DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
1,334 Commits 15 Branches 0 Tags
Commit Graph

1334 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Rash
c271f01d00 [test suite] added 'make test' check for FKO perl module 
All built-in tests in the FKO module must pass for this new test to pass.  This commit
is in support of #103
 2013-08-17 23:51:31 -04:00
Michael Rash
e8fe29bbe1 Merge branch 'master' of github.com:mrash/fwknop 2013-08-11 22:09:22 -04:00
Michael Rash
c0c8048ee1 Added fko context dumper change to ChangeLog, updated test suite to account for single line printing of final SPA data 2013-08-11 22:07:02 -04:00
Damien Stuart
12916f21ef Moved new invalid data error definitions above the GPGME_ERR_START marker. 2013-08-11 22:02:50 -04:00
Michael Rash
fa985c1943 Merge remote-tracking branch 'fjoncourt/fko_dump' 
This implements an FKO context dumping function in lib/fko_utils.c, and closes #100
 2013-08-11 15:02:01 -04:00
Michael Rash
45e29f6450 minor edit to credits file for Hank Leininger 2013-08-11 14:30:37 -04:00
Michael Rash
be2bb71c74 [test suite] minor bug fix for GPG no password HMAC test rc file 2013-08-10 21:03:07 -04:00
Michael Rash
5176f9e04b [server] minor addition to access stanza dump output to include hmac digest type 2013-08-10 16:08:19 -04:00
Michael Rash
c04efc20dd [test suite] added Rijndael HMAC digest mismatch tests 2013-08-10 15:45:51 -04:00
Michael Rash
dfc2a06547 [test suite] added Rijndael HMAC + RAND_PORT test 2013-08-10 14:27:10 -04:00
Michael Rash
4775327d98 [test suite] added two GnuPG HMAC SHA512 tests 2013-08-10 13:54:03 -04:00
Franck Joncourt
f8ae3b8da3 Merge remote-tracking branch 'upstream/master' into fko_dump 2013-08-10 14:32:34 +02:00
Franck Joncourt
b590932fb6 * Removed goto statements. We do not do any further processings 
when we reach the error label.
 2013-08-10 14:30:40 +02:00
Michael Rash
333302a7cf ChangeLog/CREDITS update for Hank's libfko error code patch 2013-08-09 21:47:38 -04:00
Michael Rash
4023da87d6 Merge remote-tracking branch 'hlein/unique_errors' 
[libfko] (Hank Leininger) Contributed a patch to greatly extend libfko
error code descriptions at various places in order to give much better
information on what certain error conditions mean.  Closes #98.
 2013-08-09 21:46:49 -04:00
Michael Rash
eb7914d45c minor ChangeLog update for --stanza-list 2013-08-08 21:37:44 -04:00
Michael Rash
d9ba40d48f [server] fix compilation warning dealing with new iptables chain validation 2013-08-08 20:55:10 -04:00
Michael Rash
05e7d52a5f [client] merged --stanza-list changes from Franck, closes #94 2013-08-08 20:54:07 -04:00
Hank Leininger
bc907e0b24
Add unique errors for every FKO_ERROR_INVALID_DATA. Needed this to 
track down mystery errors (#98).
 2013-08-05 22:21:10 -04:00
Michael Rash
320008b8de minor ChangeLog update for the test suite --gdb-test feature 2013-08-05 21:08:40 -04:00
Franck Joncourt
7296d3f3bf * Interim commit to add a dump function to dump the FKO context shared 
by both the server and client. mrash/fwknop#95
 2013-08-05 23:28:07 +02:00
Michael Rash
8c73c7801b [server] send IPT_*_ACCESS vars through basic validation at fwknopd.conf parse time 2013-08-05 00:00:45 -04:00
Michael Rash
5fa93c621a [test suite] minor seg fault test message update 2013-08-04 23:23:07 -04:00
Michael Rash
131c643cad [server] make IPT_INPUT_ACCESS validation more strict on allowed chars 2013-08-04 23:20:53 -04:00
Michael Rash
39fa4cc012 [server] if iptables init fails then no need to remove fwknop chains 
This commit fixes a crash at init time in fwknopd if an improperly formatted
IPT_INPUT_ACCESS variable is used in fwknopd.conf file.  fwknopd should not
try to delete chains with a bogus IPT_INPUT_ACCESS variable, and valgrind
verifies that this change does not introduce any memory leaks (see the
'invalid iptables INPUT spec' tests run in --enable-valgrind mode).
 2013-08-04 23:01:33 -04:00
Michael Rash
a7030b038a [test suite] added --gdb-test mode 
This commit allows the test suite to execute the same fwknop/fwknopd command
used in a specified test output file under gdb.  This is a convenience
measure to allow the user to more rapidly execute fwknop/fwknopd commands
under gdb in the same way the test suite does without having to copy and paste
command line args.

Here is a basic example:

root@lorien:/home/mbr/git/fwknop.git/test# ./test-fwknop.pl --gdb output/6.test
GNU gdb
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i686-linux-gnu".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /home/mbr/git/fwknop.git/server/.libs/fwknopd...done.
(gdb) run
Starting program: /home/mbr/git/fwknop.git/server/.libs/fwknopd -c conf/invalid_ipt_input_chain_6_fwknopd.conf -a conf/default_access.conf -d run/digest.cache -p run/fwknopd.pid -i lo --foreground --verbose --verbose
 2013-08-04 21:46:38 -04:00
Michael Rash
92e888a34f [test suite] minor removal of duplicate Cwd usage 2013-08-04 21:24:44 -04:00
Michael Rash
870a08c9f5 [test suite] added invalid IPT input chain specification tests 2013-08-04 21:22:35 -04:00
Michael Rash
ce3a7bc16d [test suite] have Makefile.am test/conf/ file inclusion only write errors 2013-08-04 17:55:41 -04:00
Michael Rash
3395e5c132 [test suite] don't append segfault searches to every test output file 2013-08-04 11:25:58 -04:00
Michael Rash
433b18501c [test suite] additional non-HMAC SNAT tests 2013-08-04 04:51:39 -04:00
Michael Rash
2f7a3f0a8a [test suite] SNAT MASQUERADE test 2013-08-03 20:52:27 -04:00
Michael Rash
24101ac33a [server] add NULL check for SNAT translate IP 2013-08-03 20:37:50 -04:00
Michael Rash
0200169dfd [test suite] started on SNAT tests 2013-08-03 13:36:32 -04:00
Michael Rash
f062ac5706 [server] minor enable check via strncasecmp() 2013-08-02 23:22:10 -04:00
Michael Rash
cc896bbcde [test suite] added checks to look for segfaults/crashes 2013-08-02 15:09:00 -04:00
Michael Rash
2f0ad7c4be [test suite] have fko_wrapper only require fko.h 2013-07-31 13:57:49 -04:00
Franck Joncourt
04f72ea724 * Fixed typos. 2013-07-30 23:00:19 +02:00
Franck Joncourt
836921a9ea * Added new test to validate --stanza-list 2013-07-30 22:54:10 +02:00
Franck Joncourt
ccee56b998 * A bit more of documentation. 2013-07-30 21:49:33 +02:00
Franck Joncourt
80528e21f6 * Updated fwknop manpage to mention the new --stanza-list. 2013-07-30 21:45:24 +02:00
Franck Joncourt
d74cc99276 Merge remote-tracking branch 'upstream/master' 2013-07-30 21:42:42 +02:00
Franck Joncourt
4c478c1bb6 * Added a new --stanza-list command line to fwknop to dump the stanzas 
configured in ./fwknoprc. The default stanza is not displayed.
 2013-07-30 21:38:54 +02:00
Michael Rash
fc39de607c minor man page update to move --syslog-enable to the server man page 2013-07-29 00:06:52 -04:00
Franck Joncourt
f1cee780d2 Merge remote-tracking branch 'upstream/master' 2013-07-28 22:11:16 +02:00
Franck Joncourt
1977973020 * Allow messages to be sent to syslog even if the foreground mode is invoked. 2013-07-28 22:07:14 +02:00
Michael Rash
54ab33a08f updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1 2013-07-25 21:27:58 -04:00
Michael Rash
798b7db2da added 'Release: 2' for libfko RPM versioning (since libfko did not change from 2.5 -> 2.5.1) 2013-07-25 21:27:20 -04:00
Michael Rash
e20586dfe6 updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1 2013-07-25 20:36:45 -04:00
Michael Rash
90841762cf bumped version to 2.5.1 2013-07-25 20:33:37 -04:00