DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity

Commit Graph

  • a6ea3f6935 [test suite] minor bug fix for file existence check Michael Rash 2012-07-27 18:08:23 -04:00
  • d0cb2c6ad5 [test suite] added 100 key uniqueness test for --key-gen mode Michael Rash 2012-07-27 13:30:29 -04:00
  • ab52476bfc [test suite] [client] added --key-gen and --key-gen-file tests Michael Rash 2012-07-27 13:05:29 -04:00
  • 16348aaccd replace strlen() call with strnlen() and MAX_SPA_ENCODED_MSG_SIZE bound Michael Rash 2012-07-27 02:06:58 -04:00
  • 8471d8aae6 semicolon syntax buf fix Michael Rash 2012-07-27 02:01:43 -04:00
  • d561fdd4d7 added lib/fko_util.c with basic length checking functions Michael Rash 2012-07-26 18:01:36 -04:00
  • bdb6cc0eb1 Added digest_len and raw_digest_len fields and replaced strlen() calls Michael Rash 2012-07-26 15:00:32 -04:00
  • 3f05a6d25a [test suite] added sha384 and digest type arg tests Michael Rash 2012-07-26 14:53:45 -04:00
  • 4f1c5b55a4 [test suite] added --test-limit argument Michael Rash 2012-07-26 12:52:25 -04:00
  • e733f4aa4f have encryption calls use encoded_msg_len Michael Rash 2012-07-26 12:21:24 -04:00
  • 661991b747 complete cycle tests for client-set digest types Michael Rash 2012-07-26 04:09:06 -04:00
  • 838829f2bb added a new encoded_msg_len to cut down on strlen() calls within libfko Michael Rash 2012-07-26 00:10:28 -04:00
  • c51a85523f Added valgrind individual test diff results. Michael Rash 2012-07-25 23:38:41 -04:00
  • 5043683739 [test suite] bug fix after merge to account for new file_find_regex() API Michael Rash 2012-07-24 17:50:17 -04:00
  • 175374337d merged crypto_update after fwknop-2.0.1 merge to crypto_update from master Michael Rash 2012-07-24 17:10:00 -04:00
  • c6b674617c completed merge from master after fwknop-2.0.1 release Michael Rash 2012-07-24 16:19:48 -04:00
  • 8e26cca9f3 removed diffstat and ShortLog from 'make dist' target Michael Rash 2012-07-23 22:53:38 -04:00
  • cab2ea9083 bumped version to 2.0.1 Michael Rash 2012-07-23 22:40:47 -04:00
  • 9fe6dc7d6f bumped version to fwknop-2.0.1 Michael Rash 2012-07-23 21:58:14 -04:00
  • a980a029a7 removed diffstat and ShortLog files in favor of ChangeLog.git for each release Michael Rash 2012-07-23 21:54:49 -04:00
  • 3c533de7e4 updated Debian init script (contributed by Franck Joncourt) Michael Rash 2012-07-23 21:49:25 -04:00
  • 62445d0d03 add test/conf/local_nat_fwknopd.conf for 'make dist' Michael Rash 2012-07-23 21:32:24 -04:00
  • e68c561c40 bumped version to fwknop-2.0.1-pre5 Michael Rash 2012-07-23 21:24:29 -04:00
  • 24dccb34ec [client] fix memory leak when unable to open --get-key file Michael Rash 2012-07-23 21:23:23 -04:00
  • 5387242ce9 PCAP_LOOP_SLEEP bug fix to 1/10th of a second Michael Rash 2012-07-23 21:13:30 -04:00
  • 6255bff95f replace strlen() calls with strnlen() and appropriate maximums Michael Rash 2012-07-22 23:13:39 -04:00
  • 335abdd545 use LOGNAME env var before cuserid() since we're already looking for SPOOF_USER Michael Rash 2012-07-22 23:13:01 -04:00
  • 049545b459 [client] Fixed several minor memory leaks caught by valgrind Michael Rash 2012-07-22 23:09:32 -04:00
  • 5ef07c73e2 Better SPA message validation upon SPA decrypt/decode. Michael Rash 2012-07-21 15:32:15 -04:00
  • 4c25aa17f3 [test suite] minor filename update -> use config files for fwknopd in a hash Michael Rash 2012-07-20 21:16:13 -04:00
  • 4c7923413e Implemented server-side bounds checking on inccoming SPA data. Michael Rash 2012-07-19 22:34:45 -04:00
  • 8f500fd67f added some integer bounds checking for fwknopd.conf variables Michael Rash 2012-07-18 23:20:09 -04:00
  • 65b2acd8f5 minor update to print FORCE_NAT settings when access stanzas are printed Michael Rash 2012-07-18 23:17:27 -04:00
  • 15c76b25cd minor pcap_capture update to not call atoi() against PCAP_LOOP_SLEEP for every sleep interval Michael Rash 2012-07-18 23:00:58 -04:00
  • c0aa346890 [test suite] minor hostname bugfix to get 'local NAT' test to work Michael Rash 2012-07-18 22:55:56 -04:00
  • 72aaeb893e [test suite] better fwknopd is running check Michael Rash 2012-07-18 22:32:16 -04:00
  • 8ed741dd48 Merge branch 'master' of github.com:mrash/fwknop Michael Rash 2012-07-17 22:20:36 -04:00
  • 71fc4fe7fe [test suite] file_find_regex() postive vs. negative match styles Michael Rash 2012-07-17 21:55:13 -04:00
  • 6c73e160d9 Ensure that INPUT rules are added in --nat-local mode Michael Rash 2012-07-17 21:50:29 -04:00
  • 981059452b minor file_find_regex() logging prefix update Michael Rash 2012-07-16 22:05:15 -04:00
  • 1b9f847521 [test suite] added local_nat_fwknopd.conf file for local NAT tests Michael Rash 2012-07-16 21:43:28 -04:00
  • de7aa3b619 Add INPUT ACCEPT rule for --nat-local connections Michael Rash 2012-07-15 21:32:14 -04:00
  • d49e44dad0 Forgot to update the VERSION file. Damien Stuart 2012-07-14 22:10:37 -04:00
  • d5568cb1a1 Bumped version to 2.0.1-pre4 Damien Stuart 2012-07-14 20:54:05 -04:00
  • 2a5bc7ed14 Added tweaks to ipfw command for Mac OS X Damien Stuart 2012-07-14 18:22:42 -04:00
  • f06c775654 Merge branch 'master' of ssh://github.com/mrash/fwknop Damien Stuart 2012-07-14 10:14:05 -04:00
  • 283e213a61 Added gpg validity check. Tweak to rpm spec file. Damien Stuart 2012-07-14 10:13:26 -04:00
  • c57f4a82b7 bumped version to fwknop-2.0.1-pre3 Michael Rash 2012-07-12 22:19:41 -04:00
  • 3b26157a40 added libfko.dylib test suite fix note to the ChangeLog Michael Rash 2012-07-12 22:18:39 -04:00
  • e250776107 [test suite] Bug fix to account for libfko.dylib extension Michael Rash 2012-07-12 22:11:35 -04:00
  • 29fe16d29f post-merge fix after merged crypto_update branch changes Michael Rash 2012-07-10 22:16:54 -04:00
  • d7c4572521 merged test suite changes from the crypto_update branch Michael Rash 2012-07-10 22:03:56 -04:00
  • 47e39272ed Make encrypt/decrypt code accept integer key lengths instead of using strlen() Michael Rash 2012-07-10 21:44:06 -04:00
  • 7145cdd8a1 Merge from master minor bug fix to include default encryption mode Michael Rash 2012-07-10 08:30:11 -04:00
  • e5004dc829 Merge branch 'master' into crypto_update Michael Rash 2012-07-10 08:23:16 -04:00
  • 86fde0d603 bumped version to 2.0.1-pre2 Michael Rash 2012-07-09 22:58:35 -04:00
  • 2f9368b4d9 added valgrind parsing note Michael Rash 2012-07-09 22:39:13 -04:00
  • 4d39140148 [test suite] minor directory path bug fix for --diff mode Michael Rash 2012-07-09 22:05:57 -04:00
  • e2c34d46fe switched back to older ChangeLog format which is more readable Michael Rash 2012-07-09 21:29:49 -04:00
  • 06d8f118aa bumped version to 2.0.1-pre1 Michael Rash 2012-07-09 16:32:10 -04:00
  • b5c6b48cff added dual_key_usage_access.conf to Makefile.am for 'make dist' target Michael Rash 2012-07-09 16:30:26 -04:00
  • dc8a034a4d merged usage() information from master Michael Rash 2012-07-08 22:00:13 -04:00
  • bc2e41fd47 added unique function names to --enable-valgrind suspect functions test Michael Rash 2012-07-08 21:21:36 -04:00
  • 9497044f24 added new test in --enable-valgrind mode to collect suspect functions Michael Rash 2012-07-08 15:30:35 -04:00
  • be4193d734 Only cache replay digests for SPA packets that decrypt Michael Rash 2012-07-08 08:36:30 -04:00
  • 6b3e5ef3c2 Added a test for a dual-usage key in access.conf Michael Rash 2012-07-08 08:35:50 -04:00
  • ba3b7d1d11 Bug fix for multi-stanza key use and replay attack detection Michael Rash 2012-07-07 21:31:30 -04:00
  • 92e403a242 added initial HMAC-SHA256 support for the client side Michael Rash 2012-07-02 23:50:45 -04:00
  • 3095f0ee43 Added key generation support with --key-gen Michael Rash 2012-06-27 23:06:17 -04:00
  • 20e3e3b6e5 added test for client --show-last functionality Michael Rash 2012-06-23 15:41:58 -04:00
  • adbc6a8f39 Bug fix to not force asymmetric gpg decryption Michael Rash 2012-06-23 15:13:03 -04:00
  • c6a2680be2 added test for invalid SOURCE access lines Michael Rash 2012-06-17 13:57:06 -04:00
  • 5f8e3f4a7d Bug fix to throw out invalid access.conf SOURCE entries Michael Rash 2012-06-17 13:42:23 -04:00
  • 10d380d193 Test suite support for function coverage testing via gcov Michael Rash 2012-06-14 20:43:57 -04:00
  • e3761b8bff merged minor updates from master Michael Rash 2012-05-28 14:24:02 -04:00
  • fcf40b5e6d gcc warning fix fox: fko_decode.c:43:17: warning: variable ‘edata_size’ set but not used [-Wunused-but-set-variable] Michael Rash 2012-05-28 14:22:33 -04:00
  • 8a73e6dee8 updated PF anchor check to not rely on listing the PF policy Michael Rash 2012-05-28 14:19:52 -04:00
  • 5c26c0abaa added Ted Wynnychenko for OpenBSD PF testing Michael Rash 2012-05-28 14:18:34 -04:00
  • 71690a1de4 bug fix to ensure to pick up proper entropy min/max values Michael Rash 2012-02-13 13:56:24 -05:00
  • 65cd9b0038 updated to local_spa.key from the test suite directory Michael Rash 2012-02-13 12:48:58 -05:00
  • 0c9946160c ensure CBC is the default symmetric encryption mode Michael Rash 2012-02-12 20:52:17 -05:00
  • 8fd83f5a3f updated docs to reference the default AES encryption mode of CBC Michael Rash 2012-02-10 15:59:26 -05:00
  • de41b0a1ec bugfix to ensure that incoming SPA data in AES mode is a multiple of the Rjindael blocksize (16) Michael Rash 2012-02-10 15:10:19 -05:00
  • 6dbe523052 added test suite support for AES CTR, OFB, CFB, and ECB encryption modes Michael Rash 2012-02-10 15:09:27 -05:00
  • 6130099b75 minor header addition for spa-entropy.pl Michael Rash 2012-02-10 13:38:30 -05:00
  • 79a5265be0 updated to not base64 decode encrypted packet data by default (can override with --base64-decode) Michael Rash 2012-02-09 15:23:07 -05:00
  • aeb96c502e added --gpg entropy measurement, added sensible gnuplot yrange calculations Michael Rash 2012-02-09 14:56:18 -05:00
  • 280b8c56f0 switched CBC mode test (which is the default Rjindael encryption mode) to ECB mode Michael Rash 2012-02-08 14:29:33 -05:00
  • bcb0fcfc1a Re-worked encryption/decryption handling Michael Rash 2012-02-08 14:16:42 -05:00
  • efcefdfb81 update display_ctx() to show the entire plaintext data on one line Michael Rash 2012-02-08 14:15:36 -05:00
  • 193e1799e6 made default openssl encryption mode 'aes-256-ecb' Michael Rash 2012-02-06 15:19:03 -05:00
  • c68358eabd added the ability to encrypt fwknop client plaintext data with openssl Michael Rash 2012-02-06 15:12:31 -05:00
  • a7cb3bf62b added spa-entropy/ directory for measuring entropy across SPA packets Michael Rash 2012-01-29 22:07:06 -05:00
  • 53a6d72cd2 added test suite support for CBC mode Rijndael tcp/22 test Michael Rash 2012-01-29 17:31:12 -05:00
  • 4c3d2188a1 Update to make AES encryption modes selectable Michael Rash 2012-01-24 20:26:21 -05:00
  • 7e8e48412f convert Rijndael blocksize values '16' to use RIJNDAEL_BLOCKSIZE macro Michael Rash 2012-01-15 15:57:45 -05:00
  • dd188dc392 added --stat output to ChangeLog Michael Rash 2012-01-02 18:35:41 -05:00
  • a36082b543 moved ChangeLog-v2.0 to ChangeLog Michael Rash 2012-01-02 18:33:42 -05:00
  • 36f21f95ce removed old ChangeLog files Michael Rash 2012-01-02 18:32:35 -05:00
  • 305708aa27 Added ChangeLog, ShortLog, and diffstat files for the 2.0 release. Michael Rash 2012-01-02 18:26:05 -05:00