DeforaNetworks/fwknop
DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
1,567 Commits 15 Branches 0 Tags
Commit Graph

1567 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Rash
05e7d52a5f [client] merged --stanza-list changes from Franck, closes #94 2013-08-08 20:54:07 -04:00
Hank Leininger
bc907e0b24
Add unique errors for every FKO_ERROR_INVALID_DATA. Needed this to 
track down mystery errors (#98).
 2013-08-05 22:21:10 -04:00
Michael Rash
320008b8de minor ChangeLog update for the test suite --gdb-test feature 2013-08-05 21:08:40 -04:00
Franck Joncourt
7296d3f3bf * Interim commit to add a dump function to dump the FKO context shared 
by both the server and client. mrash/fwknop#95
 2013-08-05 23:28:07 +02:00
Michael Rash
8c73c7801b [server] send IPT_*_ACCESS vars through basic validation at fwknopd.conf parse time 2013-08-05 00:00:45 -04:00
Michael Rash
5fa93c621a [test suite] minor seg fault test message update 2013-08-04 23:23:07 -04:00
Michael Rash
131c643cad [server] make IPT_INPUT_ACCESS validation more strict on allowed chars 2013-08-04 23:20:53 -04:00
Michael Rash
39fa4cc012 [server] if iptables init fails then no need to remove fwknop chains 
This commit fixes a crash at init time in fwknopd if an improperly formatted
IPT_INPUT_ACCESS variable is used in fwknopd.conf file.  fwknopd should not
try to delete chains with a bogus IPT_INPUT_ACCESS variable, and valgrind
verifies that this change does not introduce any memory leaks (see the
'invalid iptables INPUT spec' tests run in --enable-valgrind mode).
 2013-08-04 23:01:33 -04:00
Michael Rash
a7030b038a [test suite] added --gdb-test mode 
This commit allows the test suite to execute the same fwknop/fwknopd command
used in a specified test output file under gdb.  This is a convenience
measure to allow the user to more rapidly execute fwknop/fwknopd commands
under gdb in the same way the test suite does without having to copy and paste
command line args.

Here is a basic example:

root@lorien:/home/mbr/git/fwknop.git/test# ./test-fwknop.pl --gdb output/6.test
GNU gdb
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i686-linux-gnu".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /home/mbr/git/fwknop.git/server/.libs/fwknopd...done.
(gdb) run
Starting program: /home/mbr/git/fwknop.git/server/.libs/fwknopd -c conf/invalid_ipt_input_chain_6_fwknopd.conf -a conf/default_access.conf -d run/digest.cache -p run/fwknopd.pid -i lo --foreground --verbose --verbose
 2013-08-04 21:46:38 -04:00
Michael Rash
92e888a34f [test suite] minor removal of duplicate Cwd usage 2013-08-04 21:24:44 -04:00
Michael Rash
870a08c9f5 [test suite] added invalid IPT input chain specification tests 2013-08-04 21:22:35 -04:00
Michael Rash
ce3a7bc16d [test suite] have Makefile.am test/conf/ file inclusion only write errors 2013-08-04 17:55:41 -04:00
Michael Rash
3395e5c132 [test suite] don't append segfault searches to every test output file 2013-08-04 11:25:58 -04:00
Michael Rash
433b18501c [test suite] additional non-HMAC SNAT tests 2013-08-04 04:51:39 -04:00
Michael Rash
2f7a3f0a8a [test suite] SNAT MASQUERADE test 2013-08-03 20:52:27 -04:00
Michael Rash
24101ac33a [server] add NULL check for SNAT translate IP 2013-08-03 20:37:50 -04:00
Michael Rash
0200169dfd [test suite] started on SNAT tests 2013-08-03 13:36:32 -04:00
Michael Rash
f062ac5706 [server] minor enable check via strncasecmp() 2013-08-02 23:22:10 -04:00
Michael Rash
cc896bbcde [test suite] added checks to look for segfaults/crashes 2013-08-02 15:09:00 -04:00
Michael Rash
2f0ad7c4be [test suite] have fko_wrapper only require fko.h 2013-07-31 13:57:49 -04:00
Franck Joncourt
04f72ea724 * Fixed typos. 2013-07-30 23:00:19 +02:00
Franck Joncourt
836921a9ea * Added new test to validate --stanza-list 2013-07-30 22:54:10 +02:00
Franck Joncourt
ccee56b998 * A bit more of documentation. 2013-07-30 21:49:33 +02:00
Franck Joncourt
80528e21f6 * Updated fwknop manpage to mention the new --stanza-list. 2013-07-30 21:45:24 +02:00
Franck Joncourt
d74cc99276 Merge remote-tracking branch 'upstream/master' 2013-07-30 21:42:42 +02:00
Franck Joncourt
4c478c1bb6 * Added a new --stanza-list command line to fwknop to dump the stanzas 
configured in ./fwknoprc. The default stanza is not displayed.
 2013-07-30 21:38:54 +02:00
Michael Rash
fc39de607c minor man page update to move --syslog-enable to the server man page 2013-07-29 00:06:52 -04:00
Franck Joncourt
f1cee780d2 Merge remote-tracking branch 'upstream/master' 2013-07-28 22:11:16 +02:00
Franck Joncourt
1977973020 * Allow messages to be sent to syslog even if the foreground mode is invoked. 2013-07-28 22:07:14 +02:00
Michael Rash
54ab33a08f updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1 2013-07-25 21:27:58 -04:00
Michael Rash
798b7db2da added 'Release: 2' for libfko RPM versioning (since libfko did not change from 2.5 -> 2.5.1) 2013-07-25 21:27:20 -04:00
Michael Rash
e20586dfe6 updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1 2013-07-25 20:36:45 -04:00
Michael Rash
90841762cf bumped version to 2.5.1 2013-07-25 20:33:37 -04:00
Michael Rash
694fb39a85 [test suite] Bug fix to not run an iptables Rijndael HMAC test on non-Linux systems 2013-07-25 20:33:19 -04:00
Michael Rash
22836d9915 updated version and release date for 2.5.1 2013-07-24 23:11:46 -04:00
Michael Rash
246c4da322 added 2.5.1 material 2013-07-24 23:04:40 -04:00
Michael Rash
dcb7871d02 [server] don't print PID file existence warning in daemon mode (suggested by Ilya Tumaykin) 2013-07-24 23:04:31 -04:00
Michael Rash
ea9d6a0fdc [client] apply patch from Ilya Tumaykin for terminal setting type 
This commit also fixes a 'possible use of uninitialized value' warning from gcc for
the old_c_lflag variable.
 2013-07-24 22:44:08 -04:00
Damien Stuart
5ec4998aaa Reset terminal setting to orignal values after entering keys via stdin 2013-07-24 14:39:26 -04:00
Michael Rash
7359acec2a set libfko version to 2.0.0 for the RPM per Damien's recommendation 2013-07-19 20:34:01 -04:00
Michael Rash
11fa1f2f0d [libfko] set version-info to 2:0:0 per Damien and Franck's recommendations 2013-07-19 20:33:38 -04:00
Michael Rash
a0ffd0f492 ChangeLog.git file now shows changes since 2.0.4 2013-07-18 23:14:00 -04:00
Michael Rash
65dc33dd9c [client] added --use-hmac to --help output (noticed by Damien) 2013-07-18 23:06:24 -04:00
Michael Rash
35d168cf21 added fwknop-2.5 release date 2013-07-18 23:05:49 -04:00
Michael Rash
3ee8b47870 [client] fix minor memory leak in getpasswd() routine caught by the test suite in valgrind mode 2013-07-18 17:30:25 -04:00
Michael Rash
f2d829535b [client] fix minor compilation warning about an unused variable 2013-07-18 00:15:22 -04:00
Michael Rash
708e3027f5 Revert "[libfko] Have 'make install' run ldconfig if basic fwknop/fwknopd -h exec fails" 
This reverts commit f55b89c867ab63aaf69daae0aec0c19f1c52d521.

Damien recommended not having 'make install' run ldconfig since it breaks an RPM
build of fwknop, and most package managers should be doing this step anyway.
 2013-07-17 23:51:54 -04:00
Michael Rash
f7a821d082 minor ChangeLog text tweaks and one typo fix 2013-07-17 23:34:37 -04:00
Damien S. Stuart
4b0f0802ee Tweaks to unbreak the windows build: Renamed FD_SET macro to FD_SET_ALT to avoid conflict with the well-known FD_SET macro. Made the client read password from file descriptor a non-supported function on Windows. 2013-07-17 22:46:24 -04:00
Michael Rash
39213beda7 add legacy_iv_long_key2_access.conf file to Makefile.am 2013-07-14 17:46:48 -04:00