DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
2,249 Commits 15 Branches 0 Tags
a8ec29affa7128ddbc0d7db9df74246e23e79b3a
Commit Graph

2249 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Rash
a8ec29affa [server] minor cleanup for incoming SPA packet processing 2015-12-05 16:06:25 -08:00
Michael Rash
51c0efb665 [test suite] minor var addition for Rijndael key existence test 2015-12-05 07:00:24 -08:00
Michael Rash
b6674aba6f [server] allow ENABLE_IPT_LOCAL_NAT to enable FORCE_NAT features 2015-12-05 06:05:58 -08:00
Michael Rash
2c74372a4e [test suite] fix fko_set_username_strdup fault injection test 2015-12-05 05:50:39 -08:00
Michael Rash
793813e8ef [test suite] add missing coverage report to coverage_diff.py 2015-12-05 05:46:10 -08:00
Michael Rash
044ebf5e73 [test suite] add -O and -N to coverage diff'ing utility 2015-12-05 05:36:51 -08:00
Michael Rash
988075b52b [server] bug fix to honor client timeout SPA messages in --nat-local mode, fixes #173 2015-12-04 19:36:51 -08:00
Michael Rash
d4ca18dae6 [test suite] more comprehensive code coverage driven by fko-wrapper 2015-12-04 19:04:23 -08:00
Michael Rash
f89af3b8c1 add libfko fko_set_username() crash ChangeLog message 2015-12-04 19:03:22 -08:00
Michael Rash
21149faf89 [libfko] fko_set_username() crash bug fix. 
Bug fix for a crash in libfko that could be triggered in fko_set_username()
when a username that is 64 chars or longer is specified. This crash
cannot be triggered in fwknopd even if an SPA packet contains such a
username however due to additional protections in the SPA decoding
routines. Further, this bug does not apply to the main fwknop client
either because the maximal username size is truncated down below 64
bytes. Hence, this bug only applies to client-side software that is
directly using libfko calling the fko_set_username() function.
 2015-12-04 19:01:26 -08:00
Michael Rash
a000bcd4a0 [client] minor formatting update 2015-12-04 18:49:24 -08:00
Michael Rash
c67008b6a8 minor fault injection tag rework for fko_set_rand_value() and fko_set_username() 2015-11-30 12:28:59 -08:00
Michael Rash
343d0b7f44 Merge branch 'master' of ssh://github.com/mrash/fwknop 2015-11-29 21:31:30 -05:00
Michael Rash
0adb4ac2ba add -fPIC to enforce position-independent code (necessary for gcc > 5.0), fixes #170 2015-11-29 21:30:41 -05:00
Michael Rash
50a5f76080 Merge pull request #171 from vaygr/client-timeout 
respect CMD_CYCLE_TIMER
 2015-11-27 09:47:16 -05:00
Vlad Glagolev
eb88e0ab00 respect CMD_CYCLE_TIMER 2015-11-27 17:44:34 +03:00
Michael Rash
8c7a007a4a [test suite] differentiate TIMEOUT vs. CLIENT_TIMEOUT values in command open close cycles 2015-11-17 22:41:22 -08:00
Michael Rash
f6829fe527 [test suite] added command cycle close NONE test 2015-11-17 22:08:58 -08:00
Michael Rash
0bf4993071 [server] minor update to replace a string compare for command cycle close exclusions 2015-11-17 21:19:59 -08:00
Michael Rash
47663f4215 Merge pull request #169 from vaygr/client-timeout 
added substitution support for CLIENT_TIMEOUT
 2015-11-19 20:55:29 -05:00
Vlad Glagolev
37cc375ea3 added substitution support for CLIENT_TIMEOUT 2015-11-19 21:39:07 +03:00
Michael Rash
cfa02859eb [server] don't run firewall handling code for command-only modes 2015-11-17 20:48:37 -08:00
Michael Rash
882624a2a0 [server] allow 'NONE' to short circuit close command execution 2015-11-13 11:18:19 -08:00
Michael Rash
b0f25ae2e8 [server] (Vlad Glagolev) Add client timeouts to command open/close cycle operations 2015-11-13 08:41:39 -08:00
Michael Rash
51de939846 [test suite] add open/close --fw-timeout test 2015-11-13 08:33:44 -08:00
Michael Rash
97faa2dbdf minor docs update 2015-11-10 21:40:57 -05:00
Michael Rash
347ee04827 [test suite] minor rework of signals to fwknopd 2015-11-08 17:49:04 -08:00
Michael Rash
8484e3ea7a [test suite] add unhandled signal (SIGTSTP) to signal handling test 2015-11-07 13:35:51 -08:00
Michael Rash
2f49be6cb0 [server] For SIGHUP processing, don't send the TCP server SIGTERM unless it is running 2015-11-01 01:58:47 -08:00
Michael Rash
d3dcfc9cf4 Merge remote-tracking branch 'origin/master' into cmd_open_close_cycle 2015-10-31 10:37:06 -07:00
Damien Stuart
02049cb473 Added AM_CONDITIONAL to check if OS is Darwin (Apple) and not use the --whole-archive option if it is. 2015-11-02 23:02:22 -05:00
Damien Stuart
0ef8ba5259 Added use of --whole-archive for linking libfko_util.a to libfko.so. This takes care of the unresolved symbols (from libfko_util) when linking libfko.so. 2015-11-02 21:41:26 -05:00
Michael Rash
2101bd63e9 [test suite] add tests/* interface for file_find_num_matches() 2015-10-31 10:36:46 -07:00
Michael Rash
2d65330ce7 [test suite] add a few missing test suite configs 2015-10-31 06:07:27 -07:00
Damien Stuart
0a9f4e3e59 Minor tweak for format fix in the gpl texinfo file 2015-10-26 21:20:16 -04:00
Michael Rash
72d6a0c018 [test suite] add multi-cycle open/close command tests 2015-10-26 13:02:51 -07:00
Michael Rash
577c2a74a4 [test suite] add sleep_cycles key for multi-cycle tests 2015-10-24 08:03:28 -04:00
Michael Rash
7910658c85 [server] memory leak bugfix caught by multi-cycle open/close test 2015-10-24 07:05:29 -04:00
Michael Rash
36317b59a6 [test suite] add command cycle test via the UDP server 2015-10-19 19:50:05 -07:00
Michael Rash
7c476a747d [test suite] add hmac_cmd_open_close_cycle_access5.conf file 2015-10-19 20:24:34 -04:00
Michael Rash
4909b629d5 [server] add command cycle close support to UDP server mode 2015-10-19 20:17:44 -04:00
Michael Rash
1c33c5089e [test suite] additional cmd cycle var substitution test 2015-10-19 20:17:17 -04:00
Michael Rash
3a591fbf49 [test suite] add hmac_cmd_open_close_cycle_access4.conf file 2015-10-18 09:48:30 -07:00
Michael Rash
3fb75cace3 [test suite] add SRC,PKT_SRC,DST var subsitution test 2015-10-18 09:48:07 -07:00
Michael Rash
7a09daba4c [test suite] more command cycle tests (multiple substitution vars) 2015-10-18 09:28:48 -07:00
Michael Rash
5597730e27 [test suite] added open/close file tests 2015-10-18 09:13:49 -07:00
Michael Rash
6c0b328114 [server] fix command cycle close code to iterate through the entire list until all expiration commands have been executed 2015-10-18 08:47:50 -07:00
Michael Rash
17b4b3d55e [server] implemented command cycle close execution and expiration 2015-10-17 20:14:33 -07:00
Michael Rash
2b97e8b2e6 [server] command IP,SRC,PKT_SRC,DST,PORT,PROTO substitutions work for open/close cycles now 2015-10-17 06:30:33 -07:00
Michael Rash
32b4c5e53f [server] minor log_msg() reformatting 2015-10-17 05:27:54 -07:00