fwknop

DeforaNetworks/fwknop

Fork 0

Commit Graph

Select branches

Hide Pull Requests

khorben/connect-error-format

khorben/coverity/1355235-toctou

khorben/execvp

khorben/http-1.1

khorben/ipv6

khorben/ipv6-client

khorben/ipv6-server

khorben/netbsd

khorben/snprintf

khorben/srandom

khorben/strlcat

khorben/typo

khorben/usage

khorben/warnings

master

1e77535068 minor documentation updates Michael Rash 2013-05-30 22:26:09 -04:00
0504627c2e [client] don't print keys to stdout in --save-rc-stanza --key-gen mode Michael Rash 2013-05-30 22:03:11 -04:00
0001b37f44 Merge remote-tracking branch 'fjoncourt/save_rc_stanza' Michael Rash 2013-05-29 18:53:08 -04:00
6d9f840ab7 The -R command line switch is now handled in fwknoprc as RESOLVE_IP_HTTP variable. Franck Joncourt 2013-05-29 14:06:57 +02:00
cf6cb01f67 Fixed ask_overwrite(). Generated keys are now stored in fwknoprc. Franck Joncourt 2013-05-29 12:19:56 +02:00
82caa9a6a9 The variables are now stored in a hash (variable name and position) rather than an array containing only their name. It is now possible to sort them without worrying about their position in the enumeration. Franck Joncourt 2013-05-28 17:14:36 +02:00
dedc4bc8aa Interim commit to handle bitmask with more than 32 positions. Franck Joncourt 2013-05-27 18:18:47 +02:00
cc07d10d73 Set command line argument bitmask as a 64-bits value to be able to handle more arguments. Franck Joncourt 2013-05-25 21:56:01 +02:00
478f86669c minor Makefile.am update to set permissions on access.conf.inst and fwknopd.conf.inst files Michael Rash 2013-05-23 22:29:41 -04:00
67f96dc3d4 [client] minor fix to set -R mode with a resolve URL is also set Michael Rash 2013-05-23 22:10:34 -04:00
b9bd984768 [test suite] bug fix on FreeBSD to just run the server for the active/expire sets not equal test Michael Rash 2013-05-23 22:02:43 -04:00
9a21bc11ba [server] update access.conf comments to conform to no trailing semicolon or colon within the variable name Michael Rash 2013-05-22 21:21:59 -04:00
3bc28305c3 minor client man page wording update Michael Rash 2013-05-22 21:20:42 -04:00
47d235f4fe [test suite] minor formatting update to access.conf files to mimic fwknoprc vars (no colon or trailing semicolon) Michael Rash 2013-05-21 22:12:03 -04:00
cfbbac2654 man page updates - access.conf section now includes variable guidance Michael Rash 2013-05-21 22:10:13 -04:00
52462e7dba Use {0} initializer for all stack allocated char arrays Michael Rash 2013-05-21 22:00:15 -04:00
2e2e7fcc0e Merge remote-tracking branch 'fjoncourt/save_rc_stanza' Michael Rash 2013-05-20 21:57:42 -04:00
05585cab8a Merge remote-tracking branch 'upstream/master' Franck Joncourt 2013-05-20 22:02:31 +02:00
98e631451f Fixed stanza name in log message. We display the stanza we were looking for, not the current one. Franck Joncourt 2013-05-20 21:58:18 +02:00
209b189f20 Merge remote-tracking branch 'upstream/master' into save_rc_stanza Franck Joncourt 2013-05-20 11:08:33 +02:00
fad0ef8690 [test suite] added 'equal keys' files Michael Rash 2013-05-19 16:15:19 -04:00
5e3d9b6e0b Do not assume two rc sections are separated by an empty line. (mrash/fwknop#81) Franck Joncourt 2013-05-19 22:00:51 +02:00
dc2ff2119c [client] finished documenting client command line options via the man page Michael Rash 2013-05-19 15:50:16 -04:00
72ab0bf5d5 [test suite] added client -f firewall timeout tests Michael Rash 2013-05-19 15:29:20 -04:00
16f96a3e53 [server] port list memory leak bug fix for OpenBSD/pf and FreeBSD/ipfw firewall interface code found by Coverity Michael Rash 2013-05-19 14:36:32 -04:00
e31459bb1e updated client and server man page material Michael Rash 2013-05-19 14:12:58 -04:00
0cc5c3495e Merge branch 'master' of github.com:mrash/fwknop Michael Rash 2013-05-19 12:57:36 -04:00
4e5b96054c Merge pull request #80 from fjoncourt/fix-gpl2.0 Michael Rash 2013-05-19 09:57:07 -07:00
3e16d6694c Fixed gpl2.0.texi to make it build. Franck Joncourt 2013-05-19 17:14:35 +02:00
6c59c9ade8 Merge remote-tracking branch 'upstream/master' Franck Joncourt 2013-05-19 15:34:20 +02:00
0a279ccbfc [client] minor --verbose display update to say source port is 'OS assigned' when not otherwise set Michael Rash 2013-05-18 22:49:38 -04:00
96bbf7e61a [client] bug fix to separate out --named-config vs. --no-save-args command line args Michael Rash 2013-05-18 22:36:13 -04:00
15b1382160 [test suite] slurp openssl HMAC from file into single string (it may be binary data) Michael Rash 2013-05-18 16:39:08 -04:00
61459c65f5 added test suite HMAC != enc key conf files Michael Rash 2013-05-18 12:13:50 -04:00
23a354fced [client+server] ensure HMAC key and encryption passphrase are not the same Michael Rash 2013-05-18 12:10:18 -04:00
731ca0e038 [client] added warning in --verbose mode if -s is used instead of -a or -R Michael Rash 2013-05-18 10:51:49 -04:00
c02ec41ca0 [test suite] minor bug fix to preserve the init file Michael Rash 2013-05-18 08:34:20 -04:00
cee5807deb First draft to be able to use stdin as an input for submitting fwknop key. Franck Joncourt 2013-05-18 10:54:44 +02:00
ebe1aec542 continued man page updates in preparation for the 2.5 release Michael Rash 2013-05-17 23:05:58 -04:00
7cb23c75cc [server] added check to ensure any existing fwknop jump rule is not duplicated at init Michael Rash 2013-05-17 22:34:26 -04:00
cabcaf2174 [server] apply same logging policy for --fw-* modes as --foreground mode Michael Rash 2013-05-17 22:28:03 -04:00
45244114f8 [client] --key-gen bug fix to print keys to stdout Michael Rash 2013-05-17 21:03:16 -04:00
b6562d3bf3 Merge remote-tracking branch 'fjoncourt/master' Michael Rash 2013-05-15 21:31:17 -04:00
2c8469e95e [client] man page update for GPG key signing material Michael Rash 2013-05-15 21:17:39 -04:00
a6f9f1d9ec [client] completed fwknop client man page rc variable documentation Michael Rash 2013-05-15 20:59:29 -04:00
366255188a HMAC and PBKDF1 ChangeLog updates Michael Rash 2013-05-14 23:28:45 -04:00
e1a7011bf3 [docs] fwknop client man page update for HMAC material Michael Rash 2013-05-14 23:22:03 -04:00
95615c90e2 Merge remote-tracking branch 'upstream/master' Franck Joncourt 2013-05-14 22:15:19 +02:00
bb90a8bf75 Fixed gcc warnings on openbsd. - mrash/fwknop#60 Franck Joncourt 2013-05-14 22:08:44 +02:00
e73d13e140 minor write_test_file() path bug fix Michael Rash 2013-05-13 23:11:33 -04:00
4e5fb77dd0 Merge remote-tracking branch 'fjoncourt/master' Michael Rash 2013-05-13 23:10:26 -04:00
fb80575209 [server] minor memory leak bug fix during SPA digest calculation found by Coverity Michael Rash 2013-05-13 20:52:14 -04:00
6a2bc3db27 [server] minor memory leak bug fix during access.conf parsing found by Coverity Michael Rash 2013-05-13 20:48:23 -04:00
8e31f8feb0 [server] varargs cleanup bug fix found by Coverity Michael Rash 2013-05-13 20:42:07 -04:00
d60870740d [server] fix pointer NULL check after strdup() - found by Coverity Michael Rash 2013-05-13 20:41:25 -04:00
0c3da4bee4 [server] minor cosmetic (unnecessary NULL checks and one un-triggerable memory leak) found by Coverity Michael Rash 2013-05-13 20:40:29 -04:00
cdd0a5f3f3 [server] minor memory leak bug fix during access.conf parsing found by Coverity Michael Rash 2013-05-13 20:38:39 -04:00
9dbb62ae1e Merge remote-tracking branch 'upstream/master' Franck Joncourt 2013-05-13 16:30:27 +02:00
48a3f7a179 added m4/gpgme.m4 file Michael Rash 2013-05-12 23:48:44 -04:00
c83bc15c5e bumped VERSION file to fwknop-2.5-pre1 Michael Rash 2013-05-12 22:42:13 -04:00
1144284913 Merge branch 'master' into gpgme_autoconf_macro Michael Rash 2013-05-12 22:31:18 -04:00
3246c3c6b0 [test suite] added hmac_get_key_access.conf file Michael Rash 2013-05-12 22:30:28 -04:00
c6b2c0def4 Added gpgme autoconf m4 macro to fix an undefined AM_PATH_GPGME error Michael Rash 2013-05-12 22:25:16 -04:00
09f073d393 Added blurb on Coverity to the ChangeLog Michael Rash 2013-05-12 21:04:25 -04:00
838782f198 [test suite] added fko_destroy() calls to fko-wrapper Michael Rash 2013-05-12 20:57:19 -04:00
1caf6035d9 [server] fixed potential double-free condition found by Coverity Michael Rash 2013-05-12 20:54:44 -04:00
c555a35489 [client] set ctx=NULL after fko_destroy() calls Michael Rash 2013-05-12 20:54:04 -04:00
d85c2e74ce [libfko] set ctx=NULL after fko_destroy(), add NULL check for encrypted msg pointer in fko_new_with_data() Michael Rash 2013-05-12 20:53:22 -04:00
7b3c854a02 [libfko] added context initialized check to fko_decrypt_spa_data() Michael Rash 2013-05-12 20:49:00 -04:00
6d0f970b34 [libfko] bug fix to apply ctx initialization check before attempting to use ctx->message_type in fko_set_spa_client_timeout() Michael Rash 2013-05-12 15:02:31 -04:00
38395b04c6 [test suite] add -x to run_valgrind.sh fko-wrapper script Michael Rash 2013-05-12 14:43:19 -04:00
3302dd4220 [test suite] added -g to fko_wrapper Makefile for debugging symbols Michael Rash 2013-05-12 14:42:35 -04:00
31d94d50b1 Added tests to validate the encryption mode for the client. Renamed the CBC legacy VI encryption mode by legacy as mentionned in the man page. Franck Joncourt 2013-05-12 17:35:19 +02:00
160c21d6b6 Rewrite enc_mode_inttostr() and enc_mode_strtoint(). Franck Joncourt 2013-05-12 16:52:52 +02:00
a8410d8f2a [test suite] allow valgrind coverage test to run after --test-limit Michael Rash 2013-05-11 13:28:55 -04:00
282b0198ec [libfko] changed 'state' context element to 'int' type to fix a 'extra high-order bits' bug found by Coverity Michael Rash 2013-05-09 22:43:05 -04:00
aafc3ac264 [server] setsockopt() nad fcntl() return value checking (found by Coverity) Michael Rash 2013-05-09 22:35:08 -04:00
72e4edbf6a [libfko] fixed remaining sizeof() usage bug in SHA256 code found by Coverity Michael Rash 2013-05-09 22:14:06 -04:00
62edf09101 [libfko] fixed remaining buffer constraints in lib/hmac.c code found by Coverity Michael Rash 2013-05-09 22:13:25 -04:00
add518016c [client] removed unnecessary array NULL check found by Coverity Michael Rash 2013-05-09 22:10:38 -04:00
9046acaf22 [libfko] memory leak fixes found by Coverity Michael Rash 2013-05-09 21:56:13 -04:00
8c09d38941 various sizeof() usage and type bug fixes found by Coverity Michael Rash 2013-05-09 21:17:27 -04:00
b92f892ae0 [test suite] minor bug fix for printing the number of test buckets to be executed Michael Rash 2013-05-09 21:11:45 -04:00
9f9bbcbcdd fixed several resource leak conditions found by Coverity Michael Rash 2013-05-08 23:55:35 -04:00
aaa28d4ab3 [server] double free bug fix in access.conf parsing routine caught by Coverity Michael Rash 2013-05-08 23:44:13 -04:00
3a1efd9321 [server] fixed several (non-exploitable) overflow conditions found by Coverity Michael Rash 2013-05-07 23:35:34 -04:00
8d980ae686 remove dead code caught by Coverity Michael Rash 2013-05-07 23:02:49 -04:00
50f0ee2f7d [server] bug fix for GPG 'nesting level does not match indentation' issue (discovered by Coverity) Michael Rash 2013-05-07 22:52:35 -04:00
e1c6f04ef9 [client] fix missing 'break' in switch statement (discovered by Coverity) Michael Rash 2013-05-07 21:43:38 -04:00
8f423e8b89 [server] added --pcap-any-direction along with config file support Michael Rash 2013-05-06 22:23:59 -04:00
5aac3d978c minor typo fix Michael Rash 2013-05-06 22:22:22 -04:00
a9a143a85d Merge remote-tracking branch 'upstream/master' Franck Joncourt 2013-05-06 11:52:35 +02:00
d4577ab697 Added new tests to the test suite to validate the --save-rc-stanza command line argument. Franck Joncourt 2013-05-06 11:49:16 +02:00
b3cbf1ecfa Replaced printf() by log_msg(). Franck Joncourt 2013-05-06 10:02:02 +02:00
eb143db9a7 [client] added --get-hmac-key to mirror --get-key, closes #68 Michael Rash 2013-05-05 21:54:07 -04:00
83493a424c Merge branch 'master' of github.com:mrash/fwknop Michael Rash 2013-05-05 21:01:26 -04:00
314cc3eb23 Merge remote-tracking branch 'origin/win32_fixes' Michael Rash 2013-05-05 20:59:04 -04:00
0363a2099a Regenerated the client and server manpage .in files from the asciidoc sources Damien S. Stuart 2013-05-05 20:44:47 -04:00
63fed301b8 Merge branch 'win32_fixes' of ssh://github.com/mrash/fwknop into win32_fixes Damien S. Stuart 2013-05-05 20:37:02 -04:00
2c1a911a50 Copied the win32 Visual Studio solution and project files to preserve a VS 2008 version. Damien S. Stuart 2013-05-05 20:36:33 -04:00