DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
2,294 Commits 15 Branches 0 Tags
998fb96f0bfdb893de0b10ddfcc3cd2655abe5d2
Commit Graph

611 Commits

Author SHA1 Message Date
Michael Rash
998fb96f0b promote argv handling functions to fko_util (avoids duplication across client and server) 2015-12-16 18:59:10 -08:00
Michael Rash
f230c32371 promote chop_* functions into fko_util 2015-12-16 18:00:57 -08:00
Michael Rash
8533d9d248 [server] use chop_char() to strip trailing '/' chars from directories 2015-12-17 22:51:08 -05:00
Michael Rash
3388d85073 Revert "[server] access_folder is guaranteed to be NULL terminated" 
This reverts commit 24f57f36a7.
 2015-12-17 21:27:13 -05:00
Michael Rash
24f57f36a7 [server] access_folder is guaranteed to be NULL terminated 2015-12-15 11:58:33 -08:00
Michael Rash
98e79396ce [test suite] start on --access-folder include dir test 2015-12-13 02:24:30 -08:00
Michael Rash
d8dc1fcdee [server] add is_valid_file() function, default to lstat() instead of stat(), more %include_folder tests 2015-12-13 01:39:29 -08:00
Michael Rash
b305f67ca5 [test suite] start on %include_folder tests, make sure at least one valid access.conf stanza has been parsed 2015-12-12 20:39:37 -08:00
Michael Rash
f2e6b6cc68 [server] fix directory handle leak in failure condition, switch to strlcpy and strlcat for %include folder parsing 2015-12-12 12:30:24 -08:00
Michael Rash
66458dfa49 [server] exit before writing pid file in --exit-parse-config mode 2015-12-12 06:22:40 -08:00
Michael Rash
b65d766d80 [server] minor change to use MAX_DEPTH 2015-12-12 06:06:33 -08:00
Jonathan Bennett
f7667239e6 Add documentation for the --access-folder command line option 2015-12-10 17:41:43 -06:00
Jonathan Bennett
a0c4acd31c Adds the --access-folder command line option 2015-12-10 12:45:28 -06:00
Jonathan Bennett
186101d298 Add the %include_folder directive 2015-12-10 11:16:50 -06:00
Jonathan Bennett
abad765212 Only initialize the access stanze data on the root access.conf file. 2015-12-09 00:13:53 -06:00
Michael Rash
ae1e804ea1 [test suite] add test for access.conf include directive 2015-12-08 19:51:51 -08:00
Michael Rash
947dbfe6ae Merge branch 'master' into access_conf_includes 2015-12-08 19:04:32 -08:00
Michael Rash
95383149cb [server] bug fix to honor CMD_EXEC_USER and CMD_SUDO_EXEC_USER vars 2015-12-08 19:01:53 -08:00
Michael Rash
3e3bf0d122 Merge branch 'master' into accesss_conf_includes 2015-12-07 18:18:27 -08:00
Michael Rash
4f81dd7747 [server] local NAT should not be enabled by default 2015-12-07 16:51:19 -08:00
Michael Rash
a8ec29affa [server] minor cleanup for incoming SPA packet processing 2015-12-05 16:06:25 -08:00
Michael Rash
b6674aba6f [server] allow ENABLE_IPT_LOCAL_NAT to enable FORCE_NAT features 2015-12-05 06:05:58 -08:00
Michael Rash
988075b52b [server] bug fix to honor client timeout SPA messages in --nat-local mode, fixes #173 2015-12-04 19:36:51 -08:00
Jonathan Bennett
c3d50a9503 Unwind the recursive access.conf properly on an error 
and remove a debugging log message.
 2015-12-04 18:34:09 -06:00
Jonathan Bennett
1e34a3430c Add access.conf %include depth tracking 2015-12-04 18:16:57 -06:00
Jonathan Bennett
ce0b7f6727 Initial work on access.conf includes 2015-12-03 23:23:42 -06:00
Vlad Glagolev
eb88e0ab00 respect CMD_CYCLE_TIMER 2015-11-27 17:44:34 +03:00
Michael Rash
0bf4993071 [server] minor update to replace a string compare for command cycle close exclusions 2015-11-17 21:19:59 -08:00
Vlad Glagolev
37cc375ea3 added substitution support for CLIENT_TIMEOUT 2015-11-19 21:39:07 +03:00
Michael Rash
cfa02859eb [server] don't run firewall handling code for command-only modes 2015-11-17 20:48:37 -08:00
Michael Rash
882624a2a0 [server] allow 'NONE' to short circuit close command execution 2015-11-13 11:18:19 -08:00
Michael Rash
b0f25ae2e8 [server] (Vlad Glagolev) Add client timeouts to command open/close cycle operations 2015-11-13 08:41:39 -08:00
Michael Rash
97faa2dbdf minor docs update 2015-11-10 21:40:57 -05:00
Michael Rash
2f49be6cb0 [server] For SIGHUP processing, don't send the TCP server SIGTERM unless it is running 2015-11-01 01:58:47 -08:00
Michael Rash
72d6a0c018 [test suite] add multi-cycle open/close command tests 2015-10-26 13:02:51 -07:00
Michael Rash
7910658c85 [server] memory leak bugfix caught by multi-cycle open/close test 2015-10-24 07:05:29 -04:00
Michael Rash
4909b629d5 [server] add command cycle close support to UDP server mode 2015-10-19 20:17:44 -04:00
Michael Rash
6c0b328114 [server] fix command cycle close code to iterate through the entire list until all expiration commands have been executed 2015-10-18 08:47:50 -07:00
Michael Rash
17b4b3d55e [server] implemented command cycle close execution and expiration 2015-10-17 20:14:33 -07:00
Michael Rash
2b97e8b2e6 [server] command IP,SRC,PKT_SRC,DST,PORT,PROTO substitutions work for open/close cycles now 2015-10-17 06:30:33 -07:00
Michael Rash
32b4c5e53f [server] minor log_msg() reformatting 2015-10-17 05:27:54 -07:00
Michael Rash
4587a279e1 [server] validate CMD_CYCLE_* vars from the access.conf file 2015-10-13 19:17:06 -07:00
Michael Rash
d67fbde992 [server] start on command open/close cycle support (issue #117) 2015-10-13 18:00:07 -07:00
Michael Rash
cac6a3f726 [server] minor refactor for access.conf parsing 2015-10-09 04:42:09 -07:00
Michael Rash
a11881433d [server] minor access.conf variable name bug fix 2015-10-03 06:16:47 -07:00
Damien Stuart
a4309ad768 Added clean up for .gcno and .gcda files (left went c-unit-tests are enabled. 2015-09-05 15:20:22 -04:00
Damien Stuart
2e60687dcf Merge branch 'master' into dstuart_refactor_autoconf 2015-08-29 12:46:24 -04:00
Michael Rash
ecfa8021e5 doc updates to include sudo information 2015-08-24 17:25:06 -07:00
Michael Rash
d1d59778e9 [server] handle trailing quote for PF firewalls on OpenBSD 2015-08-21 23:06:07 -04:00
Michael Rash
dd1528c829 [test suite] set sudo path on the fwknopd command line 2015-08-21 22:24:45 -04:00