DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
1,570 Commits 15 Branches 0 Tags
bd32e40529872608cb449bfeba59d7dfdcfa00ac
Commit Graph

451 Commits

Author SHA1 Message Date
Michael Rash
67dd1d5bdd [server] bug fix to allow IP-formatted masks for SOURCE lines in access.conf 2014-04-12 15:21:00 -04:00
Michael Rash
b243bb4bb7 [client] fix minor memory leak before exit() in parsing invalid time offsets 2014-04-11 22:45:27 -04:00
Michael Rash
b422f1b9a7 [test suite] implement new fwknopd access/fwknopd.conf file writing feature similar to client rc file writing/testing 2014-04-10 23:10:11 -04:00
Michael Rash
c75cbdddef [test suite] add compounded tests for fko-wrapper 2014-04-10 23:08:51 -04:00
Michael Rash
55d1ee3fd9 [test suite] --key-* arg validation with --fd 0 2014-04-09 23:56:50 -04:00
Michael Rash
0ff2100993 [test suite/client] memory leak bug fix and test coverage 
This commit fixes a minor memory leak in the fwknop client before
calling exit() when an abnormally large number of command line arguments
are given.  The leak was found with valgrind together with the test
suite (specifically the 'show last args (4)' test):

==23748== 175 bytes in 50 blocks are definitely lost in loss record 1 of 1
==23748==    at 0x4C2C494: calloc (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==23748==    by 0x1112F1: run_last_args (fwknop.c:991)
==23748==    by 0x110D36: prev_exec (fwknop.c:916)
==23748==    by 0x10D953: main (fwknop.c:170)

Additional test coverage was added for the client via the
basic_operations.pl tests.
 2014-04-08 21:12:46 -04:00
Michael Rash
e5169d0878 [test suite] env HOME tests, -R http resolve tests 2014-04-08 11:15:53 -04:00
Michael Rash
d9c1eb8f51 [test suite] more client/config_init.c test coverage 2014-04-07 22:31:56 -04:00
Michael Rash
5da38165ef [test suite] KEY_FILE and HMAC_KEY_FILE tests 2014-04-06 22:21:14 -04:00
Michael Rash
c6cb892a05 [test suite] more client/config_init.c test coverage 2014-04-06 22:14:10 -04:00
Michael Rash
5176cd0976 [test suite] additional test coverage for client/config_init.c 2014-04-06 21:27:15 -04:00
Michael Rash
09fb2dd240 [test suite] allow tests/*.pl files to use lib_view_str variable directly 2014-04-06 21:27:07 -04:00
Michael Rash
4d63644ce7 [test suite] additional test coverage for client/config_init.c 2014-04-06 15:42:22 -04:00
Michael Rash
710720b237 [test suite] non-default stanza digest update test 2014-04-05 23:09:04 -04:00
Michael Rash
e95d601a48 [test suite] added --key-gen -K file path too long test 2014-04-05 21:51:56 -04:00
Michael Rash
48eb5fcc94 [test suite] added key file path too long tests 2014-04-05 21:29:24 -04:00
Michael Rash
d0d77ba67f [test suite] added rc file path too long test 2014-04-05 08:19:20 -04:00
Michael Rash
1ec1443768 [test suite] add several validation tests to exercise various client/config_init.c lines 2014-04-04 23:03:03 -04:00
Michael Rash
b8492d4319 [test suite] added --key-rijndael and --key-hmac tests 2014-04-03 22:52:53 -04:00
Michael Rash
2da2704d4c [test suite] fwknoprc GPG tests, more time offset tests 2014-04-03 19:30:58 -04:00
Michael Rash
e4a382a87f [test suite] save pkt to file tests 2014-04-03 10:04:52 -04:00
Michael Rash
083db46416 [test suite] added popen() 'n' answer test 2014-04-03 08:56:27 -04:00
Michael Rash
00fed6132c [test suite] additional save rc file variable coverage 2014-04-02 23:55:00 -04:00
Michael Rash
f121dc5e8a [test suite] ensure to recompile for gcov coverage analysis 2014-04-02 23:54:33 -04:00
Michael Rash
9be5c24cad [test suite] remove .gcno files in --profile-coverage-init mode 2014-04-01 15:42:36 -04:00
Michael Rash
e60d491864 [test suite] basic ops save rc stanza --encryption-mode tests 2014-04-01 14:22:10 -04:00
Michael Rash
78dd3ea43b [test suite] basic ops save rc stanza time offset minus test 2014-04-01 14:19:49 -04:00
Michael Rash
9f10c3ede6 [test suite] basic ops save rc stanza time offset tests 2014-04-01 14:18:14 -04:00
Michael Rash
b005287aa6 [test suite] basic ops get key tests 2014-04-01 14:09:00 -04:00
Michael Rash
f2484e599f [test suite] rc file time offset tests 2014-04-01 10:41:36 -04:00
Michael Rash
cfa15f3961 [test suite] minor popen_cmd() status update 2014-04-01 09:57:19 -04:00
Michael Rash
7e1f3aad69 [test suite] add long_spa.key file 2014-03-31 13:58:40 -04:00
Michael Rash
50e454216c [test suite] additional critical var popen() tests 2014-03-31 13:54:10 -04:00
Michael Rash
8ed9728fd3 [test suite] add coverage test for client -M legacy truncated key 2014-03-31 13:44:46 -04:00
Michael Rash
e09e091f71 [test suite] add --profile-coverage-init to recompile and remove old .gcov and .gcda files 2014-03-31 08:22:07 -04:00
Michael Rash
5b6c3768fb [test suite] exercise client rc file ask overwrite feature via popen() 2014-03-31 08:02:08 -04:00
Michael Rash
bfa1704072 [test suite] exclude /usr/include/* files from lcov coverage analysis 2014-03-30 16:06:46 -04:00
Michael Rash
3ca546092b [test suite] additional rc file code coverage tests 2014-03-29 22:23:45 -04:00
Michael Rash
a9fb3c05db [test suite] minor typo fix 2014-03-29 21:45:10 -04:00
Michael Rash
22b1b2d9d2 [test suite] additional client/config_init.c code coverage test for fwknoprc file parsing 2014-03-29 21:44:24 -04:00
Michael Rash
9c86477e72 [test suite] HTTP proxy tests for client/spa_comm.c test coverage 2014-03-29 15:05:52 -04:00
Michael Rash
535bcdf2a6 [test suite] IP resolution tests for client/http_resolve_host.c coverage 2014-03-29 14:53:52 -04:00
Michael Rash
74a4cabb9c [test suite] Added valgrind suppressions for gpgme 
Running the test suite with --enable-valgrind resulted in large numbers
of leaks detected in gpgme functions.  This commit adds a valgrind
suppressions file to squash these errors (which are not fwknop's fault),
and also enables the valgrind --child-slient-after-fork option by
default.  Both of these can disable in test suite execution with two
new options: --valgrind-disable-suppressions and
--valgrind-disable-child-silent.
 2014-03-27 12:02:30 -04:00
Michael Rash
73bc473563 [client+server] verify GnuPG signatures by default 
- [server] When GnuPG is used, the default now is to require that
incoming SPA packets are signed by a key listed in GPG_REMOTE_ID for each
access.conf stanza. In other words, the usage of GPG_REQUIRE_SIG
is no longer necessary in order to authenticate SPA packets via the
GnuPG signature. Verification of GnuPG signatures can be disabled with a
new access.conf variable GPG_DISABLE_SIG, but this is NOT a
recommended configuration.
- [client+server] Add --gpg-exe command line argument and GPG_EXE
config variable to ~/.fwknoprc and the access.conf file so that the path
to GnuPG can be changed from the default /usr/bin/gpg path.
 2014-03-25 19:53:13 -04:00
Michael Rash
a52aa8d54a [test suite] don't remove .gcov/.gcda profiling files in --list-mode 2014-03-18 20:39:25 -04:00
Michael Rash
6875d0092c [test suite] exercise fko_base64_encode() and fko_base64_decode() in fko-wrapper 2014-03-18 20:37:47 -04:00
Michael Rash
00f878c5ed [test suite] add --spoof-user test 2014-03-17 22:36:49 -04:00
Michael Rash
d98cb7fd2c [test suite] add --preserve-previous-profile-files 2014-03-17 22:36:17 -04:00
Michael Rash
b33a6e4c22 [test suite] ensure the fko multi-call wrapper is executed under valgrind 2014-03-17 21:43:36 -04:00
Michael Rash
490b8e3106 [test suite] add lcov html results for gcov profile coverage in --enable-profile-coverage mode 2014-03-17 21:42:31 -04:00