DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity

Commit Graph

  • 5bc5ef4305 Added --fw-list info to --help Michael Rash 2011-08-27 11:07:19 -04:00
  • 0649ef924a PF support on OpenBSD in progress, fwknop --fw-list now works Michael Rash 2011-08-27 10:57:17 -04:00
  • dcf2d94bf6 Added autoconf check for pf firewalls Michael Rash 2011-08-24 23:55:36 -04:00
  • 649b7a88c1 Disabled read-only relocations and immediate binding compiler protections Michael Rash 2011-08-24 23:17:45 -04:00
  • 47da588003 removed 2.0.0 branch specific ChangeLog, ShortLog and diffstat files Michael Rash 2011-08-22 21:39:28 -04:00
  • 17beb2d348 bumped version to 2.0.0rc4 Michael Rash 2011-08-21 14:06:41 -04:00
  • b937ae2347 Added version specific ChangeLog, ShortLog, and diffstat files. Michael Rash 2011-08-21 14:02:25 -04:00
  • 4ed4558192 Updated ChangeLog with all changes from 2.0.0-rc3 Michael Rash 2011-08-21 14:00:16 -04:00
  • 35456877fa Bug fix for ipfw firewalls to not always require seeing 'Dynamic' rules Michael Rash 2011-08-21 13:50:16 -04:00
  • 4b2a96578b Bug fix for missing set existence check on ipfw firewalls Michael Rash 2011-08-21 13:28:16 -04:00
  • 03859387b6 Bug fix to create the digest.cache file at init Michael Rash 2011-08-20 22:34:24 -04:00
  • 04afd2846d On FreeBSD, made gpgme header path inclusion optional Michael Rash 2011-08-20 22:02:21 -04:00
  • 6eeb413094 Fixed a few minor compiler warnings on FreeBSD Michael Rash 2011-08-20 13:33:00 -04:00
  • 4248b26870 On FreeBSD disable read-only relocations and immediate binding protections Michael Rash 2011-08-20 13:19:33 -04:00
  • ff7c4219e8 Update to suppress additional compiler warning Michael Rash 2011-08-20 12:56:30 -04:00
  • ab7226092d Minor restructuring to suppress compiler "defined but not used warnings" Michael Rash 2011-08-20 12:34:57 -04:00
  • db681fb791 minor commit to fix minor compilations warnings Michael Rash 2011-08-19 22:00:16 -04:00
  • 637f7a4c93 Added -Wall for all gcc warnings during compile Michael Rash 2011-08-19 21:14:24 -04:00
  • bf59c2688f Bug fix for ./configure args to disable compile time security options Michael Rash 2011-08-19 20:51:50 -04:00
  • 41fc93407e added the VERSION file Michael Rash 2011-08-18 22:26:52 -04:00
  • 8b0787c270 Bumped version to fwknop-2.0.0-rc3 Michael Rash 2011-08-18 22:25:12 -04:00
  • 1e494aba2e Added ChangeLog derived from git commit messages. Michael Rash 2011-08-18 21:13:58 -04:00
  • 409c08ac5c Renamed ChangeLog -> ChangeLog.old for new ChangeLog handling Michael Rash 2011-08-18 21:10:09 -04:00
  • b9122f648e Update to add any missing iptables jump rules Michael Rash 2011-08-18 20:37:31 -04:00
  • acdf15f158 Update to force base64 check for all SPA data Michael Rash 2011-08-17 21:24:03 -04:00
  • 92b7e2588e Updated replay warnings to include proto/port info Michael Rash 2011-08-17 21:07:35 -04:00
  • df96e42c51 Added stack protection, PIE, fortify source, etc. Michael Rash 2011-08-17 20:36:28 -04:00
  • 60b6a5a4d8 Minor variable cleanup to fix compiler warnings Michael Rash 2011-08-14 22:46:09 -04:00
  • e7d275ee31 Added fwknop-2.0.0rc2 openwrt support from Jonathan Bennett Michael Rash 2011-08-14 21:55:29 -04:00
  • 878fae8e8a Implemented memory clean up for digest cache list Michael Rash 2011-08-14 19:42:50 -04:00
  • 5ee6715cff Consolidated replay warnings in a single function Michael Rash 2011-08-14 12:36:25 -04:00
  • c13cca4aa1 Added digest file import code Michael Rash 2011-08-13 22:35:52 -04:00
  • 941a4aa9a3 Added source port and protocol to digest tracking Michael Rash 2011-08-13 21:00:54 -04:00
  • 6982a72c07 Added dst IP to tracked SPA data Michael Rash 2011-08-12 22:00:44 -04:00
  • 4197e51c9d Started on code to parse the digest cache file Michael Rash 2011-08-12 21:43:07 -04:00
  • 459cfb4d45 Implemented linked list cache of SPA digests Michael Rash 2011-08-12 20:16:00 -04:00
  • e443550e5f Merge branch 'master' into optional_dbm_support Michael Rash 2011-08-10 22:41:18 -04:00
  • d2c5085843 Added --pcap-filter to the fwknopd command line Michael Rash 2011-08-10 22:38:01 -04:00
  • 52c795634b Updated digest file path for gdbm/ndbm support Michael Rash 2011-08-10 22:07:25 -04:00
  • 0525cd4a5c Added autoconf support for non-dbm file cache. Michael Rash 2011-08-10 20:56:42 -04:00
  • 2dd7c4aac7 Minor rename in support of non-dbm file cache Michael Rash 2011-08-08 22:49:28 -04:00
  • 1e47243574 Bug fix for uninitialized variable found with splint static analyzer Michael Rash 2011-08-08 22:24:22 -04:00
  • 69f41eb399 Set FD_CLOEXEC on pid file descriptor. Added support for setting the URL for resolving source IP via command-line or the .fwknoprc file. Damien Stuart 2011-07-07 08:12:49 -04:00
  • ca5f82c067 Removed legacy $Id$ tags from svn Michael Rash 2011-06-18 20:53:40 -04:00
  • 39e7412bb8 Added a no-digest-cache configure option and capability (though it is not recommended). Damien Stuart 2011-03-27 02:38:41 +00:00
  • 03361fea74 Fix check and handling of ndbm as an option for the digest cache. Damien Stuart 2011-03-26 16:33:02 +00:00
  • 6c050b481c Added python/fko.py to Makefile.am so it is also included in distributions. Minor tweak to address compile error on Mac os X. Damien Stuart 2011-02-12 13:18:31 +00:00
  • 4b0c280948 Minor update to the android README Damien Stuart 2011-01-02 03:32:46 +00:00
  • a24a2eed8f Adding Max Kastanas's fwknop client app code for Android Damien Stuart 2011-01-02 02:58:53 +00:00
  • d8f282143e Removed unnecessary include. Damien Stuart 2011-01-01 21:00:24 +00:00
  • 225e36414d Additional docs and classes added to the fko python module. Minor tweak and bumped version in the fwknop.spec file. Damien Stuart 2010-12-05 15:44:01 +00:00
  • 9d821548e7 Fixed bug where libfko would segfault if fko_get_spa_data() was called before fko_spa_data_final() was called (and successful). Added include of time.h in fko.h. Damien Stuart 2010-12-05 14:57:01 +00:00
  • 966b9bdccc Do not need parens around expression in if statements in python (still learning). Damien Stuart 2010-12-04 21:57:34 +00:00
  • 4e5326660c Added pydoc text to the fko python module. Minot tweak to setup.py. Damien Stuart 2010-12-04 04:12:17 +00:00
  • b6bf1d28bf Added the Fko class code to wrap the _fko wrapper around libfko. Damien Stuart 2010-11-27 03:18:58 +00:00
  • 00bc99a966 Minor comment and documentation tweaks. Add the python directory which contains my first cut at a libfko Python wrapper module. Damien Stuart 2010-11-26 15:51:00 +00:00
  • 04ebf6c2ad Added code to zero out rcfile path before setting it. Also added a bounds check to that as well. Damien Stuart 2010-11-14 00:16:32 +00:00
  • 0f6ca00ac4 Updated the GPL blurb at the top of the source files. Added some missing copyright statements (Thanks to Franck Joncourt). Damien Stuart 2010-11-13 03:04:36 +00:00
  • 67af7f7921 Updated perl module for additional error messages. Damien Stuart 2010-11-10 15:30:09 +00:00
  • 781218e7e1 Bumped version to rc3 (even though we may go straight to release) and lib rev to 3. Damien Stuart 2010-10-31 01:45:28 +00:00
  • d84112adca Update added HAVE_ERRNO_H 1 to win32/config.h. Damien Stuart 2010-10-31 01:36:25 +00:00
  • a3bafdb364 Needed to bump libfko revision to 2 do identify as part of newer dist. Damien Stuart 2010-10-30 16:19:54 +00:00
  • 3c83e899cb Put the usleep back pcap_capture (oops). Damien Stuart 2010-10-23 17:34:47 +00:00
  • ce6fe8c705 Tweaks to the fwknop.spec file Damien Stuart 2010-10-21 02:39:57 +00:00
  • bbe8c9d7a1 Set pcap non-block mode back on unless it is a freebsd system. Server verbose output no longer shows access key or GPG password. Damien Stuart 2010-10-21 01:53:04 +00:00
  • 4f504848a0 Fixed handling of man page generation in Makefile.am so it works from alternate build directories. Damien Stuart 2010-10-17 02:52:21 +00:00
  • f1e82bc7ae Minor fwknopd man page tweak. Damien Stuart 2010-08-29 02:06:13 +00:00
  • 1381f18374 Made autoconf print an error message indicating ipf is not supported if it is specified. Changelog updates. Damien Stuart 2010-08-29 01:50:58 +00:00
  • 6bcebe565c Made fw_cleanup not remove rules from the expired rule set. Added code to read in any existing expired rules into the rule_map at startup. Damien Stuart 2010-08-29 01:32:04 +00:00
  • ff9dad6fd9 Wrapped #ifdef around a linux-specific chunk. Damien Stuart 2010-08-27 22:09:36 +00:00
  • c4c158c1ba Missed a config file update on the last check-in. Damien Stuart 2010-08-26 22:56:47 +00:00
  • cdff077bb6 Added rule expire and purge for ipfw. Almost there... Damien Stuart 2010-08-24 03:09:35 +00:00
  • 51c21b318f Start of addition of access requests via ipfw. Damien Stuart 2010-08-23 02:43:43 +00:00
  • b0de05c70a minor off-by-one fix for home directory path separator Michael Rash 2010-08-14 01:26:42 +00:00
  • ea19245f99 minor bug fix to account for PATH_SEP being defined as a character instead of a string Michael Rash 2010-08-12 02:19:03 +00:00
  • 838b80fd7d Refactored firewall rule code to separate files by firewall type. Stubbed in ipfw and ipf firewall types. Updated autoconf to set a firewall type and path depending on configure arguments. Damien Stuart 2010-08-10 02:29:09 +00:00
  • c1f67b900d Uncommented call to check_firewall_rules (left in while debugging freebsd build). Damien Stuart 2010-08-08 19:01:36 +00:00
  • dcd6106a4b Oops left out new header for last update. Damien Stuart 2010-08-08 18:56:53 +00:00
  • 6126b7b7ca Updates to accomodate building and compiling on FreeBSD systems. Damien Stuart 2010-08-08 18:53:35 +00:00
  • 51adbe26a2 Tweaks to autoconf files. Damien Stuart 2010-08-01 02:13:03 +00:00
  • 55e9fe41e1 Added some OpenWRT-related files to the extras directory. Damien Stuart 2010-07-31 19:11:22 +00:00
  • 9c2cd267bf Fixed issue with spaces in in access.conf comma-separated values. Fixed issue with GPG signature check being forced when GPG_REMOTE_ID is set and GPG_REQUIRE_SIG was "N". Updated dependency in the spec file. Updates to ChangeLog. Damien Stuart 2010-07-31 18:04:08 +00:00
  • 7dc24c133e Bug fix for USE_NDBM variable so that client-only builds work. The specific error before the patch along with the command line invocation of the "configure" script appear below: Michael Rash 2010-07-29 11:01:53 +00:00
  • 35f71a82fd Added extras directory. Bumped version in autoconf to 1.0.0rc2. Damien Stuart 2010-07-25 15:40:51 +00:00
  • 94130067a6 Cleaned out some old commented-out sections configure.ac and fixed an issue where exteranl file checks would fail when running configure in cross-compiler environment. No code changes made. Damien Stuart 2010-07-19 02:39:26 +00:00
  • 3111e5868b Removed a debug print statement. Damien Stuart 2010-07-18 01:56:19 +00:00
  • bf8586922e Added check to make sure a firewall program is set. Damien Stuart 2010-07-16 20:47:50 +00:00
  • aa0cc1c699 Per Franck Joncourt - Corrected misspelled word in fwknopd man page and access.conf. Damien Stuart 2010-07-16 20:14:35 +00:00
  • b0886a1d49 Updates and clean-up to address the many compiler warnings when compiled with -Wall. Also some autoconf updates Damien Stuart 2010-07-16 14:28:32 +00:00
  • c3da912fc2 Updated the version number in the win32 config.h copy Damien Stuart 2010-07-16 01:09:11 +00:00
  • 8cfa222761 Fixed some misplaced dependencies in the fwknop.spec file. Damien Stuart 2010-07-16 00:39:17 +00:00
  • 4c995c146b Almost all he conf variables have a default value if they are not there (or set). All the entries in the initial fwknop.conf file are not commented out adn can be override as needed. Damien Stuart 2010-07-15 01:38:16 +00:00
  • d904f5637f removed additional wait() call from run_extcmd(), updated --fw-list to just use system() to execute the iptables listing commands Michael Rash 2010-07-14 02:58:51 +00:00
  • 6f4ff9cb69 added --fw-list arg to the fwknopd daemon to list all current firewall rules for any running fwknopd process Michael Rash 2010-07-13 04:09:07 +00:00
  • ed9170e506 - added is_valid_dir() utility function for checking directory stat()/existence (this is used for gpg keyring path validation). Michael Rash 2010-07-12 01:48:49 +00:00
  • f03b2786eb Added the fwknopd_errors.[ch] files which provides the get_errstr() and fwknopd_errstr() functions. The get_errstr() function takes and error_code, tries to determine the type, then calls the appropriate xxx_errstr function to return a description string. Fixed some minor errors in the libfko API docs. Damien Stuart 2010-07-11 20:16:32 +00:00
  • 390ea80df7 Moved force set of verify flag on remote_id value to before decryption phase. Damien Stuart 2010-07-11 14:04:23 +00:00
  • 3c5c8f1da7 Reverted last libfko change. Added set verify_sig flag when remote_ids are specified. Damien Stuart 2010-07-11 13:55:44 +00:00
  • 647fc3e64d Removed checks for sig verification flag on gpg_sig info related functions. Damien Stuart 2010-07-11 13:36:18 +00:00
  • eed35a8f1c minor update to check the gpg keyring path setting in access stanzas only if a decrypt password is specified Michael Rash 2010-07-11 12:37:31 +00:00