DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
913 Commits 15 Branches 0 Tags
1de5e370e1f4b1464bfcd94c7ff4c76bbc1922bc
Commit Graph

913 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Rash
1de5e370e1 [test suite] added 'server_conf' hash key verification 2013-03-16 14:40:08 -04:00
Michael Rash
4bdb71315a [client] --nat-rand-port bug fix 
Bug fix for --nat-rand-port mode to ensure that the port to be
NAT'd is properly defined so that the fwknopd server will NAT
connnections to this port instead of applying the NAT operation to the
port that is to be accessed via -A.  This change also prints the
randomly assigned port to stdout regardless of whether --verbose mode is
used (since it not then the user will have no idea which port is
actually going to be NAT'd on the fwknopd side).
 2013-03-16 14:38:20 -04:00
Michael Rash
253ccb7cea added encryption type/mode and message type string representations for FKO context diplay output 2013-03-14 22:26:44 -04:00
Michael Rash
aa36f3ffee bug fix to remove hmac_sha512_long_key_access.conf file (doesn't exist) from Makefile.am 2013-03-12 23:25:53 -04:00
Michael Rash
3ef3ab29c8 [test suite] 'key_file' hash key update for HMAC SHA384 test 2013-03-12 23:20:12 -04:00
Michael Rash
0b9f25362e [test suite] minor bug fix for HMAC SHA384 default key test rc file path 2013-03-12 23:10:09 -04:00
Michael Rash
9e32cdd6d9 [test suite] added files to Makefile.am and added a test to verify this 2013-03-12 22:50:37 -04:00
Michael Rash
55d188ed1f [test suite] added HMAC key tests 2013-03-12 22:18:43 -04:00
Michael Rash
fe22423a44 [libfko] bug fix to maintain OpenSSL compatibility for HMAC keys longer than associated block size 2013-03-12 22:17:41 -04:00
Michael Rash
402a545cb2 convert standard hmac access.conf file for HMAC SHA512 to use key size of 128 bytes 2013-03-11 23:12:56 -04:00
Michael Rash
bf6cc6c605 --key-gen bug fix to allow --key-len and --hmac-key-len values to apply to generated key lengths 2013-03-11 23:02:07 -04:00
Michael Rash
02d0255a7c update base64 key char arrays to use MAX_B64_KEY_LEN macro 2013-03-11 22:55:00 -04:00
Michael Rash
6478d2b892 minor fix to remove extraneous memset() call 2013-03-11 22:54:10 -04:00
Michael Rash
70c17be916 added MAX_B64_KEY_LEN for full length SHA512 keys 2013-03-11 22:50:02 -04:00
Michael Rash
4ef2a1ec57 fix fko_new_with_data() call to include the hmac type 2013-03-11 22:41:08 -04:00
Michael Rash
6e7a56067b [perl FKO module] add hmac_type to fko_new_with_data() calls 2013-03-11 21:13:20 -04:00
Michael Rash
343bd449d4 HMAC MD5 bug fix to ensure to set the MD5 block length to 64 2013-03-10 21:59:39 -04:00
Michael Rash
bd2af22691 [test suite] set HMAC_DIGEST_TYPE to md5 for HMAC MD5 test 2013-03-10 21:58:52 -04:00
Michael Rash
3598fc7d7d added missing hmac_md5() function to hmac.h 2013-03-10 18:56:19 -04:00
Michael Rash
7274f6724e Merge branch 'hmac_support' of github.com:mrash/fwknop into hmac_support 2013-03-10 18:12:41 -04:00
Damien Stuart
19cf0d51fd Merge branch 'hmac_support' of github.com:mrash/fwknop into hmac_support 2013-03-10 17:17:39 -04:00
Damien Stuart
744e002779 Removed tmp lib and include dirs from the python module setup.py file. 2013-03-10 17:17:19 -04:00
Michael Rash
dc0ce29477 bug fix to anticipate OpenSSL HMAC output that spans multiple lines (as in SHA512) 2013-03-10 16:37:34 -04:00
Michael Rash
c5b5cba729 Added HMAC MD5 support (need test suite validation still) 2013-03-10 16:30:06 -04:00
Michael Rash
0529d23595 remove minor debugging statement 2013-03-10 15:13:34 -04:00
Michael Rash
6882ac57ec add HMAC-SHA1 support 2013-03-10 14:56:39 -04:00
Michael Rash
7821e83dfc Merge branch 'hmac_support' of github.com:mrash/fwknop into hmac_support 
Conflicts:
	client/fwknop.c
	lib/fko_hmac.c
 2013-03-10 14:32:07 -04:00
Michael Rash
22dde8eb35 SPA with HMAC SHA256 and SHA384 now works 
This is a fairly significant commit that lays the groundwork for getting
selectable HMAC modes working for both the client and server.  One libfko API
change was required so that the hmac_type is passed into fko_new_with_data().
This allows the server to set the hmac_type via access.conf stanzas.  The
effort in this commit will be extended to allow HMAC MD5, SHA1, and SHA512
also function properly.
 2013-03-10 14:26:05 -04:00
Damien Stuart
6fa3be393c Renamed fko_set_hmac_type to fko_set_spa_hmac_type. Incorporated libfko changes and additions to the fko python module code. 2013-03-10 13:21:24 -04:00
Michael Rash
6f45b2c3b1 added HMAC SHA384 and SHA512 support, bug fix to allow shorter HMAC key lengths than associated digest block size 2013-03-09 23:27:08 -05:00
Michael Rash
f9fa3c2b6d [test suite] derive HMAC digest type from client display context output 2013-03-09 23:25:59 -05:00
Michael Rash
6741cfc22b convert HMAC functions to static where possible 2013-03-09 16:48:08 -05:00
Michael Rash
3ff39dfab4 [test suite] minor variable conversion to 'our' vars 2013-03-09 16:41:32 -05:00
Michael Rash
1a39047b92 ensure to close access.conf file ptr when an error condition is found and exit() is going to be called 2013-03-08 22:12:19 -05:00
Michael Rash
8b5cf3446f [test suite] minor bug fix for command line definition for invalid HMAC test 2013-03-08 22:05:11 -05:00
Michael Rash
d13eba7d13 [test suite] minor category/subcategory update for fuzzing tests 2013-03-08 21:48:19 -05:00
Michael Rash
7fe5c55fcf [test suite] added various hmac verification conf files 2013-03-08 21:10:45 -05:00
Michael Rash
d4362b7b38 [test suite] import test definitions from tests/*.pl files 2013-03-08 21:09:51 -05:00
Michael Rash
44d05a6916 interim commit for supporting multiple HMAC digest types (# 45) 2013-03-07 23:14:48 -05:00
Michael Rash
39ca73a245 [test suite] added OpenSSL HMAC verification (closes #39) 2013-03-05 23:29:46 -05:00
Michael Rash
a09392b08d [test suite] better reporting of test title matching for valgrind coverage test 2013-03-03 17:56:02 -05:00
Michael Rash
5c182c1722 [test suite] added HMAC dual usage test 2013-03-03 16:21:46 -05:00
Michael Rash
e064e39284 Merge branch 'hmac_header_fixes' into hmac_support 2013-03-03 14:36:21 -05:00
Michael Rash
1dc47f80d8 Fix byte order warning 
This commit fixes a byte order warning for both sha1.c and md5.c like so:

sha1.c:127:6: warning: #warning Undetermined or unsupported Byte Order... We will try LITTLE_ENDIAN [-Wcpp]

Also removed a couple of header includes that appear not be needed.
 2013-03-03 14:29:08 -05:00
Michael Rash
374c573c89 Merge branch 'hmac_header_fixes' into hmac_support 2013-03-03 00:35:39 -05:00
Michael Rash
b86e48dd66 remove a couple of unnecessary header includes 2013-03-02 23:16:26 -05:00
Michael Rash
d27c3e3b09 Merge branch 'hmac_header_fixes' of github.com:mrash/fwknop into hmac_header_fixes 2013-03-02 22:41:15 -05:00
Michael Rash
d94513ee00 [test suite] started adding HMAC equivalent tests for all existing tests 2013-03-02 22:38:26 -05:00
Damien Stuart
f9e1ae4859 Merge my working branch 'hmac_support' into hmac_header_fixes 2013-03-02 17:22:50 -05:00
Damien Stuart
c1baa7e12f Merge branch 'hmac_support' of github.com:mrash/fwknop into hmac_support 2013-03-02 17:08:55 -05:00