Commit Graph

2081 Commits

Author SHA1 Message Date
Michael Rash
1fb9747b2b [test suite] added Rijndael+HMAC test for Fwknop2 Beta1 2015-06-07 13:44:00 -04:00
Michael Rash
cff4dcc1e7 [test suite] Added Rijndael+HMAC test for Jonathan Bennett's Fwknop2 Android app 2015-06-04 23:02:21 -04:00
Michael Rash
ff052bf74f [server] disable external command execution in AFL fuzzing mode 2015-06-01 19:57:49 -07:00
Michael Rash
7c23cb72f1 [test suite] differentiate firewalld vs. iptables for fwknopd.conf file fuzzing 2015-06-01 19:36:46 -07:00
Michael Rash
7bbc30f34c [server] bug fix for --key-gen being called inappropriately, add fw compiled string to -V 2015-06-01 05:27:27 -07:00
Michael Rash
9b189fe762 [client] ensure that encryption and HMAC keys are not read from stdin in AFL fuzzing mode 2015-06-01 05:25:47 -07:00
Michael Rash
eed3dc8ad2 [test suite] minor comment update to mention afl-cov 2015-05-30 18:35:10 -07:00
Michael Rash
0388baa665 replaced raw lcov results with a link 2015-05-28 18:50:33 -07:00
Michael Rash
73f22bab16 added cumulative afl-cov web coverage report for 136d017 2015-05-28 16:03:54 -04:00
Michael Rash
98f852b5af added server-conf fuzzing results 2015-05-24 11:00:52 -07:00
Michael Rash
833dc7e4f6 added client-rc results 2015-05-24 10:16:20 -07:00
Michael Rash
85e07f99c4 man page updates 2015-05-22 15:31:18 -04:00
Michael Rash
85f42012ca add --key-gen and associated options to the fwknopd man page 2015-05-21 09:35:31 -07:00
Michael Rash
2e377985da add ramdisk-create.sh and console-rq.sh 2015-05-20 19:01:24 -07:00
Michael Rash
29defca4d5 (Jonathan Bennett) added console-qr.sh script to create QR codes from fwknopd access.conf keys 2015-05-20 18:52:30 -07:00
Michael Rash
ce76a063e1 Merge branch 'master' of https://github.com/mrash/fwknop 2015-05-20 18:25:33 -07:00
Michael Rash
1f45462206 [extras] run ramdisk creation script from top level sources directory 2015-05-21 22:18:14 -04:00
Michael Rash
81cdb0506f added spa-pkts fuzzing cycle 2015-05-20 16:57:43 -07:00
Michael Rash
de3bca2f9e handle key generation before config parsing 2015-05-20 09:47:51 -07:00
Michael Rash
ceb1713976 add --key-gen option to fwknopd (suggested by Jonathan Bennett) 2015-05-20 08:55:17 -07:00
Michael Rash
3e2e73ff99 moved 136d017 AFL results to 2.6.7 directory 2015-05-19 19:07:52 -07:00
Michael Rash
f659fe849f added server digest and access AFL runs 2015-05-19 19:06:16 -07:00
Michael Rash
136d017afb [client] ensure no dns, http, or other network comms in AFL fuzzing mode 2015-05-14 17:51:25 -07:00
Michael Rash
7817d28a2d [test suite] minor check for AFL compile configure success 2015-05-14 17:49:55 -07:00
Michael Rash
28dc60f9bd added server-conf AFL fuzzing cycle results 2015-05-10 21:20:10 -07:00
Damien Stuart
378b54748c Updated error code descriptions and fixed function description formats in the libfko docs. 2015-05-04 16:33:41 -04:00
Damien Stuart
87a2fbda0c Bump version in config.h for the Windows build. 2015-04-25 09:35:24 -04:00
Michael Rash
bcfc313e36 [test suite] minor bug fix for rm previous coverage script path 2015-04-24 17:55:43 -07:00
Michael Rash
93383c8430 changes since 2.6.5 2015-04-22 19:10:15 -07:00
Michael Rash
707c59d127 minor 2.6.6 release date update 2015-04-22 19:09:46 -07:00
Michael Rash
e209acc196 minor ChangeLog update 2015-04-22 01:10:00 -07:00
Michael Rash
17d1071aa8 [server / test suite] cleaner SNAT MASQUERADE support 2015-04-22 01:00:57 -07:00
Michael Rash
6bdfa95067 [server / test suite] cleaner SNAT MASQUERADE support 2015-04-22 00:58:35 -07:00
Michael Rash
176afecd9f [server] minor spacing fix 2015-04-21 21:09:20 -04:00
Michael Rash
d961165a5b Merge branch 'master' of ssh://fedora21/home/mbr/git/fwknop 2015-04-21 19:28:05 -04:00
Michael Rash
6467b922d5 [test suite] additional FORWARD_ALL tests 2015-04-21 03:30:32 -07:00
Michael Rash
3512f7f417 doc updates 2015-04-20 21:34:12 -04:00
Michael Rash
95bf4dcb87 Merge pull request #153 from Coacher/master
extras: adjust 'localstatedir' value for the AppArmor profile
2015-04-20 21:28:10 -04:00
Michael Rash
75d4004963 changes since 2.6.5 2015-04-20 09:19:37 -07:00
Michael Rash
bdc3751a84 bump version to 2.6.6 2015-04-20 08:47:51 -07:00
Michael Rash
f18827b002 [test suite] make valgrind results requirements stronger for test passage 2015-04-20 08:45:09 -07:00
Michael Rash
94af6172bb [server] minor -h usage update 2015-04-20 08:41:28 -07:00
Michael Rash
85733ded3c [test suite] additional iptables exclusions for non-iptables systems 2015-04-20 10:09:23 -04:00
Ilya Tumaykin
f757b4ebda extras: adjust 'localstatedir' value for the AppArmor profile
Comments in the shipped AppArmor profile state that fwknopd is assumed
to be built with 'localstatedir=/var', which is misleading for several
reasons:

* AppArmor profile assumes that fwknopd's pidfile and digest cache are
under /run/fwknop by the looks of it, i.e. 'localstatedir' is '/run'.

* By default these files are placed under /var/run/fwknop. Thus this
profile implicitly relies on the existence of '/var/run -> /run' symlink
and won't work otherwise when 'localstatedir' is '/var'

Since GitHub PR#152 was merged, 'localstatedir' can be simply set to
'/run' for AppArmor users to avoid this confusion. This changeset does
it.

If anyone had it working before, they should have it working now as the
shipped AppArmor profile required /run existence before as well.
2015-04-20 14:32:37 +03:00
Michael Rash
b2109f5630 [server] remove unncessary NULL check spotted by Coverity 2015-04-19 19:44:43 -07:00
Michael Rash
f962edda00 [extras] update Coverity installation path 2015-04-19 19:37:06 -07:00
Michael Rash
a606a9c565 [test suite] fw prefixes aren't used on non-Linux systems yet 2015-04-19 18:52:08 -07:00
Michael Rash
48acac160a [test suite] pick up pf and ipfw firewalls for prefix designation 2015-04-19 18:49:28 -07:00
Michael Rash
db80c81f66 Merge pull request #152 from Coacher/master
server: remove extra '/run' subdir from paths
2015-04-19 21:15:51 -04:00
Michael Rash
e39d34750b [server] switch from abs() to labs() for time difference calculation
This commit fixes the following warning during compilation on Mac OS X:

gcc -DHAVE_CONFIG_H -I. -I..  -I ../lib -I ../common -DSYSCONFDIR=\"/etc\" -DSYSRUNDIR=\"/var\"   -g -O2 -Wall -Wformat -Wformat-security -fstack-protector-all -fstack-protector -fPIE -D_FORTIFY_SOURCE=2 -MT fwknopd-incoming_spa.o -MD -MP -MF .deps/fwknopd-incoming_spa.Tpo -c -o fwknopd-incoming_spa.o `test -f 'incoming_spa.c' || echo './'`incoming_spa.c
incoming_spa.c:736:23: warning: absolute value function 'abs' given an argument of
      type 'long' but has parameter of type 'int' which may cause truncation of
      value [-Wabsolute-value]
            ts_diff = abs(now_ts - spadat.timestamp);
                      ^
incoming_spa.c:736:23: note: use function 'labs' instead
            ts_diff = abs(now_ts - spadat.timestamp);
                      ^~~
                      labs
1 warning generated.
2015-04-19 17:48:18 -07:00