Michael Rash
ffeb60677d
[test suite] update SNAT MASQ test to use force masq access file
2015-04-12 15:49:08 -07:00
Michael Rash
2d0b623a9a
[test suite] more FORCE_NAT tests
2015-04-08 18:50:26 -07:00
Michael Rash
ca41ce6e75
[test suite] restore FORCE_SNAT test passing result
2015-04-08 18:40:44 -07:00
Michael Rash
429881703f
[test suite] minor uninitialized var bug fix
2015-04-08 18:24:26 -07:00
Michael Rash
0fa42ae117
[server] allow DISABLE_DNAT to not require FORCE_NAT
2015-04-07 16:34:49 -07:00
Michael Rash
3d8b524019
[test suite] FORCE_SNAT requires FORCE_NAT test
2015-04-07 08:23:55 -04:00
Michael Rash
8e6db3a5da
[server] extend FORWARD_ALL to apply to NAT operations
...
This is a significant commit to allow all ports and protocols to be
NAT'd in conjunction with FORWARD ACCEPT rules. This commit is in
support of 6b7a3bbdae
2015-04-06 20:04:33 -04:00
Michael Rash
60d982a103
[test suite] added GPG 4096-bit key combination tests
2015-03-28 07:54:30 -04:00
Michael Rash
0f86406afb
[test suite] added gpg subkey signing test
2015-03-26 22:01:02 -04:00
Michael Rash
91a4e82f23
[test suite] added 4096-bit signing key test
2015-03-24 22:38:41 -04:00
Michael Rash
26aceb9db6
[test suite] add more rigorous multi-port tests with per-rule regex search criteria
2015-03-07 19:12:39 -08:00
Michael Rash
9dc56d6bb7
[test suite / server] rule deletion/addition tests mid-cycle
2014-12-15 17:06:07 -08:00
Michael Rash
54625819c9
[test suite] get resolve tests passing (--test mode stopped resolutions)
2014-12-05 21:23:23 -05:00
Michael Rash
a4d6c17512
[test suite] add DESTINATION formatting tests
2014-12-05 20:56:47 -05:00
Michael Rash
d6dee352af
minor update to get DESTINATION filtering tests passing
2014-12-03 20:57:06 -05:00
Michael Rash
7a9a430f24
[test suite] additional DESTINATION accept/filter tests
2014-11-30 22:17:51 -05:00
Michael Rash
cf84f016a3
[test suite] add complete cycle DESTINATION test
2014-11-30 21:37:42 -05:00
Michael Rash
42d103d100
[test suite] minor test update for DESTINATION access.conf stanza
2014-11-30 17:02:27 -05:00
Grant Pannell
624872ef48
Add DESTINATION access.conf directive and ENABLE_DESTINATION_RULE fwknopd.conf directive
2014-11-29 15:05:06 +10:30
Michael Rash
aaa44656bc
[server] add support for American Fuzzy Lop (ALF) fuzzing
2014-11-13 20:55:04 -05:00
Michael Rash
1a76d5586f
[test suite] extend server receive criteria
2014-11-09 21:36:36 -05:00
Michael Rash
ba337108af
[test suite] implement multi-cycle test sequences
2014-11-08 21:44:49 -05:00
Michael Rash
46fd32a6f1
[test suite] minor bug fix to add --no-firewd-check-support option for one test
2014-11-06 20:22:05 -05:00
Michael Rash
b5fe62bfc7
[test suite] command exec too many args tests
2014-10-26 16:58:13 -04:00
Michael Rash
d2abbd8720
[test suite] more code coverage tests
2014-10-25 22:29:49 -04:00
Michael Rash
17608dd01d
[test suite] additional code coverage
2014-10-25 08:42:30 -04:00
Michael Rash
58d47cb385
[test suite] additional code coverage for a few areas
2014-10-24 20:39:40 -04:00
Michael Rash
56a6b7dee5
give firewalld its own namespace (can track firewalld changes independently of iptables)
2014-10-21 22:43:21 -04:00
Michael Rash
6945e23bc9
[test suite] UDP server command execution tests, run configure arg recompile tests after gcov profiling stuff
2014-10-20 22:23:46 -04:00
Michael Rash
15f73c7f9e
[test suite] added configure args test with UDP server test for fwknopd not linking against libpcap
2014-10-19 22:58:35 -04:00
Michael Rash
0af8faa0b3
Merge branch 'udp_listener' into execvpe
2014-10-13 20:25:14 -04:00
Michael Rash
00b229b834
[test suite] detect firewalld vs. iptables for server rewrite conf tests
2014-10-13 19:54:30 -04:00
Michael Rash
d9fb29318e
[test suite] add --exit-parse-config to fwknopd basic tests where possible
2014-10-12 21:29:44 -04:00
Michael Rash
e54b15ceaf
[test suite] fix up Rijndael cmd exec test
2014-10-10 08:16:31 -04:00
Michael Rash
2b5088eb76
[test suite] added use terminal test, fix up Rijndael CMD tests
2014-10-09 16:03:05 -04:00
Michael Rash
ed9e1ac236
added setgid() call for command execution along with CMD_EXEC_GROUP access.conf var
2014-10-07 16:18:14 -04:00
Michael Rash
e6d162215f
[test suite] added command execution setuid() 'nobody' test
2014-10-06 22:04:20 -04:00
Michael Rash
85ff6b25e1
updated --last-cmd tests to write the previous args first
2014-09-30 21:12:43 -04:00
Michael Rash
e2c2ad141e
TCP/UDP server port validation tests
2014-09-28 22:06:06 -04:00
Michael Rash
ad3b230917
minor client cmd line bug fix for UDP server HMAC test
2014-09-28 21:21:25 -04:00
Michael Rash
360905ec56
implement --packet-limit for UDP server mode
2014-09-28 21:19:19 -04:00
Michael Rash
a5dd273189
replay attack detection test for UDP server mode
2014-09-28 20:48:57 -04:00
Michael Rash
aa2492bba2
Added UDP server HMAC cycle tests
2014-09-28 16:51:38 -04:00
Michael Rash
dc9e8da702
started on UDP server tests for Rijndael mode
2014-09-28 14:54:40 -04:00
Michael Rash
50434c5c4c
Use the fwknop User-Agent for wget SSL external IP resolutions
...
Bug fix to ensure that a User-Agent string can be specified when the
fwknop client uses wget via SSL to resolve the external IP address. This
closes issue #134 on github reported by Barry Allard. The fwknop now
uses the wget '-U' option to specify the User-Agent string with a
default of "Fwknop/<version>". In addition, a new command line argument
"--use-wget-user-agent" to allow the default wget User-Agent string to
apply instead.
2014-09-27 23:23:12 -04:00
Michael Rash
e04f3fef21
added Ethernet FCS header test with pcap contributed by Bill Stubs
2014-08-21 21:07:52 -04:00
Michael Rash
fa154259d5
[test suite] added FreeBSD-10.0 and OpenBSD-5.5 compatibility tests
2014-07-28 15:52:57 -04:00
Michael Rash
655abf6f0b
[test suite] WGET_CMD and RESOLVE_HTTP_ONLY fwknoprc test coverage
2014-07-28 09:46:08 -04:00
Michael Rash
b06447384e
[client] have autoconf resolve the absolute path to wget for SSL IP resolution
2014-07-27 22:03:58 -04:00
Michael Rash
4fcd5b317a
[server] fix shift operation bug in SOURCE subnet processing spotted by Coverity
2014-07-26 23:43:48 -04:00
