DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
1,567 Commits 15 Branches 0 Tags
Commit Graph

1567 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Rash
d996c45141 minor 2.6.2 release date change 2014-04-28 20:26:05 -04:00
Michael Rash
000e02f039 changes since 2.6.1 2014-04-26 23:46:40 -04:00
Michael Rash
30f30a91ac bumped version to 2.6.2 2014-04-26 23:43:32 -04:00
Michael Rash
0c70c7db21 ChangeLog for 2.6.2 2014-04-26 23:42:17 -04:00
Michael Rash
add2c913ab [libfko] fix double free bug in SPA parser 
This commit fixes a double free condition discovered through the new
python SPA payload fuzzer.  This bug could be triggered in fwknopd with
a malicious SPA payload but only when GnuPG is used.  When Rijndael is
used for SPA packet encryption, this bug cannot be triggered due to an
length/format check towards the end of _rijndael_decrypt().  It should
be noted that only a person in possession of the correct encryption and
authentication GnuPG keys could trigger this bug.
 2014-04-26 23:26:36 -04:00
Michael Rash
4d167cd7df credit Blair and Tim with MacPorts and Homebrew maintainer status 2014-04-13 21:39:50 -04:00
Michael Rash
f47ceefd1f changes since 2.6.0 2014-04-12 15:25:03 -04:00
Michael Rash
67dd1d5bdd [server] bug fix to allow IP-formatted masks for SOURCE lines in access.conf 2014-04-12 15:21:00 -04:00
Michael Rash
55965dd1a4 minor typo fix 2014-04-12 15:20:31 -04:00
Michael Rash
b243bb4bb7 [client] fix minor memory leak before exit() in parsing invalid time offsets 2014-04-11 22:45:27 -04:00
Michael Rash
2cafdad968 bump version to 2.6.1 2014-04-11 22:41:00 -04:00
Michael Rash
b97484734e [client] fix memory leak introduced in 0ff210099 2014-04-10 23:18:44 -04:00
Michael Rash
b422f1b9a7 [test suite] implement new fwknopd access/fwknopd.conf file writing feature similar to client rc file writing/testing 2014-04-10 23:10:11 -04:00
Michael Rash
c75cbdddef [test suite] add compounded tests for fko-wrapper 2014-04-10 23:08:51 -04:00
Michael Rash
fdb8c890e9 [server] make parse_access_file() exit if there is a variable formatting problem 2014-04-10 23:08:19 -04:00
Michael Rash
4b86edbbe2 [client] ensure to call fko_destroy() on the correct context if encryption mode could not be determined 2014-04-10 23:07:39 -04:00
Michael Rash
f539afc750 [client] make is_rc_param() error condition fatal 2014-04-10 20:48:05 -04:00
Michael Rash
55d1ee3fd9 [test suite] --key-* arg validation with --fd 0 2014-04-09 23:56:50 -04:00
Michael Rash
ac6ffe2ec7 [server] Validate GPG sigs with libfko fko_gpg_signature_id_match() function 2014-04-09 23:56:03 -04:00
Michael Rash
0ff2100993 [test suite/client] memory leak bug fix and test coverage 
This commit fixes a minor memory leak in the fwknop client before
calling exit() when an abnormally large number of command line arguments
are given.  The leak was found with valgrind together with the test
suite (specifically the 'show last args (4)' test):

==23748== 175 bytes in 50 blocks are definitely lost in loss record 1 of 1
==23748==    at 0x4C2C494: calloc (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==23748==    by 0x1112F1: run_last_args (fwknop.c:991)
==23748==    by 0x110D36: prev_exec (fwknop.c:916)
==23748==    by 0x10D953: main (fwknop.c:170)

Additional test coverage was added for the client via the
basic_operations.pl tests.
 2014-04-08 21:12:46 -04:00
Michael Rash
2e4eea8d49 [libfko] minor formating update for strtol_wrapper() range output messages 2014-04-08 21:08:24 -04:00
Michael Rash
5752433420 [libfko] minor comment re-wording 2014-04-08 21:06:45 -04:00
Michael Rash
d327f99efb [client] minor typo fix 2014-04-08 21:06:18 -04:00
Michael Rash
e5169d0878 [test suite] env HOME tests, -R http resolve tests 2014-04-08 11:15:53 -04:00
Michael Rash
d9c1eb8f51 [test suite] more client/config_init.c test coverage 2014-04-07 22:31:56 -04:00
Michael Rash
5da38165ef [test suite] KEY_FILE and HMAC_KEY_FILE tests 2014-04-06 22:21:14 -04:00
Michael Rash
c6cb892a05 [test suite] more client/config_init.c test coverage 2014-04-06 22:14:10 -04:00
Michael Rash
5176cd0976 [test suite] additional test coverage for client/config_init.c 2014-04-06 21:27:15 -04:00
Michael Rash
09fb2dd240 [test suite] allow tests/*.pl files to use lib_view_str variable directly 2014-04-06 21:27:07 -04:00
Michael Rash
4d63644ce7 [test suite] additional test coverage for client/config_init.c 2014-04-06 15:42:22 -04:00
Michael Rash
710720b237 [test suite] non-default stanza digest update test 2014-04-05 23:09:04 -04:00
Michael Rash
e95d601a48 [test suite] added --key-gen -K file path too long test 2014-04-05 21:51:56 -04:00
Michael Rash
48eb5fcc94 [test suite] added key file path too long tests 2014-04-05 21:29:24 -04:00
Michael Rash
d0d77ba67f [test suite] added rc file path too long test 2014-04-05 08:19:20 -04:00
Michael Rash
1ec1443768 [test suite] add several validation tests to exercise various client/config_init.c lines 2014-04-04 23:03:03 -04:00
Michael Rash
a65324bad1 [client] return error exit status if --stanza-list cannot open the rc file 2014-04-04 23:02:09 -04:00
Michael Rash
0b6a407392 [libfko] remove unused digest *_End(), *_Data(), and *_hex() functions in favor of better test coverage (always can be reinstantiated if needed) 2014-04-04 22:54:38 -04:00
Michael Rash
f9885d0657 [libfko] add GPG sig status to fko dump context function 2014-04-04 22:50:41 -04:00
Michael Rash
b8492d4319 [test suite] added --key-rijndael and --key-hmac tests 2014-04-03 22:52:53 -04:00
Michael Rash
956199a3cb [client] minor typo fix for -P requirement under spoofed src mode 2014-04-03 22:52:11 -04:00
Michael Rash
2da2704d4c [test suite] fwknoprc GPG tests, more time offset tests 2014-04-03 19:30:58 -04:00
Michael Rash
d4c696d24a [client] minor update to comment out unused function 2014-04-03 19:27:44 -04:00
Michael Rash
e4a382a87f [test suite] save pkt to file tests 2014-04-03 10:04:52 -04:00
Michael Rash
083db46416 [test suite] added popen() 'n' answer test 2014-04-03 08:56:27 -04:00
Michael Rash
00fed6132c [test suite] additional save rc file variable coverage 2014-04-02 23:55:00 -04:00
Michael Rash
f121dc5e8a [test suite] ensure to recompile for gcov coverage analysis 2014-04-02 23:54:33 -04:00
Michael Rash
9be5c24cad [test suite] remove .gcno files in --profile-coverage-init mode 2014-04-01 15:42:36 -04:00
Michael Rash
e60d491864 [test suite] basic ops save rc stanza --encryption-mode tests 2014-04-01 14:22:10 -04:00
Michael Rash
78dd3ea43b [test suite] basic ops save rc stanza time offset minus test 2014-04-01 14:19:49 -04:00
Michael Rash
9f10c3ede6 [test suite] basic ops save rc stanza time offset tests 2014-04-01 14:18:14 -04:00