DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity

Commit Graph

  • 578cf501be Add Doxygen documentation to lib/hmac.c functions Jonathan Bennett 2016-01-02 22:14:03 -06:00
  • af7d9e8544 Simplify hmac implementations Jonathan Bennett 2016-01-02 21:59:26 -06:00
  • a3e0d1cc1b clean up whitespace problems Jonathan Bennett 2016-01-02 20:18:12 -06:00
  • 32f35468f6 Add some documentation for the include directives Jonathan Bennett 2016-01-02 17:28:50 -06:00
  • 330663499f Allows an access stanza to be ignored when a problem is caused in an include_keys stanza Jonathan Bennett 2016-01-02 16:42:18 -06:00
  • 09b7fc94da Add %include_keys directive Jonathan Bennett 2015-12-27 21:34:31 -06:00
  • efe2b207f0 Merge pull request #189 from oneru/doxygen Michael Rash 2016-01-01 19:35:54 -05:00
  • 40cef83794 Merge pull request #188 from oneru/nat_dns Michael Rash 2016-01-01 19:35:45 -05:00
  • 9bb70fa17a Add Doxygen headers for common files Jonathan Bennett 2016-01-01 03:02:17 +00:00
  • 9475b625a0 Add Doxygen headers to client files Jonathan Bennett 2016-01-01 02:13:21 +00:00
  • 3378ba2423 Add Doxygen headers for server files Jonathan Bennett 2016-01-01 02:09:59 +00:00
  • ae5451dccc Doxygen headers for libfko files Jonathan Bennett 2015-12-31 22:56:23 +00:00
  • dda7fa39c1 Disable client side nat_dns Jonathan Bennett 2015-12-31 19:24:45 +00:00
  • 669e448db5 Add ENABLE_NAT_DNS config option Jonathan Bennett 2015-12-31 18:05:55 +00:00
  • 748803aef7 Add length checks for nat_access messages Jonathan Bennett 2015-12-31 03:38:27 +00:00
  • bc55f0f21f Add count_characters and a CUnit test series for it. Jonathan Bennett 2015-12-31 02:12:08 +00:00
  • 56be13b3f6 Add dns resolution for nat access Jonathan Bennett 2015-12-25 11:20:00 -06:00
  • 81419d8f00 Merge pull request #183 from oneru/for-2.6.9 Michael Rash 2015-12-30 22:42:40 -05:00
  • 2edbc04bc7 properly handle longer HMAC keys for hmac_sha384 and hmac_sha512 Jonathan Bennett 2015-12-21 10:49:09 -06:00
  • 32a37f7e1f Add CUnit tests for various crypto functions Jonathan Bennett 2015-12-21 10:32:29 -06:00
  • d9f9cb8ad5 Add SHA3 and HMAC-SHA3 support Jonathan Bennett 2015-12-21 09:56:12 -06:00
  • fc1ef7f21f Merge pull request #181 from vaygr/xff Michael Rash 2015-12-29 20:47:33 -05:00
  • c41ccef2fa Merge pull request #185 from oneru/doxygen Michael Rash 2015-12-29 20:43:21 -05:00
  • b661dee583 Initial Doxygen config file and work on documenting libfko functions Jonathan Bennett 2015-12-27 20:09:38 -06:00
  • e3ae6747d9 doc updates Michael Rash 2015-12-24 16:08:35 -05:00
  • 31c6c9e997 changes since 2.6.7 Michael Rash 2015-12-23 14:35:11 -05:00
  • a85b081f79 copyright update Michael Rash 2015-12-23 14:34:51 -05:00
  • 22024febec try to describe Jonathan's contributions in a better fashion Michael Rash 2015-12-23 14:33:42 -05:00
  • a0cac1bd13 changes since 2.6.7 Michael Rash 2015-12-23 14:23:01 -05:00
  • 9c54d774f6 [docs] man page updates Michael Rash 2015-12-23 11:47:17 -05:00
  • fcb0102d69 [test suite] allow for different ordering of access.conf files in %include_folder directive Michael Rash 2015-12-23 10:56:41 -05:00
  • e2925c1f85 [libfko] bump version to 2.0.4 to account for fko_set_username() crash fix Michael Rash 2015-12-22 03:29:07 -08:00
  • fb65fbe3aa bump version to 2.6.8 Michael Rash 2015-12-21 16:30:48 -08:00
  • b7ccfc08ac [server] fix minor dead code discovery made by Coverity Michael Rash 2015-12-21 11:39:14 -08:00
  • 88907248f7 [extras] minor Coverity scan path update Michael Rash 2015-12-21 09:29:43 -08:00
  • c2737ee9f4 [server] chop_char() handles file string length Michael Rash 2015-12-21 00:12:12 -08:00
  • 2b881bc8eb [server] chop_char() handles file string length Michael Rash 2015-12-21 00:10:55 -08:00
  • 0d41b78d18 Merge branch 'master' into dstuart_netfilter_queue and resolved one conflict in cmd_opts.h Damien Stuart 2015-12-21 00:12:11 -05:00
  • db28efae25 Added linking libnfnetlink. Tweaks to get NFQ working with firewalld. Damien Stuart 2015-12-20 23:46:32 -05:00
  • ba611a2d2c Many additions and modifications for support of capture via Netfilter Queue. Damien Stuart 2015-12-20 21:58:31 -05:00
  • e7f1813962 [test suite] implement different access stanza init strategy, 'complete cycle, include (3)' test passes now Michael Rash 2015-12-20 18:17:42 -08:00
  • 4a7411ba57 1st implementation of X-Forwarded-For HTTP header support Vlad Glagolev 2015-12-20 21:19:31 +03:00
  • dd2f4c2c38 [test suite] restore args too long tests Michael Rash 2015-12-19 16:36:45 -08:00
  • 5f895db744 [test suite] restore gpg home dir test Michael Rash 2015-12-19 16:13:23 -08:00
  • 10a2742a88 [test suite] add clean validation test for digest cache Michael Rash 2015-12-19 13:30:49 -08:00
  • e25b78e81d [test suite] restore digest cache validation with a new arg --exit-parse-digest-cache Michael Rash 2015-12-19 05:46:36 -08:00
  • 923b94bda7 [test suite] restore pcap dispatch count test Michael Rash 2015-12-19 05:06:38 -08:00
  • beaf31ad5d [test suite] restore previous args test Michael Rash 2015-12-19 05:01:55 -08:00
  • c0b6db20be [server] start on not calling strtol_wrapper() repeatedly after the config is parsed Michael Rash 2015-12-16 20:26:17 -08:00
  • 2fad399db3 promote hex_dump() to fko_util Michael Rash 2015-12-16 19:28:10 -08:00
  • 998fb96f0b promote argv handling functions to fko_util (avoids duplication across client and server) Michael Rash 2015-12-16 18:59:10 -08:00
  • f230c32371 promote chop_* functions into fko_util Michael Rash 2015-12-16 18:00:57 -08:00
  • fc8b2ee9c3 [test suite] additional %include_folder test Michael Rash 2015-12-17 23:07:03 -05:00
  • 8533d9d248 [server] use chop_char() to strip trailing '/' chars from directories Michael Rash 2015-12-17 22:51:08 -05:00
  • 3388d85073 Revert "[server] access_folder is guaranteed to be NULL terminated" Michael Rash 2015-12-17 21:27:13 -05:00
  • 24f57f36a7 [server] access_folder is guaranteed to be NULL terminated Michael Rash 2015-12-15 11:58:33 -08:00
  • d85b1077fb [test suite] additional %include_folder tests Michael Rash 2015-12-15 11:58:12 -08:00
  • 8bab3cfbe3 [test suite] exercise free_cycle_list_node() Michael Rash 2015-12-15 11:26:29 -08:00
  • c987d91821 [test suite] attempt to account for systems that may run slowly (embedded systems, etc.) Michael Rash 2015-12-15 00:02:23 -08:00
  • 42fd4d6afa [test suite] additional FORCE_NAT code coverage Michael Rash 2015-12-14 22:39:57 -08:00
  • 48ecba25d5 [test suite] asan vs. ubsan bug fix Michael Rash 2015-12-14 18:51:03 -08:00
  • 98e79396ce [test suite] start on --access-folder include dir test Michael Rash 2015-12-13 02:24:30 -08:00
  • d8dc1fcdee [server] add is_valid_file() function, default to lstat() instead of stat(), more %include_folder tests Michael Rash 2015-12-13 01:39:29 -08:00
  • b305f67ca5 [test suite] start on %include_folder tests, make sure at least one valid access.conf stanza has been parsed Michael Rash 2015-12-12 20:39:37 -08:00
  • f2e6b6cc68 [server] fix directory handle leak in failure condition, switch to strlcpy and strlcat for %include folder parsing Michael Rash 2015-12-12 12:30:24 -08:00
  • ba3d16c5e3 [test suite] complete cycle test from %include derived access stanza Michael Rash 2015-12-12 11:19:14 -08:00
  • c12ecd092a [test suite] interleaved access.conf %include tests Michael Rash 2015-12-12 06:45:39 -08:00
  • bcd0a90a18 [test suite] %include missing key test Michael Rash 2015-12-12 06:32:14 -08:00
  • 9c92a368fe [test suite] access.conf %include missing file Michael Rash 2015-12-12 06:27:47 -08:00
  • 7757929624 [test suite] multi-include non-recursive access.conf test Michael Rash 2015-12-12 06:23:16 -08:00
  • 66458dfa49 [server] exit before writing pid file in --exit-parse-config mode Michael Rash 2015-12-12 06:22:40 -08:00
  • b65d766d80 [server] minor change to use MAX_DEPTH Michael Rash 2015-12-12 06:06:33 -08:00
  • 5b0cfb16a0 [test suite] add access.conf %include recursion limit test Michael Rash 2015-12-10 15:31:18 -08:00
  • e27e92d827 Merge branch 'master' into access_conf_includes Michael Rash 2015-12-10 15:01:29 -08:00
  • f7667239e6 Add documentation for the --access-folder command line option Jonathan Bennett 2015-12-10 17:41:43 -06:00
  • d70e3f3fbb [fko-wrapper] add 'usban' compilation directive Michael Rash 2015-12-10 14:36:14 -08:00
  • 885b8c3a09 [test suite] consolidate *Sanitizer crash detection in a single function Michael Rash 2015-12-10 14:35:46 -08:00
  • f0269751e6 [test suite] fix FORCE_SNAT tests Michael Rash 2015-12-10 14:34:35 -08:00
  • 75b059af76 [test suite] use killall to ensure fwknopd is stopped between tests Michael Rash 2015-12-10 14:33:51 -08:00
  • 4cab37acf9 [test suite] client --time-offset code coverage Michael Rash 2015-12-10 14:32:30 -08:00
  • a0c4acd31c Adds the --access-folder command line option Jonathan Bennett 2015-12-10 12:45:28 -06:00
  • 186101d298 Add the %include_folder directive Jonathan Bennett 2015-12-10 11:16:50 -06:00
  • d509925822 [extras] add build support for Google's UndefinedBehaviorSanitizer Michael Rash 2015-12-09 18:19:42 -08:00
  • 60919a9141 [test suite] make ASan error detection more generic to catch things like LeakSanitizer errors Michael Rash 2015-12-09 17:16:38 -08:00
  • 0c455ebf9c [test suite] ensure fko-wrapper passes 16-byte string to fko_set_rand_value() Michael Rash 2015-12-09 17:15:48 -08:00
  • abad765212 Only initialize the access stanze data on the root access.conf file. Jonathan Bennett 2015-12-09 00:13:53 -06:00
  • ae1e804ea1 [test suite] add test for access.conf include directive Michael Rash 2015-12-08 19:51:51 -08:00
  • 947dbfe6ae Merge branch 'master' into access_conf_includes Michael Rash 2015-12-08 19:04:32 -08:00
  • 95383149cb [server] bug fix to honor CMD_EXEC_USER and CMD_SUDO_EXEC_USER vars Michael Rash 2015-12-08 19:01:53 -08:00
  • 3e3bf0d122 Merge branch 'master' into accesss_conf_includes Michael Rash 2015-12-07 18:18:27 -08:00
  • 4f81dd7747 [server] local NAT should not be enabled by default Michael Rash 2015-12-07 16:51:19 -08:00
  • 35558097cc [test suite] fix FORCE_NAT and FORCE_SNAT required server regex matches Michael Rash 2015-12-05 16:07:01 -08:00
  • a8ec29affa [server] minor cleanup for incoming SPA packet processing Michael Rash 2015-12-05 16:06:25 -08:00
  • 51c0efb665 [test suite] minor var addition for Rijndael key existence test Michael Rash 2015-12-05 07:00:24 -08:00
  • b6674aba6f [server] allow ENABLE_IPT_LOCAL_NAT to enable FORCE_NAT features Michael Rash 2015-12-05 06:05:58 -08:00
  • 2c74372a4e [test suite] fix fko_set_username_strdup fault injection test Michael Rash 2015-12-05 05:50:39 -08:00
  • 793813e8ef [test suite] add missing coverage report to coverage_diff.py Michael Rash 2015-12-05 05:46:10 -08:00
  • 044ebf5e73 [test suite] add -O and -N to coverage diff'ing utility Michael Rash 2015-12-05 05:36:51 -08:00
  • 988075b52b [server] bug fix to honor client timeout SPA messages in --nat-local mode, fixes #173 Michael Rash 2015-12-04 19:36:51 -08:00
  • d4ca18dae6 [test suite] more comprehensive code coverage driven by fko-wrapper Michael Rash 2015-12-04 19:04:23 -08:00