DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
1,742 Commits 15 Branches 0 Tags
Commit Graph

1742 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gerry Reno
4fe549c451 added feature: firewalld 2014-08-31 21:13:42 -04:00
Gerry Reno
2da57da0cb more changes for firewalld 2014-08-31 16:13:46 -04:00
Gerry Reno
ac82b1ced2 more changes for firewalld 2014-08-31 13:51:08 -04:00
Gerry Reno
d47ebb602a more changes for firewalld 2014-08-31 02:23:39 -04:00
Gerry Reno
25d252c11a more changes for firewalld 2014-08-31 00:29:17 -04:00
Gerry Reno
e54383b518 first cut at firewalld 2014-08-31 00:06:37 -04:00
Gerry Reno
ea64f15ae7 added .gitignore 2014-08-30 19:09:02 -04:00
Damien Stuart
73186e511a Added WIN32 definitions for popen (_popen) and pclose (_pclose) to accommodate the call to wget on Windows-based systems. 2014-08-30 16:18:46 -04:00
Michael Rash
8cec7eaeee Merge branch 'master' of ssh://github.com/mrash/fwknop 2014-08-26 23:23:31 -04:00
Michael Rash
4aacf32f3b Merge pull request #127 from g-reno/android-keypreserve 
restore keys from prefs when app is launched
 2014-08-26 23:22:15 -04:00
Michael Rash
eb0e8eb6a1 fwknopd man page updates for access.conf vars 2014-08-26 23:21:14 -04:00
Michael Rash
00a057a09d ChangeLog update for FCS bug fix 2014-08-21 21:15:09 -04:00
Michael Rash
dfcfb2e47b minor code restructure for Ethernet FCS header processing 2014-08-21 21:08:27 -04:00
Michael Rash
e04f3fef21 added Ethernet FCS header test with pcap contributed by Bill Stubs 2014-08-21 21:07:52 -04:00
Michael Rash
ba9078d990 Merge branch 'beaglebone_libpcap_workaround' of https://github.com/stubbsw/fwknop into stubbsw-beaglebone_libpcap_workaround 2014-08-21 20:44:48 -04:00
Gerry Reno
813e4e0575 restore keys from prefs when app is launched 2014-08-21 18:16:00 -04:00
stubbsw
2c0606f2b8 pcap of spa with Ethernet FCS 
Captured with:
tcpdump -i eth0 -l -nn -s 0 -w fcs_spa.pcap udp port 62201

Generated remotely with:
LD_LIBRARY_PATH=./lib/.libs ./client/.libs/fwknop -A tcp/22 -a 127.0.0.2
-D 192.168.18.11 --no-save-args --verbose --verbose --rc-file
./test/conf/fwknoprc_default_hmac_base64_key
 2014-08-21 07:04:55 -04:00
Michael Rash
e4eb984869 Merge pull request #125 from stubbsw/beaglebone_libpcap_workaround 
workaround libpcap 4 extra bytes
 2014-08-20 23:20:40 -04:00
stubbsw
19f31c3e23 update to indicate Ethernet FCS support vs. bug 2014-08-19 06:54:18 -04:00
stubbsw
b98579ab8f workaround libpcap 4 extra bytes 
Workaround for libpcap returning a length that is 4 bytes longer than
the
packet on the wire. Observed on:

Linux beaglebone 3.8.13-bone50 #1 SMP Tue May 13 13:24:52 UTC 2014
armv7l GNU/Linux
ldd fwknopd
libfko.so.2 => /usr/local/lib/libfko.so.2 (0xb6f62000)
libpcap.so.0.8 => /usr/lib/arm-linux-gnueabihf/libpcap.so.0.8
(0xb6f20000)
libc.so.6 => /lib/arm-linux-gnueabihf/libc.so.6 (0xb6e3b000)
/lib/ld-linux-armhf.so.3 (0xb6f94000)
libgcc_s.so.1 => /lib/arm-linux-gnueabihf/libgcc_s.so.1 (0xb6e17000)

Calculate the new pkt_end from the length in the ip header.
 2014-08-17 11:50:56 -04:00
Michael Rash
36489b5222 append gdbm change to all changes since 2.6.2 2014-07-29 10:00:54 -04:00
Michael Rash
5befed6bae removed gdbm/gdbm-devel dependencies for the RPM, bumped libfko to 2.0.3 for the RPM 2014-07-29 09:59:32 -04:00
Michael Rash
96e16cf6f4 extended ChangeLog.git to include libfko version bump 2014-07-28 22:28:46 -04:00
Michael Rash
71b97b6cad bumped libfko version to 2.0.3 2014-07-28 21:46:32 -04:00
Michael Rash
67ca2f69ea changes since 2.6.2 to ChangeLog.git 2014-07-28 15:57:29 -04:00
Michael Rash
03000dde5d bumped version to 2.6.3 in preparation for release 2014-07-28 15:55:38 -04:00
Michael Rash
fa154259d5 [test suite] added FreeBSD-10.0 and OpenBSD-5.5 compatibility tests 2014-07-28 15:52:57 -04:00
Michael Rash
24ccf03a90 added configure_max_coverage.sh helper script 2014-07-28 15:50:25 -04:00
Michael Rash
655abf6f0b [test suite] WGET_CMD and RESOLVE_HTTP_ONLY fwknoprc test coverage 2014-07-28 09:46:08 -04:00
Michael Rash
7f830e0239 revert gpg trustdb.gpg update from test suite 2014-07-28 09:37:50 -04:00
Michael Rash
b06447384e [client] have autoconf resolve the absolute path to wget for SSL IP resolution 2014-07-27 22:03:58 -04:00
Michael Rash
4fcd5b317a [server] fix shift operation bug in SOURCE subnet processing spotted by Coverity 2014-07-26 23:43:48 -04:00
Michael Rash
134f4c6cfb Merge branch 'libfiu_fault_injection' 
Conflicts:
	test/tests/rijndael_hmac_fuzzing.pl
 2014-07-25 17:44:27 -04:00
Michael Rash
59718f1a36 [client] Updated IP resolution mode -R to use SSL 
External IP resolution via '-R' (or '--resolve-ip-http') is now done via SSL by
default. The IP resolution URL is now 'https://www.cipherdyne.org/cgi-gin/myip',
and a warning is generated in '-R' mode whenever a non-HTTPS URL is specified
(it is safer just to use the default). The fwknop client leverages 'wget' for
this operation since that is cleaner than having fwknop link against an SSL
library.
 2014-07-25 17:42:06 -04:00
Michael Rash
e1608b90fe [client] call freeaddrinfo() early after iterating through getaddrinfo() results 2014-07-22 22:35:43 -04:00
Michael Rash
5fadf56af4 added extras/coverity/ directory for Coverity script 2014-07-22 22:05:29 -04:00
Michael Rash
666d150aff [client] make close() on socket handle more intuitive (resolves 'double close' bugs flagged by Coverity) 2014-07-22 22:04:44 -04:00
Michael Rash
73490209f7 [test suite] add access.conf file path to a few basic tests 2014-07-22 17:36:31 -04:00
Michael Rash
3df08e3c0e [test suite] handle PF on FreeBSD 2014-07-22 17:35:59 -04:00
Michael Rash
eed3418996 [test suite] update wrapper Makefile gcc -> cc 2014-07-22 17:35:19 -04:00
Michael Rash
9470b3ce21 [test suite] README update to include --enable-complete mode 2014-07-22 11:31:16 -04:00
Michael Rash
7df1186c66 fixed several socket handle leaks under error conditions spotted by Coverity 2014-07-22 11:30:33 -04:00
Michael Rash
7d5b75886c added lcov coverage link 2014-07-19 17:26:15 -04:00
Michael Rash
b2117e6fe7 ChangeLog updates 2014-07-19 17:18:59 -04:00
Michael Rash
641866deff [server] minor update print -> fprintf for PF firewall interface 2014-07-19 16:40:59 -04:00
Michael Rash
764d9ca26d fix gcc -Wstrlcpy-strlcat-size warnings 2014-07-19 16:30:53 -04:00
Michael Rash
ec54b4fd11 fixed README paths 2014-07-19 16:30:00 -04:00
Michael Rash
2012d2d7d1 fixed README paths 2014-07-19 16:22:42 -04:00
Michael Rash
74428adae6 [server] Bug fix for PF firewalls without ALTQ support on FreeBSD. 
With this commit PF rules are added correctly regardless of whether ALTQ support
is available or not. Thanks to Barry Allard for discovering and reporting this
issue. Closes issue #121 on github.
 2014-07-18 20:54:11 -04:00
Michael Rash
51506db24c minor README.md summary update 2014-07-11 22:41:32 -05:00