DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity

Commit Graph

  • f89af3b8c1 add libfko fko_set_username() crash ChangeLog message Michael Rash 2015-12-04 19:03:22 -08:00
  • 21149faf89 [libfko] fko_set_username() crash bug fix. Michael Rash 2015-12-04 19:01:26 -08:00
  • a000bcd4a0 [client] minor formatting update Michael Rash 2015-12-04 18:49:24 -08:00
  • c3d50a9503 Unwind the recursive access.conf properly on an error and remove a debugging log message. Jonathan Bennett 2015-12-04 18:34:09 -06:00
  • 1e34a3430c Add access.conf %include depth tracking Jonathan Bennett 2015-12-04 18:16:57 -06:00
  • ce0b7f6727 Initial work on access.conf includes Jonathan Bennett 2015-12-03 19:56:39 -06:00
  • c67008b6a8 minor fault injection tag rework for fko_set_rand_value() and fko_set_username() Michael Rash 2015-11-30 12:28:59 -08:00
  • 343d0b7f44 Merge branch 'master' of ssh://github.com/mrash/fwknop Michael Rash 2015-11-29 21:31:30 -05:00
  • 0adb4ac2ba add -fPIC to enforce position-independent code (necessary for gcc > 5.0), fixes #170 Michael Rash 2015-11-29 21:30:41 -05:00
  • d2cef1746c Initial update for NETFILTER_QUEUE support. These changes are not tested at all as they were edit on a Mac, but are linux-specific. Damien Stuart 2015-11-28 15:03:39 -05:00
  • 50a5f76080 Merge pull request #171 from vaygr/client-timeout Michael Rash 2015-11-27 09:47:16 -05:00
  • eb88e0ab00 respect CMD_CYCLE_TIMER Vlad Glagolev 2015-11-27 17:44:34 +03:00
  • 8c7a007a4a [test suite] differentiate TIMEOUT vs. CLIENT_TIMEOUT values in command open close cycles Michael Rash 2015-11-17 22:41:22 -08:00
  • f6829fe527 [test suite] added command cycle close NONE test Michael Rash 2015-11-17 22:08:58 -08:00
  • 0bf4993071 [server] minor update to replace a string compare for command cycle close exclusions Michael Rash 2015-11-17 21:19:59 -08:00
  • 47663f4215 Merge pull request #169 from vaygr/client-timeout Michael Rash 2015-11-19 20:55:29 -05:00
  • 37cc375ea3 added substitution support for CLIENT_TIMEOUT Vlad Glagolev 2015-11-19 21:39:07 +03:00
  • cfa02859eb [server] don't run firewall handling code for command-only modes Michael Rash 2015-11-17 20:48:37 -08:00
  • 882624a2a0 [server] allow 'NONE' to short circuit close command execution Michael Rash 2015-11-13 11:18:19 -08:00
  • b0f25ae2e8 [server] (Vlad Glagolev) Add client timeouts to command open/close cycle operations Michael Rash 2015-11-13 08:41:39 -08:00
  • 51de939846 [test suite] add open/close --fw-timeout test Michael Rash 2015-11-13 08:33:44 -08:00
  • 97faa2dbdf minor docs update Michael Rash 2015-11-10 21:40:57 -05:00
  • 347ee04827 [test suite] minor rework of signals to fwknopd Michael Rash 2015-11-08 17:49:04 -08:00
  • 8484e3ea7a [test suite] add unhandled signal (SIGTSTP) to signal handling test Michael Rash 2015-11-07 13:35:51 -08:00
  • 2f49be6cb0 [server] For SIGHUP processing, don't send the TCP server SIGTERM unless it is running Michael Rash 2015-11-01 01:58:47 -08:00
  • d3dcfc9cf4 Merge remote-tracking branch 'origin/master' into cmd_open_close_cycle Michael Rash 2015-10-31 10:37:06 -07:00
  • 02049cb473 Added AM_CONDITIONAL to check if OS is Darwin (Apple) and not use the --whole-archive option if it is. Damien Stuart 2015-11-02 23:02:22 -05:00
  • 0ef8ba5259 Added use of --whole-archive for linking libfko_util.a to libfko.so. This takes care of the unresolved symbols (from libfko_util) when linking libfko.so. Damien Stuart 2015-11-02 21:41:26 -05:00
  • 2101bd63e9 [test suite] add tests/* interface for file_find_num_matches() Michael Rash 2015-10-31 10:36:46 -07:00
  • 2d65330ce7 [test suite] add a few missing test suite configs Michael Rash 2015-10-31 06:07:27 -07:00
  • 0a9f4e3e59 Minor tweak for format fix in the gpl texinfo file Damien Stuart 2015-10-26 21:20:16 -04:00
  • 72d6a0c018 [test suite] add multi-cycle open/close command tests Michael Rash 2015-10-26 13:02:51 -07:00
  • 577c2a74a4 [test suite] add sleep_cycles key for multi-cycle tests Michael Rash 2015-10-24 08:03:28 -04:00
  • 7910658c85 [server] memory leak bugfix caught by multi-cycle open/close test Michael Rash 2015-10-24 07:05:29 -04:00
  • 36317b59a6 [test suite] add command cycle test via the UDP server Michael Rash 2015-10-19 19:50:05 -07:00
  • 7c476a747d [test suite] add hmac_cmd_open_close_cycle_access5.conf file Michael Rash 2015-10-19 20:24:34 -04:00
  • 4909b629d5 [server] add command cycle close support to UDP server mode Michael Rash 2015-10-19 20:17:44 -04:00
  • 1c33c5089e [test suite] additional cmd cycle var substitution test Michael Rash 2015-10-19 20:17:17 -04:00
  • 3a591fbf49 [test suite] add hmac_cmd_open_close_cycle_access4.conf file Michael Rash 2015-10-18 09:48:30 -07:00
  • 3fb75cace3 [test suite] add SRC,PKT_SRC,DST var subsitution test Michael Rash 2015-10-18 09:48:07 -07:00
  • 7a09daba4c [test suite] more command cycle tests (multiple substitution vars) Michael Rash 2015-10-18 09:28:48 -07:00
  • 5597730e27 [test suite] added open/close file tests Michael Rash 2015-10-18 09:13:49 -07:00
  • 6c0b328114 [server] fix command cycle close code to iterate through the entire list until all expiration commands have been executed Michael Rash 2015-10-18 08:47:50 -07:00
  • 17b4b3d55e [server] implemented command cycle close execution and expiration Michael Rash 2015-10-17 20:14:33 -07:00
  • 2b97e8b2e6 [server] command IP,SRC,PKT_SRC,DST,PORT,PROTO substitutions work for open/close cycles now Michael Rash 2015-10-17 06:30:33 -07:00
  • 32b4c5e53f [server] minor log_msg() reformatting Michael Rash 2015-10-17 05:27:54 -07:00
  • 4587a279e1 [server] validate CMD_CYCLE_* vars from the access.conf file Michael Rash 2015-10-13 19:17:06 -07:00
  • d67fbde992 [server] start on command open/close cycle support (issue #117) Michael Rash 2015-10-13 18:00:07 -07:00
  • cac6a3f726 [server] minor refactor for access.conf parsing Michael Rash 2015-10-09 04:42:09 -07:00
  • a11881433d [server] minor access.conf variable name bug fix Michael Rash 2015-10-03 06:16:47 -07:00
  • b03c007c44 [client] add --server-resolve-ipv4 to only accept IPv4 addresses from DNS for the SPA server Michael Rash 2015-09-27 10:17:36 -04:00
  • a4309ad768 Added clean up for .gcno and .gcda files (left went c-unit-tests are enabled. Damien Stuart 2015-09-05 15:20:22 -04:00
  • 24b3a216bd Updated c-unit-test README for changes in test locations. Updated autoconf files to remove references to the old c-unit-test configuration. Damien Stuart 2015-09-05 11:05:32 -04:00
  • 2e60687dcf Merge branch 'master' into dstuart_refactor_autoconf Damien Stuart 2015-08-29 12:46:24 -04:00
  • 995f541766 add .DS_Store files to .gitignore Michael Rash 2015-08-27 20:56:42 -04:00
  • 32bb9f8048 changes since 2.6.6 Michael Rash 2015-08-24 17:35:54 -07:00
  • 88c82af195 rpm 2.6.7 release note Michael Rash 2015-08-24 17:33:44 -07:00
  • ecfa8021e5 doc updates to include sudo information Michael Rash 2015-08-24 17:25:06 -07:00
  • 71ded8caf1 ChangeLog update for 2.6.7 Michael Rash 2015-08-24 17:23:40 -07:00
  • c04feff5ef [test suite] initialize coverage files in non --include mode Michael Rash 2015-08-23 20:50:24 -07:00
  • b060495bb4 [test suite] rm previous coverage files in coverage mode when --include criteria is not used Michael Rash 2015-08-23 20:32:59 -07:00
  • 9531099a1f [test suite] use pkill when available Michael Rash 2015-08-23 20:08:17 -07:00
  • b88d1854ed minor link comment fix Michael Rash 2015-08-22 23:20:59 -04:00
  • fab2f8e591 minor README update Michael Rash 2015-08-22 23:18:12 -04:00
  • d1d59778e9 [server] handle trailing quote for PF firewalls on OpenBSD Michael Rash 2015-08-21 23:06:07 -04:00
  • fe9e42f212 [test suite] minor sudo error code searching update Michael Rash 2015-08-21 22:29:35 -04:00
  • dd1528c829 [test suite] set sudo path on the fwknopd command line Michael Rash 2015-08-21 22:24:45 -04:00
  • e999f61f82 [test suite] allow /usr/local/etc/sudoers path Michael Rash 2015-08-21 22:04:58 -04:00
  • f37fd22816 [extras] use default configure args before running cov-build Michael Rash 2015-08-21 21:49:07 -04:00
  • 2f94413b2f [server] bug fix for ipfw firewall rule removal Michael Rash 2015-08-21 21:35:10 -04:00
  • ec9eef3365 [server] fix a dead code condition spotted by Coverity Michael Rash 2015-08-19 23:41:47 -04:00
  • c5507d2c2a [server] fix ptr vs. val check spotted by Coverity Michael Rash 2015-08-19 23:41:17 -04:00
  • 82464574a6 [client] minor update to make chksum() static Michael Rash 2015-08-18 22:12:23 -04:00
  • 423899f3c4 [server] minor fix to remove unnecessary var definition Michael Rash 2015-08-18 22:02:00 -04:00
  • 0fdc263a43 options struct should not be global (CLANG -Wshadow warning) Michael Rash 2015-08-18 21:58:53 -04:00
  • a9c3e204dc [test suite] pgrep usage bug fix Michael Rash 2015-08-18 20:40:14 -04:00
  • 47ff151dea [build] add convenience script for ASan builds Michael Rash 2015-08-18 20:37:56 -04:00
  • 5e0a668a7f [server] minor access.c fix to quiet both Coverity and the CLANG static analyzer Michael Rash 2015-08-16 21:31:48 -04:00
  • 8edad8b583 [extras] update Coverity version to 7.7.0 for interface script Michael Rash 2015-08-16 21:27:14 -04:00
  • f3b25bdc24 [test suite] require custom config paths for sudo tests Michael Rash 2015-08-16 21:06:26 -04:00
  • 743d861c67 Updated version in the spec file. Damien Stuart 2015-08-14 16:49:07 -04:00
  • e5c6f96788 [server] fix compilation issue for non-iptables firewalls Michael Rash 2015-07-25 23:10:06 -04:00
  • 47851dffdd [test suite] use pgrep for fwknopd check at init time Michael Rash 2015-07-25 19:17:10 -07:00
  • 8e7dd29280 Merge branch 'master' of ssh://192.168.10.1/home/mbr/git/fwknop Michael Rash 2015-07-25 19:00:48 -07:00
  • 72555ba9fe [server] minor comment fix for group ID determination in access.conf parsing Michael Rash 2015-07-25 18:58:39 -07:00
  • fbdc542f48 Merge branch 'master' of https://github.com/mrash/fwknop Michael Rash 2015-07-25 13:28:49 -07:00
  • db3a8c39e4 Merge branch 'master' of https://github.com/mrash/fwknop Michael Rash 2015-07-25 16:28:23 -04:00
  • c0330e5c8b [server] additional work on splitting incoming_spa() loop into functions Michael Rash 2015-07-25 13:27:42 -07:00
  • 591d400216 [test suite] fix sudo user tests Michael Rash 2015-07-25 13:26:50 -07:00
  • 3270900a38 [server] continued work on splitting incoming_spa() into functions Michael Rash 2015-07-19 21:54:20 -07:00
  • 6116419e21 [test suite] ensure HMAC key string is equal to SHA512_BLOCK_LEN in length (fixes ASAN warning) Michael Rash 2015-07-19 20:38:23 -07:00
  • dff7b82daf Merge pull request #166 from micha137/patch-1 Michael Rash 2015-07-22 11:06:08 -04:00
  • 01beb31861 [server] start to split incoming_spa() main loop into functions Michael Rash 2015-07-19 20:35:54 -07:00
  • d681485e29 [server] add sudo support, closes #159 Michael Rash 2015-07-19 20:23:04 -07:00
  • 0ac52b9b4d Fix some typos micha137 2015-07-21 18:39:43 +02:00
  • 89b2e8f477 [server] interface goes down will cause fwknopd to exit Michael Rash 2015-07-18 13:11:25 -07:00
  • 15c00692b7 Merge pull request #164 from Coacher/master Michael Rash 2015-07-18 23:43:00 -04:00
  • 8647854efe extras: add systemd unit file and tmpfiles.d configuration for fwknopd Ilya Tumaykin 2015-07-19 06:18:54 +03:00
  • 795b1de4dd [server] Added RULES_CHECK_THRESHOLD to define 'deep' rule expiration check frequency Michael Rash 2015-07-18 10:37:17 -07:00
  • 295a6a0d14 [server] fix is_digits() logic and add tests Michael Rash 2015-07-17 21:28:02 -07:00