Commit Graph

Select branches

Hide Pull Requests

khorben/connect-error-format

khorben/coverity/1355235-toctou

khorben/execvp

khorben/http-1.1

khorben/ipv6

khorben/ipv6-client

khorben/ipv6-server

khorben/netbsd

khorben/snprintf

khorben/srandom

khorben/strlcat

khorben/typo

khorben/usage

khorben/warnings

master

Mono Color

• d2880021ca [server] document --udp-server option Michael Rash 2014-11-15 10:45:59 -05:00
• 85f559a9fd 2.6.4 release date Michael Rash 2014-11-15 10:27:19 -05:00
• 5df4376602 add new test suite files to Makefile.am Michael Rash 2014-11-15 00:36:33 -05:00
• 49b09c4903 [test suite] update to use helper scripts for code coverage report generation Michael Rash 2014-11-15 00:22:14 -05:00
• b9d5919cdd [test suite] AFL README update Michael Rash 2014-11-15 00:16:38 -05:00
• 2e1d076160 [server] minor status wording update Michael Rash 2014-11-15 00:16:17 -05:00
• 665b65ef3e doc updates to include material about AFL support Michael Rash 2014-11-15 00:15:55 -05:00
• aaa44656bc [server] add support for American Fuzzy Lop (ALF) fuzzing Michael Rash 2014-11-13 20:55:04 -05:00
• fe288120b3 minor ChangeLog wording update Michael Rash 2014-11-09 21:41:10 -05:00
• 1a76d5586f [test suite] extend server receive criteria Michael Rash 2014-11-09 21:36:36 -05:00
• ba337108af [test suite] implement multi-cycle test sequences Michael Rash 2014-11-08 21:44:49 -05:00
• 7022d79ca7 [server] minor code cleanup Michael Rash 2014-11-06 20:24:50 -05:00
• a8879231c3 [server] add run_extcmd_write() call in code coverage mode Michael Rash 2014-11-06 20:24:33 -05:00
• 0c59f6e500 add CODE_COVERAGE macro for ./configure --enable-profile-coverage Michael Rash 2014-11-06 20:23:40 -05:00
• 46fd32a6f1 [test suite] minor bug fix to add --no-firewd-check-support option for one test Michael Rash 2014-11-06 20:22:05 -05:00
• 4ca718f8da [test suite] allow valgrind/crash search/profile coverage tests to run after --test-limit Michael Rash 2014-11-06 20:21:05 -05:00
• 04f8b9669a [server] check number of cmd args even when execvpe() is not available Michael Rash 2014-11-05 23:19:51 -05:00
• e7942f48e0 [server] allow loop restart after select() sets EINTR (since we handle signals) - fixes cmd execution through UDP on FreeBSD Michael Rash 2014-11-04 22:44:59 -05:00
• c5f0389281 [server] minor code restructure, use FD_ISSET() test on file descriptors Michael Rash 2014-11-04 22:43:04 -05:00
• 705c507414 [test suite] check for TCP/UDP server string in do_fwknopd_cmd() Michael Rash 2014-11-03 19:57:50 -05:00
• fdc6e0db20 [test suite] bug fix to specify LD_LIBRARY_PATH for configure --enable-udp-server recompile test Michael Rash 2014-11-02 15:30:56 -05:00
• 7a98eed759 [test suite] add spa_fuzzing.py and a few minor helper files for FreeBSD/OpenBSD Michael Rash 2014-11-01 20:44:35 -04:00
• 3826bb5631 ChangeLog updates, bump version to 2.6.4 Michael Rash 2014-11-01 12:04:11 -04:00
• 50009115b3 [server] bug fix to close write filehandle in _run_extcmd_write() Michael Rash 2014-11-01 12:03:49 -04:00
• 4880243902 [test suite] added invalid_firewd_input_chain_* files Michael Rash 2014-10-28 21:56:19 -04:00
• 387c1acdf7 add fcs_spa.pcap to Makefile.am Michael Rash 2014-10-28 21:29:34 -04:00
• 34e38fe39e [server] first pass at eliminating popen() write calls with run_extcmd_write() (used for PF firewalls) Michael Rash 2014-10-28 21:28:21 -04:00
• b5fe62bfc7 [test suite] command exec too many args tests Michael Rash 2014-10-26 16:58:13 -04:00
• d2abbd8720 [test suite] more code coverage tests Michael Rash 2014-10-25 22:29:49 -04:00
• 17608dd01d [test suite] additional code coverage Michael Rash 2014-10-25 08:42:30 -04:00
• 837f7780fe [libfko] validate MAX_PORT integer value for SPA messages Michael Rash 2014-10-25 08:42:14 -04:00
• 58d47cb385 [test suite] additional code coverage for a few areas Michael Rash 2014-10-24 20:39:40 -04:00
• 7b70ed08d2 [server] ensure to break out of while loop and close() UDP socket before returning Michael Rash 2014-10-23 23:05:21 -04:00
• 3040251695 [test suite] default to recompiling fwknop in code coverage profiling mode Michael Rash 2014-10-23 20:03:34 -04:00
• cbb3b0d413 [test suite] add branch coverage stats in code coverage mode Michael Rash 2014-10-23 19:55:30 -04:00
• a2ce50e9e5 [python module] default to HMAC SHA256 when an HMAC key is used but no HMAC mode was specified Michael Rash 2014-10-23 08:45:21 -04:00
• d7be3f43ac [test suite] firewall prefix typo bug fix Michael Rash 2014-10-23 08:40:21 -04:00
• 22161af075 [test suite] add ipt_local_nat_fwknopd.conf Michael Rash 2014-10-23 08:39:42 -04:00
• b8f1cf6c6c make sure test suite conf files are included in Makefile.am Michael Rash 2014-10-21 22:49:03 -04:00
• 56a6b7dee5 give firewalld its own namespace (can track firewalld changes independently of iptables) Michael Rash 2014-10-21 22:43:21 -04:00
• 6945e23bc9 [test suite] UDP server command execution tests, run configure arg recompile tests after gcov profiling stuff Michael Rash 2014-10-20 22:23:46 -04:00
• 15f73c7f9e [test suite] added configure args test with UDP server test for fwknopd not linking against libpcap Michael Rash 2014-10-19 22:58:35 -04:00
• 0af8faa0b3 Merge branch 'udp_listener' into execvpe Michael Rash 2014-10-13 20:25:14 -04:00
• 00b229b834 [test suite] detect firewalld vs. iptables for server rewrite conf tests Michael Rash 2014-10-13 19:54:30 -04:00
• c70e1c72a0 [server] update firewalld code to use run_extcmd() instead of popen() and system() - allows execvpe() to be used Michael Rash 2014-10-12 21:57:04 -04:00
• d9fb29318e [test suite] add --exit-parse-config to fwknopd basic tests where possible Michael Rash 2014-10-12 21:29:44 -04:00
• c481f7f6b3 add --disable-execvpe arg to configure script (looks for execvpe() support by default) Michael Rash 2014-10-12 13:16:30 -04:00
• 62ee780d65 [server] make pid_status a static var at the top of each fw_util_*.c file Michael Rash 2014-10-10 08:20:01 -04:00
• e54b15ceaf [test suite] fix up Rijndael cmd exec test Michael Rash 2014-10-10 08:16:31 -04:00
• a6007918a8 added setuid/setgid cmd exec test files Michael Rash 2014-10-10 08:15:44 -04:00
• 2b5088eb76 [test suite] added use terminal test, fix up Rijndael CMD tests Michael Rash 2014-10-08 23:10:09 -04:00
• 6dd599f3de [server] update ipfw and pf firewall interace code to latest run_extcmd() API Michael Rash 2014-10-07 23:23:05 -04:00
• 06f3db1de8 [server] restore shell stderr redirect when execvpe() is not available Michael Rash 2014-10-07 21:42:36 -04:00
• 1905baa0e8 [server] minor macro usage update Michael Rash 2014-10-07 21:37:29 -04:00
• b7785a9304 [server] extend run_extcmd() to allow the caller to specify whether to collect stderr Michael Rash 2014-10-07 21:01:17 -04:00
• ed9e1ac236 added setgid() call for command execution along with CMD_EXEC_GROUP access.conf var Michael Rash 2014-10-06 22:10:40 -04:00
• e6d162215f [test suite] added command execution setuid() 'nobody' test Michael Rash 2014-10-06 22:04:20 -04:00
• fedc691e21 [test suite] added generate_core.sh script and --enable-cores-pattern arg for the test suite Michael Rash 2014-10-06 21:10:02 -04:00
• 248c4b301e added configure detection of execvpe() - doesn't exist on Mac OS X yet Michael Rash 2014-10-06 20:04:00 -04:00
• 652b8cb80e [server] have run_extcmd() collect process exit status for calling function (in addition to return value) Michael Rash 2014-10-05 20:21:05 -04:00
• a47ddfcb1e [server] added WIFEXITED(status) check for external commands run via execvpe() Michael Rash 2014-10-04 21:14:49 -04:00
• 841d732c07 [server] removed remaining popen() call for iptables firewalls Michael Rash 2014-10-04 19:56:26 -04:00
• 50952b4a6e Merge branch 'master' of https://github.com/mrash/fwknop into execvpe Michael Rash 2014-10-04 19:36:04 -04:00
• 87f3bbdd23 [server] hex_dump() '%' bug fix, minor verbose criteria update Michael Rash 2014-10-04 16:40:44 -04:00
• 46232122c3 Merge branch 'master' of https://github.com/mrash/fwknop Michael Rash 2014-10-04 10:38:08 -04:00
• 836370d034 [client] minor tab->spaces fix Michael Rash 2014-10-04 10:32:52 -04:00
• d71f386971 [server] add search_extcmd() to replace all popen() calls with the execvpe() no env strategy Michael Rash 2014-10-04 10:31:15 -04:00
• e271442aa9 [server] first cut at converting iptables commands to use execvpe() Michael Rash 2014-10-03 21:58:51 -04:00
• 7aa34a92f1 [client] add strtoargv() to easily get an argv array for passing to execvpe() Michael Rash 2014-09-30 22:33:44 -04:00
• bf3319e0ba [test suite] minor addition of spaces for --last tests Michael Rash 2014-09-30 22:19:17 -04:00
• 0d6917fa4e minor hex_dump() update to use a consistent macro definition for ascii str length Michael Rash 2014-09-30 22:09:10 -04:00
• 2247dfeab8 use execvpe() with NULL env for wget calls Michael Rash 2014-09-30 21:59:01 -04:00
• b1358d564d minor client --help update Michael Rash 2014-09-30 21:34:58 -04:00
• e9655db0b4 Merge pull request #135 from tombriden/multi_ports Michael Rash 2014-10-03 00:08:45 -04:00
• 9bdcd6746a Merge pull request #137 from schuellerf/master Michael Rash 2014-10-03 00:03:06 -04:00
• dc30f162c7 Add "NO_SAVE_ARGS" to initial config file Florian Schüller 2014-10-01 14:12:57 +02:00
• 981d1f7077 Support for "--no-save-args" in .fwknoprc Florian Schüller 2014-10-01 14:12:10 +02:00
• 85ff6b25e1 updated --last-cmd tests to write the previous args first Michael Rash 2014-09-30 21:12:43 -04:00
• 2b046392b7 minor unused var removal Michael Rash 2014-09-28 22:44:12 -04:00
• ddbba5bc90 autoconf update to ensure libpcap is not linked against in --enable-udp-server mode Michael Rash 2014-09-28 22:40:50 -04:00
• 52d34a70a2 fwknopd man page updates, added UDPSERV_SELECT_TIMEOUT config option Michael Rash 2014-09-28 22:32:20 -04:00
• 52c9d51d7d consolidate signal handling a bit, UDP server msg size updates Michael Rash 2014-09-28 22:06:34 -04:00
• e2c2ad141e TCP/UDP server port validation tests Michael Rash 2014-09-28 22:06:06 -04:00
• ad3b230917 minor client cmd line bug fix for UDP server HMAC test Michael Rash 2014-09-28 21:21:25 -04:00
• 360905ec56 implement --packet-limit for UDP server mode Michael Rash 2014-09-28 21:19:19 -04:00
• a5dd273189 replay attack detection test for UDP server mode Michael Rash 2014-09-28 20:48:57 -04:00
• 5db3a12763 add signal handling code to UDP server mode Michael Rash 2014-09-28 20:30:09 -04:00
• aa2492bba2 Added UDP server HMAC cycle tests Michael Rash 2014-09-28 16:51:38 -04:00
• 0af7f72500 enforce MAX_SPA_PACKET_LEN restriction for incoming datagrams for UDP listener mode Michael Rash 2014-09-28 16:49:12 -04:00
• dc9e8da702 started on UDP server tests for Rijndael mode Michael Rash 2014-09-28 14:54:40 -04:00
• f2a3562f71 removed Michael Rash 2014-09-28 11:49:24 -04:00
• 1fd0e7e960 first cut at UDP server mode Michael Rash 2014-09-28 11:49:04 -04:00
• c07afac883 calculate sizeof caddr for each client connection Michael Rash 2014-09-28 09:29:30 -04:00
• 50434c5c4c Use the fwknop User-Agent for wget SSL external IP resolutions Michael Rash 2014-09-27 23:23:12 -04:00
• 899729b498 android: allow definition of multiple tcp/udp ports Tom Briden 2014-09-27 11:14:10 +01:00
• 260cd5481b Use of init and cleanup functions for the test suite. Franck Joncourt 2014-09-07 20:33:39 +02:00
• bd0035af1e Fixed tab vs spaces Franck Joncourt 2014-09-07 15:40:03 +02:00
• 32c5afae83 Merge remote-tracking branch 'upstream/master' into c_unit_testing Franck Joncourt 2014-09-07 15:24:59 +02:00
• 688f08c2a0 Both the fwknop client and server have their own test suites tied to fwknop_utests and fwknopd_utests binaries. Franck Joncourt 2014-08-31 20:48:44 +02:00
• aae72a9470 firewalld support from Gerry Reno Michael Rash 2014-09-03 23:28:51 -04:00