DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
2,611 Commits 15 Branches 0 Tags
Commit Graph

184 Commits

Author SHA1 Message Date
Michael Rash
b15b278263 add erlang files 2018-08-06 17:24:03 -07:00
Michael Rash
a617502b25 update ChangeLog with OpenBSD endian fix 2017-09-09 09:22:02 -04:00
Michael Rash
78b3a215cb fix gnupg.org link in the ChangeLog 2017-04-15 08:56:13 -04:00
Michael Rash
be39f1a6f7 [server] call exit() upon execvpe() error, fixes #235 2016-10-10 20:38:38 -04:00
Michael Rash
f5509bcd0c [server] Add MAX_FW_TIMEOUT to access.conf variables. 
[server] Add MAX_FW_TIMEOUT to access.conf stanzas to allow a
maximum number of seconds for client-specified timeouts in SPA packets.
This fixes issue #226 which was spotted by Jeremiah Rothschild.
 2016-09-29 22:18:13 -04:00
Michael Rash
3686eab348 bump version numbers in preparation for 2.6.9 release 2016-06-08 17:12:37 -07:00
Michael Rash
36f3564254 add material on Damien's NFQ support 2016-06-06 22:36:34 -04:00
Michael Rash
b75c29b5a4 SHA3 ChangeLog update 2016-05-11 22:21:54 -07:00
Michael Rash
fe3d6b8cd7 ChangeLog updates 2016-05-11 22:10:58 -07:00
Michael Rash
9d92f65a03 [test suite] add test for X-Fowarded-For header 2016-04-16 07:40:24 -07:00
Jonathan Bennett
d939deb811 Spelling corrections, found using the codespell tool. 2016-04-10 12:03:59 -05:00
Michael Rash
c5c58ee6a5 [server] bug fix for cmd open/close cycle to stop access.conf processing upon first successful match 2016-02-26 20:53:07 -05:00
Michael Rash
5e6530cc23 [test suite] bug fix in lcov coverage generation to pull in _base and _info into the final result 2016-01-11 22:22:02 -05:00
Jonathan Bennett
a3e0d1cc1b clean up whitespace problems 2016-01-02 20:18:12 -06:00
Michael Rash
a0cac1bd13 changes since 2.6.7 2015-12-23 14:23:01 -05:00
Michael Rash
fb65fbe3aa bump version to 2.6.8 2015-12-21 16:30:48 -08:00
Michael Rash
f89af3b8c1 add libfko fko_set_username() crash ChangeLog message 2015-12-04 19:03:22 -08:00
Michael Rash
2f49be6cb0 [server] For SIGHUP processing, don't send the TCP server SIGTERM unless it is running 2015-11-01 01:58:47 -08:00
Michael Rash
d67fbde992 [server] start on command open/close cycle support (issue #117) 2015-10-13 18:00:07 -07:00
Michael Rash
71ded8caf1 ChangeLog update for 2.6.7 2015-08-24 17:23:40 -07:00
Michael Rash
d681485e29 [server] add sudo support, closes #159 2015-07-22 04:08:58 -07:00
Michael Rash
89b2e8f477 [server] interface goes down will cause fwknopd to exit 
By default, fwknopd will now exit if the interface that it is
sniffing goes down (patch contributed by Github user 'sgh7'). If this
happens, it is expected that the native process monitoring feature in
things like systemd or upstart will restart fwknopd. However, if fwknopd
is not being monitored by systemd, upstart, or anything else, this
behavior can be disabled with the EXIT_AT_INTF_DOWN variable in the
fwknopd.conf file. If disabled, fwknopd will try to recover when a
downed interface comes back up.
 2015-07-18 13:11:25 -07:00
Michael Rash
042bf2d438 bump version to 2.6.7 (getting close to 2.6.7-pre1) 2015-07-16 11:59:34 -07:00
Michael Rash
ca2a73e333 add --with-firewalld autoconf argument as a synonym for --with-firewall-cmd 2015-06-30 12:59:04 -07:00
Michael Rash
29defca4d5 (Jonathan Bennett) added console-qr.sh script to create QR codes from fwknopd access.conf keys 2015-05-20 18:52:30 -07:00
Michael Rash
ceb1713976 add --key-gen option to fwknopd (suggested by Jonathan Bennett) 2015-05-20 08:55:17 -07:00
Michael Rash
e209acc196 minor ChangeLog update 2015-04-22 01:10:00 -07:00
Michael Rash
3512f7f417 doc updates 2015-04-20 21:34:12 -04:00
Michael Rash
bdc3751a84 bump version to 2.6.6 2015-04-20 08:47:51 -07:00
Michael Rash
0ecc2d2333 minor docs update 2015-04-19 07:10:26 -07:00
Michael Rash
55cbebe7bb ChangeLog and doc updates 2015-04-18 05:30:39 -07:00
Michael Rash
7a21494f39 added --enable-asan-support for Google's Address Sanitizer compiler flags 2015-04-07 16:32:44 -07:00
Michael Rash
d058493d3b [test suite] handle versions of lcov that don't have the --rc option 2015-03-22 17:41:26 -07:00
Michael Rash
95ae8dd1fe minor ChangeLog update 2015-03-19 22:20:26 -04:00
Michael Rash
1ce800446d [server] Bug fix to not include pcap.h in --enable-udp-server mode 2015-02-17 23:21:05 -08:00
Michael Rash
27af305cf7 minor date change for 2.6.5 release 2014-12-16 21:31:36 -05:00
Michael Rash
7f1da8e625 bumped version to 2.6.5 2014-12-15 22:34:22 -05:00
Michael Rash
122ecf10d7 minor ChangeLog update 2014-12-07 17:00:10 -05:00
Michael Rash
d6dee352af minor update to get DESTINATION filtering tests passing 2014-12-03 20:57:06 -05:00
Michael Rash
e1694c732c update ChangeLog to include Grant's patch 2014-11-30 21:36:46 -05:00
Michael Rash
82cf8b1c9c [server] Enforce proper bounds checking on digest cache file import 
Bug fix to ensure that proper bounds are enforced when importing digest
cache files from previous fwknopd executions. This bug
was discovered through fuzzing with American Fuzzy Lop (AFL) as driven
by the test/afl/fuzzing-wrappers/server-digest-cache.sh wrapper.
Previous to this fix, fwknopd could be made to crash through a malicious
digest cache file (normally in /var/run/fwknop/digest.cache) upon
initial import.
 2014-11-25 22:05:15 -05:00
Michael Rash
9860aebfab minor date update for the 2.6.4 release 2014-11-16 16:31:40 -05:00
Michael Rash
85f559a9fd 2.6.4 release date 2014-11-15 10:27:19 -05:00
Michael Rash
665b65ef3e doc updates to include material about AFL support 2014-11-15 00:15:55 -05:00
Michael Rash
fe288120b3 minor ChangeLog wording update 2014-11-09 21:41:10 -05:00
Michael Rash
3826bb5631 ChangeLog updates, bump version to 2.6.4 2014-11-01 12:04:11 -04:00
Michael Rash
a2ce50e9e5 [python module] default to HMAC SHA256 when an HMAC key is used but no HMAC mode was specified 2014-10-23 08:45:21 -04:00
Michael Rash
50434c5c4c Use the fwknop User-Agent for wget SSL external IP resolutions 
Bug fix to ensure that a User-Agent string can be specified when the
fwknop client uses wget via SSL to resolve the external IP address. This
closes issue #134 on github reported by Barry Allard. The fwknop now
uses the wget '-U' option to specify the User-Agent string with a
default of "Fwknop/<version>". In addition, a new command line argument
"--use-wget-user-agent" to allow the default wget User-Agent string to
apply instead.
 2014-09-27 23:23:12 -04:00
Michael Rash
aae72a9470 firewalld support from Gerry Reno 2014-09-03 23:28:51 -04:00
Michael Rash
00a057a09d ChangeLog update for FCS bug fix 2014-08-21 21:15:09 -04:00