 11:59:34 -07:00
Michael Rash
ca2a73e333 add --with-firewalld autoconf argument as a synonym for --with-firewall-cmd 2015-06-30 12:59:04 -07:00
Michael Rash
bdc3751a84 bump version to 2.6.6 2015-04-20 08:47:51 -07:00
Michael Rash
5164378b17 [build] add --enable-32bit-mode for ASAN+AFL fuzzing 2015-04-09 22:23:17 -04:00
Michael Rash
7a21494f39 added --enable-asan-support for Google's Address Sanitizer compiler flags 2015-04-07 16:32:44 -07:00
Damien Stuart
322ae85388 Fixed a bug in configure.ac that did not allow specifying alternate firewall exe if firewall-cmd was found by configure. 2015-02-18 22:44:53 -05:00
Franck Joncourt
1c81aef39d Fixed file permissions 2014-12-31 09:51:08 +01:00
Franck Joncourt
cb13d84d48 Use of subdir-objects libtool option. 2014-12-29 13:25:01 +01:00
Franck Joncourt
b7ecb3334a Merge upstream changes to our changes 2014-12-28 15:00:24 +01:00
Michael Rash
7f1da8e625 bumped version to 2.6.5 2014-12-15 22:34:22 -05:00
Michael Rash
aaa44656bc [server] add support for American Fuzzy Lop (ALF) fuzzing 2014-11-13 20:55:04 -05:00
Michael Rash
0c59f6e500 add CODE_COVERAGE macro for ./configure --enable-profile-coverage 2014-11-06 20:23:40 -05:00
Michael Rash
3826bb5631 ChangeLog updates, bump version to 2.6.4 2014-11-01 12:04:11 -04:00
Michael Rash
0af8faa0b3 Merge branch 'udp_listener' into execvpe 2014-10-13 20:25:14 -04:00
Michael Rash
c481f7f6b3 add --disable-execvpe arg to configure script (looks for execvpe() support by default) 2014-10-12 13:16:30 -04:00
Michael Rash
248c4b301e added configure detection of execvpe() - doesn't exist on Mac OS X yet 2014-10-06 20:04:00 -04:00
Michael Rash
2b046392b7 minor unused var removal 2014-09-30 11:29:03 -04:00
Michael Rash
ddbba5bc90 autoconf update to ensure libpcap is not linked against in --enable-udp-server mode 2014-09-29 11:42:11 -04:00
Michael Rash
52d34a70a2 fwknopd man page updates, added UDPSERV_SELECT_TIMEOUT config option 2014-09-28 22:32:20 -04:00
Michael Rash
1fd0e7e960 first cut at UDP server mode 2014-09-28 11:49:04 -04:00
Franck Joncourt
32c5afae83 Merge remote-tracking branch 'upstream/master' into c_unit_testing 2014-09-07 15:24:59 +02:00
Franck Joncourt
688f08c2a0 Both the fwknop client and server have their own test suites tied to fwknop_utests 
and fwknopd_utests binaries.

When profil coverage is enbaled, lcov filee are parsed by test-fwknop.pl and added
to the main profil coverage report in the output directory.

Running make from the main directory build the c-unit test suites if enabled.
 2014-09-07 15:15:22 +02:00
Gerry Reno
25d252c11a more changes for firewalld 2014-08-31 00:29:17 -04:00
Franck Joncourt
306dd0f685 First layout to add c unit testing support to fwknop. 2014-08-24 21:05:44 +02:00
Michael Rash
03000dde5d bumped version to 2.6.3 in preparation for release 2014-07-28 15:55:38 -04:00
Michael Rash
b06447384e [client] have autoconf resolve the absolute path to wget for SSL IP resolution 2014-07-27 22:03:58 -04:00
Michael Rash
ed58dcb635 Revert "add gcc '-pg' flag in --enable-profile-coverage mode" 
This reverts commit bbe5626566d617317f2d25f5650f2299c95f2c9f because -pg
is needed for gprof, not gcov, and valgrind is incompatible with -pg.
 2014-05-26 21:28:19 -04:00
Michael Rash
bbe5626566 add gcc '-pg' flag in --enable-profile-coverage mode 2014-05-22 08:19:45 -05:00
Michael Rash
02389932bc added --enable-libfiu-support to build fwknop with fault injection support 2014-05-21 08:27:31 -04:00