fwknop.git
10 months ago[test suite] added DYLD_LIBRARY_PATH for Mac OS X 10.9 mac_os_x_mavericks_build
Michael Rash [Wed, 13 Nov 2013 04:05:16 +0000]
[test suite] added DYLD_LIBRARY_PATH for Mac OS X 10.9

10 months ago[server] ignore pcap direction for sniffing link type DLT_NULL interfaces (fixes...
Michael Rash [Wed, 13 Nov 2013 04:04:35 +0000]
[server] ignore pcap direction for sniffing link type DLT_NULL interfaces (fixes OS X 10.9 test suite runs)

10 months ago[libfko] Candidate build fix for Mac OS X 10.9 (closes #108)
Michael Rash [Wed, 13 Nov 2013 02:36:14 +0000]
[libfko] Candidate build fix for Mac OS X 10.9 (closes #108)

Nikolay Kolev reported a build issue on Mac OS X 10.9 (Mavericks) where fwknop
copies of strlcpy() and strlcat() functions were conflicting with those that ship
with OS X 10.9.

The solution was to add a configure.ac check for strlcat() and strlcpy() and
wrap "#if !HAVE_..." checks around those functions.

A portion of the build errors looked like this:

/Applications/Xcode.app/Contents/Developer/usr/bin/make  all-recursive
Making all in lib
/bin/sh ../libtool  --tag=CC   --mode=compile gcc -DHAVE_CONFIG_H -I. -I..   -I ../common   -g -O2 -Wall -Wformat -Wformat-security -fstack-protector-all -fstack-protector -fPIE -D_FORTIFY_SOURCE=2 -MT base64.lo -MD -MP -MF .deps/base64.Tpo -c -o base64.lo base64.c
libtool: compile:  gcc -DHAVE_CONFIG_H -I. -I.. -I ../common -g -O2 -Wall -Wformat -Wformat-security -fstack-protector-all -fstack-protector -D_FORTIFY_SOURCE=2 -MT base64.lo -MD -MP -MF .deps/base64.Tpo -c base64.c  -fno-common -DPIC -o .libs/base64.o
In file included from base64.c:34:
In file included from ./fko_common.h:149:
./fko_util.h:56:9: error: expected parameter declarator
size_t  strlcat(char *dst, const char *src, size_t siz);
        ^
/usr/include/secure/_string.h:111:44: note: expanded from macro 'strlcat'
  __builtin___strlcat_chk (dest, src, len, __darwin_obsz (dest))
                                           ^
/usr/include/secure/_common.h:39:62: note: expanded from macro '__darwin_obsz'
 #define __darwin_obsz(object) __builtin_object_size (object, _USE_FORTIFY_LEVEL > 1 ? 1 : 0)
                                                             ^

10 months ago[perl FKO module] added a series of encryption + HMAC key tests with single bytes...
Michael Rash [Thu, 31 Oct 2013 03:39:48 +0000]
[perl FKO module] added a series of encryption + HMAC key tests with single bytes converted to NULL

10 months agoadded perl FKO t/04_fuzzing.t tests file
Michael Rash [Thu, 31 Oct 2013 03:30:31 +0000]
added perl FKO t/04_fuzzing.t tests file

10 months ago[perl FKO module] additional fuzzing tests
Michael Rash [Mon, 28 Oct 2013 02:24:12 +0000]
[perl FKO module] additional fuzzing tests

10 months ago[test suite] minor negative output match addition for Test::Valgrind test
Michael Rash [Sun, 27 Oct 2013 19:08:01 +0000]
[test suite] minor negative output match addition for Test::Valgrind test

10 months ago[test suite] added valgrind output interpretation for Test::Valgrind output for previ...
Michael Rash [Sat, 26 Oct 2013 02:38:09 +0000]
[test suite] added valgrind output interpretation for Test::Valgrind output for previous run comparisons

10 months ago[perl FKO module] added t/04_fuzzing tests
Michael Rash [Fri, 25 Oct 2013 03:17:51 +0000]
[perl FKO module] added t/04_fuzzing tests

11 months ago[test suite] minor wording update for Test::Valgrind test
Michael Rash [Wed, 23 Oct 2013 03:05:36 +0000]
[test suite] minor wording update for Test::Valgrind test

11 months agoadded Test::Valgrind note to the ChangeLog
Michael Rash [Wed, 23 Oct 2013 02:58:58 +0000]
added Test::Valgrind note to the ChangeLog

11 months ago[perl FKO] interim commit to update the perldoc info
Michael Rash [Wed, 23 Oct 2013 02:24:47 +0000]
[perl FKO] interim commit to update the perldoc info

11 months ago[test suite] minor python update to use a main() function
Michael Rash [Wed, 23 Oct 2013 01:38:47 +0000]
[test suite] minor python update to use a main() function

11 months ago[test suite] minor Test::Valgrind name typo fix
Michael Rash [Wed, 23 Oct 2013 00:37:58 +0000]
[test suite] minor Test::Valgrind name typo fix

11 months agoRevert "[test suite] minor Test::Valgrind name typo fix"
Michael Rash [Wed, 23 Oct 2013 00:36:30 +0000]
Revert "[test suite] minor Test::Valgrind name typo fix"

This reverts commit 642024041534d79c897a21b2e19ef3e1ed7b2a61.

11 months ago[test suite] minor Test::Valgrind name typo fix
Michael Rash [Tue, 22 Oct 2013 00:47:01 +0000]
[test suite] minor Test::Valgrind name typo fix

11 months ago[test suite, FKO module] new(), spa_data_final(), and other fcns don't require key...
Michael Rash [Tue, 22 Oct 2013 00:45:21 +0000]
[test suite, FKO module] new(), spa_data_final(), and other fcns don't require key length args

11 months ago[test suite] Add support for Test::Valgrind against the perl FKO module
Michael Rash [Tue, 22 Oct 2013 00:34:22 +0000]
[test suite] Add support for Test::Valgrind against the perl FKO module

When --enable-valgrind is used, this commit adds support for running the
perl FKO built-in tests (in the t/ directory) under the CPAN
Test::Valgrind module.  A check is performed to see whether
Test::Valgrind is install before attempting to use it.  Any 'fko_'
function that shows up under the test output is flagged and causes the
test-suite test to fail.

11 months ago[perl FKO module] switch to CBC mode tests from ECB
Michael Rash [Fri, 11 Oct 2013 02:43:45 +0000]
[perl FKO module] switch to CBC mode tests from ECB

11 months ago[test suite] display all possible tests under --list (with a --enable-* note)
Michael Rash [Fri, 11 Oct 2013 02:34:25 +0000]
[test suite] display all possible tests under --list (with a --enable-* note)

12 months agoFixed missing error codes and error tests.
Damien Stuart [Sun, 15 Sep 2013 18:33:42 +0000]
Fixed missing error codes and error tests.

12 months agoMerge branch 'perl_module'
Damien Stuart [Sat, 7 Sep 2013 03:18:39 +0000]
Merge branch 'perl_module'

12 months agominor ChangeLog typo update
Michael Rash [Fri, 6 Sep 2013 00:31:08 +0000]
minor ChangeLog typo update

12 months agoUpdated Perl FKO tests for lastest changes to libfko. Fixed bug where $fko->hmac...
Damien Stuart [Wed, 4 Sep 2013 19:19:43 +0000]
Updated Perl FKO tests for lastest changes to libfko.  Fixed bug where $fko->hmac() was always returning -1.

12 months agoMerge pull request #105 from fjoncourt/master
Michael Rash [Thu, 29 Aug 2013 04:55:39 +0000]
Merge pull request #105 from fjoncourt/master

Make sure log_msg() sends messages to STDERR until the context gets initialized.

12 months agoFixed *Value stored is never read* warning found by clang.
Franck Joncourt [Tue, 27 Aug 2013 18:45:17 +0000]
Fixed *Value stored is never read* warning found by clang.

12 months agoMake sure all calls to log_msg() send messages to STDERR until the config files are...
Franck Joncourt [Tue, 27 Aug 2013 18:39:03 +0000]
Make sure all calls to log_msg() send messages to STDERR until the config files are parsed.
(mrash/fwknop#102)

13 months agoadded Radostan Riedel's AppArmor policy note
Michael Rash [Mon, 19 Aug 2013 03:02:44 +0000]
added Radostan Riedel's AppArmor policy note

13 months agoAdded AppArmor policy
Michael Rash [Mon, 19 Aug 2013 02:58:10 +0000]
Added AppArmor policy

This commit adds an AppArmor policy that is known to work in Debian and Ubuntu
systems.  The original version of this policy was contributed by Radostan Riedel
to the fwknop mailing list.

13 months ago[server] fix crash if replay digest tracking init() fails
Michael Rash [Mon, 19 Aug 2013 02:15:15 +0000]
[server] fix crash if replay digest tracking init() fails

This commit fixes a crash if the replay digest init() routine fails - fwknopd
attempted to make use of replay tracking anyway.  The crash was discovered
during testing fwknopd with an AppArmor enforce policy deployed.  The
following stack trace shows the crash (taken before the previous static
function commit):

 Program received signal SIGSEGV, Segmentation fault.
 __strlen_sse2 () at ../sysdeps/x86_64/multiarch/../strlen.S:31
 31      ../sysdeps/x86_64/multiarch/../strlen.S: No such file or directory.
 (gdb) where
 #0  __strlen_sse2 () at ../sysdeps/x86_64/multiarch/../strlen.S:31
 #1  0x00007f59cabd8b26 in add_replay_file_cache (opts=opts@entry=0x7fff3eaa0bb0, digest=digest@entry=0x0) at replay_cache.c:516
 #2  0x00007f59cabd8cf5 in add_replay (opts=opts@entry=0x7fff3eaa0bb0, digest=digest@entry=0x0) at replay_cache.c:472
 #3  0x00007f59cabd62eb in incoming_spa (opts=0x7fff3eaa0bb0) at incoming_spa.c:536
 #4  0x00007f59ca56164e in ?? () from /usr/lib/x86_64-linux-gnu/libpcap.so.0.8
 #5  0x00007f59cabd7175 in pcap_capture (opts=opts@entry=0x7fff3eaa0bb0) at pcap_capture.c:269
 #6  0x00007f59cabd3d4d in main (argc=5, argv=0x7fff3eaa1458) at fwknopd.c:314

13 months ago[server] minor replay code update to make functions static where possible
Michael Rash [Mon, 19 Aug 2013 01:56:53 +0000]
[server] minor replay code update to make functions static where possible

13 months ago[test suite] added 'make test' check for FKO perl module
Michael Rash [Sun, 18 Aug 2013 03:51:23 +0000]
[test suite] added 'make test' check for FKO perl module

All built-in tests in the FKO module must pass for this new test to pass.  This commit
is in support of #103

13 months agoFirst round of updates to get the Perl module up-to-date with the new libfko. Added...
Damien Stuart [Tue, 13 Aug 2013 00:53:29 +0000]
First round of updates to get the Perl module up-to-date with the new libfko.  Added new error refs and commented out bad/invalid tests.

13 months agoMerge branch 'master' of github.com:mrash/fwknop
Michael Rash [Mon, 12 Aug 2013 02:09:22 +0000]
Merge branch 'master' of github.com:mrash/fwknop

13 months agoAdded fko context dumper change to ChangeLog, updated test suite to account for singl...
Michael Rash [Mon, 12 Aug 2013 02:07:02 +0000]
Added fko context dumper change to ChangeLog, updated test suite to account for single line printing of final SPA data

13 months agoMoved new invalid data error definitions above the GPGME_ERR_START marker.
Damien Stuart [Mon, 12 Aug 2013 02:02:50 +0000]
Moved new invalid data error definitions above the GPGME_ERR_START marker.

13 months agoMerge remote-tracking branch 'fjoncourt/fko_dump'
Michael Rash [Sun, 11 Aug 2013 19:02:01 +0000]
Merge remote-tracking branch 'fjoncourt/fko_dump'

This implements an FKO context dumping function in lib/fko_utils.c, and closes #100

13 months agominor edit to credits file for Hank Leininger
Michael Rash [Sun, 11 Aug 2013 18:30:37 +0000]
minor edit to credits file for Hank Leininger

13 months ago[test suite] minor bug fix for GPG no password HMAC test rc file
Michael Rash [Sun, 11 Aug 2013 01:03:07 +0000]
[test suite] minor bug fix for GPG no password HMAC test rc file

13 months ago[server] minor addition to access stanza dump output to include hmac digest type
Michael Rash [Sat, 10 Aug 2013 20:08:19 +0000]
[server] minor addition to access stanza dump output to include hmac digest type

13 months ago[test suite] added Rijndael HMAC digest mismatch tests
Michael Rash [Sat, 10 Aug 2013 19:45:51 +0000]
[test suite] added Rijndael HMAC digest mismatch tests

13 months ago[test suite] added Rijndael HMAC + RAND_PORT test
Michael Rash [Sat, 10 Aug 2013 18:27:10 +0000]
[test suite] added Rijndael HMAC + RAND_PORT test

13 months ago[test suite] added two GnuPG HMAC SHA512 tests
Michael Rash [Sat, 10 Aug 2013 17:54:03 +0000]
[test suite] added two GnuPG HMAC SHA512 tests

13 months agoMerge remote-tracking branch 'upstream/master' into fko_dump
Franck Joncourt [Sat, 10 Aug 2013 12:32:34 +0000]
Merge remote-tracking branch 'upstream/master' into fko_dump

13 months ago* Removed goto statements. We do not do any further processings
Franck Joncourt [Sat, 10 Aug 2013 12:30:40 +0000]
* Removed goto statements. We do not do any further processings
  when we reach the error label.

13 months agoChangeLog/CREDITS update for Hank's libfko error code patch
Michael Rash [Sat, 10 Aug 2013 01:47:38 +0000]
ChangeLog/CREDITS update for Hank's libfko error code patch

13 months agoMerge remote-tracking branch 'hlein/unique_errors'
Michael Rash [Sat, 10 Aug 2013 01:46:49 +0000]
Merge remote-tracking branch 'hlein/unique_errors'

[libfko] (Hank Leininger) Contributed a patch to greatly extend libfko
error code descriptions at various places in order to give much better
information on what certain error conditions mean.  Closes #98.

13 months agominor ChangeLog update for --stanza-list
Michael Rash [Fri, 9 Aug 2013 01:37:44 +0000]
minor ChangeLog update for --stanza-list

13 months ago[server] fix compilation warning dealing with new iptables chain validation
Michael Rash [Fri, 9 Aug 2013 00:55:10 +0000]
[server] fix compilation warning dealing with new iptables chain validation

13 months ago[client] merged --stanza-list changes from Franck, closes #94
Michael Rash [Fri, 9 Aug 2013 00:54:07 +0000]
[client] merged --stanza-list changes from Franck, closes #94

13 months agoAdd unique errors for every FKO_ERROR_INVALID_DATA. Needed this to
Hank Leininger [Tue, 6 Aug 2013 02:21:10 +0000]
Add unique errors for every FKO_ERROR_INVALID_DATA.  Needed this to
track down mystery errors (#98).

13 months agominor ChangeLog update for the test suite --gdb-test feature
Michael Rash [Tue, 6 Aug 2013 01:08:40 +0000]
minor ChangeLog update for the test suite --gdb-test feature

13 months ago* Interim commit to add a dump function to dump the FKO context shared
Franck Joncourt [Mon, 5 Aug 2013 21:28:07 +0000]
* Interim commit to add a dump function to dump the FKO context shared
  by both the server and client. mrash/fwknop#95

13 months ago[server] send IPT_*_ACCESS vars through basic validation at fwknopd.conf parse time
Michael Rash [Mon, 5 Aug 2013 04:00:45 +0000]
[server] send IPT_*_ACCESS vars through basic validation at fwknopd.conf parse time

13 months ago[test suite] minor seg fault test message update
Michael Rash [Mon, 5 Aug 2013 03:23:07 +0000]
[test suite] minor seg fault test message update

13 months ago[server] make IPT_INPUT_ACCESS validation more strict on allowed chars
Michael Rash [Mon, 5 Aug 2013 03:20:53 +0000]
[server] make IPT_INPUT_ACCESS validation more strict on allowed chars

13 months ago[server] if iptables init fails then no need to remove fwknop chains
Michael Rash [Mon, 5 Aug 2013 03:01:33 +0000]
[server] if iptables init fails then no need to remove fwknop chains

This commit fixes a crash at init time in fwknopd if an improperly formatted
IPT_INPUT_ACCESS variable is used in fwknopd.conf file.  fwknopd should not
try to delete chains with a bogus IPT_INPUT_ACCESS variable, and valgrind
verifies that this change does not introduce any memory leaks (see the
'invalid iptables INPUT spec' tests run in --enable-valgrind mode).

13 months ago[test suite] added --gdb-test mode
Michael Rash [Mon, 5 Aug 2013 01:46:38 +0000]
[test suite] added --gdb-test mode

This commit allows the test suite to execute the same fwknop/fwknopd command
used in a specified test output file under gdb.  This is a convenience
measure to allow the user to more rapidly execute fwknop/fwknopd commands
under gdb in the same way the test suite does without having to copy and paste
command line args.

Here is a basic example:

root@lorien:/home/mbr/git/fwknop.git/test# ./test-fwknop.pl --gdb output/6.test
GNU gdb
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i686-linux-gnu".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /home/mbr/git/fwknop.git/server/.libs/fwknopd...done.
(gdb) run
Starting program: /home/mbr/git/fwknop.git/server/.libs/fwknopd -c conf/invalid_ipt_input_chain_6_fwknopd.conf -a conf/default_access.conf -d run/digest.cache -p run/fwknopd.pid -i lo --foreground --verbose --verbose

13 months ago[test suite] minor removal of duplicate Cwd usage
Michael Rash [Mon, 5 Aug 2013 01:24:44 +0000]
[test suite] minor removal of duplicate Cwd usage

13 months ago[test suite] added invalid IPT input chain specification tests
Michael Rash [Mon, 5 Aug 2013 01:22:35 +0000]
[test suite] added invalid IPT input chain specification tests

13 months ago[test suite] have Makefile.am test/conf/ file inclusion only write errors
Michael Rash [Sun, 4 Aug 2013 21:55:41 +0000]
[test suite] have Makefile.am test/conf/ file inclusion only write errors

13 months ago[test suite] don't append segfault searches to every test output file
Michael Rash [Sun, 4 Aug 2013 15:25:58 +0000]
[test suite] don't append segfault searches to every test output file

13 months ago[test suite] additional non-HMAC SNAT tests
Michael Rash [Sun, 4 Aug 2013 08:51:39 +0000]
[test suite] additional non-HMAC SNAT tests

13 months ago[test suite] SNAT MASQUERADE test
Michael Rash [Sun, 4 Aug 2013 00:52:27 +0000]
[test suite] SNAT MASQUERADE test

13 months ago[server] add NULL check for SNAT translate IP
Michael Rash [Sun, 4 Aug 2013 00:37:50 +0000]
[server] add NULL check for SNAT translate IP

13 months ago[test suite] started on SNAT tests
Michael Rash [Sat, 3 Aug 2013 17:36:32 +0000]
[test suite] started on SNAT tests

13 months ago[server] minor enable check via strncasecmp()
Michael Rash [Sat, 3 Aug 2013 03:22:10 +0000]
[server] minor enable check via strncasecmp()

13 months ago[test suite] added checks to look for segfaults/crashes
Michael Rash [Fri, 2 Aug 2013 19:09:00 +0000]
[test suite] added checks to look for segfaults/crashes

13 months ago[test suite] have fko_wrapper only require fko.h
Michael Rash [Wed, 31 Jul 2013 17:57:49 +0000]
[test suite] have fko_wrapper only require fko.h

13 months ago* Fixed typos.
Franck Joncourt [Tue, 30 Jul 2013 21:00:19 +0000]
* Fixed typos.

13 months ago* Added new test to validate --stanza-list
Franck Joncourt [Tue, 30 Jul 2013 20:54:10 +0000]
* Added new test to validate --stanza-list

13 months ago* A bit more of documentation.
Franck Joncourt [Tue, 30 Jul 2013 19:49:33 +0000]
* A bit more of documentation.

13 months ago* Updated fwknop manpage to mention the new --stanza-list.
Franck Joncourt [Tue, 30 Jul 2013 19:45:24 +0000]
* Updated fwknop manpage to mention the new --stanza-list.

13 months agoMerge remote-tracking branch 'upstream/master'
Franck Joncourt [Tue, 30 Jul 2013 19:42:42 +0000]
Merge remote-tracking branch 'upstream/master'

13 months ago* Added a new --stanza-list command line to fwknop to dump the stanzas
Franck Joncourt [Tue, 30 Jul 2013 19:38:54 +0000]
* Added a new --stanza-list command line to fwknop to dump the stanzas
  configured in ./fwknoprc. The default stanza is not displayed.

13 months agominor man page update to move --syslog-enable to the server man page
Michael Rash [Mon, 29 Jul 2013 04:06:52 +0000]
minor man page update to move --syslog-enable to the server man page

13 months agoMerge remote-tracking branch 'upstream/master'
Franck Joncourt [Sun, 28 Jul 2013 20:11:16 +0000]
Merge remote-tracking branch 'upstream/master'

13 months ago* Allow messages to be sent to syslog even if the foreground mode is invoked.
Franck Joncourt [Sun, 28 Jul 2013 20:07:14 +0000]
* Allow messages to be sent to syslog even if the foreground mode is invoked.

13 months agoupdated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1 fwknop-2.5.1
Michael Rash [Fri, 26 Jul 2013 01:27:58 +0000]
updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1

13 months agoadded 'Release: 2' for libfko RPM versioning (since libfko did not change from 2...
Michael Rash [Fri, 26 Jul 2013 01:27:20 +0000]
added 'Release: 2' for libfko RPM versioning (since libfko did not change from 2.5 -> 2.5.1)

13 months agoupdated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1
Michael Rash [Fri, 26 Jul 2013 00:36:45 +0000]
updated ChangeLog.git file to reflect changes from 2.5 -> 2.5.1

13 months agobumped version to 2.5.1
Michael Rash [Fri, 26 Jul 2013 00:33:37 +0000]
bumped version to 2.5.1

13 months ago[test suite] Bug fix to not run an iptables Rijndael HMAC test on non-Linux systems
Michael Rash [Fri, 26 Jul 2013 00:33:19 +0000]
[test suite] Bug fix to not run an iptables Rijndael HMAC test on non-Linux systems

14 months agoupdated version and release date for 2.5.1 fwknop-2.5.1-pre1
Michael Rash [Thu, 25 Jul 2013 03:11:46 +0000]
updated version and release date for 2.5.1

14 months agoadded 2.5.1 material
Michael Rash [Thu, 25 Jul 2013 03:04:40 +0000]
added 2.5.1 material

14 months ago[server] don't print PID file existence warning in daemon mode (suggested by Ilya...
Michael Rash [Thu, 25 Jul 2013 03:04:31 +0000]
[server] don't print PID file existence warning in daemon mode (suggested by Ilya Tumaykin)

14 months ago[client] apply patch from Ilya Tumaykin for terminal setting type
Michael Rash [Thu, 25 Jul 2013 02:44:08 +0000]
[client] apply patch from Ilya Tumaykin for terminal setting type

This commit also fixes a 'possible use of uninitialized value' warning from gcc for
the old_c_lflag variable.

14 months agoReset terminal setting to orignal values after entering keys via stdin
Damien Stuart [Wed, 24 Jul 2013 18:38:08 +0000]
Reset terminal setting to orignal values after entering keys via stdin

14 months agoset libfko version to 2.0.0 for the RPM per Damien's recommendation fwknop-2.5
Michael Rash [Sat, 20 Jul 2013 00:34:01 +0000]
set libfko version to 2.0.0 for the RPM per Damien's recommendation

14 months ago[libfko] set version-info to 2:0:0 per Damien and Franck's recommendations
Michael Rash [Sat, 20 Jul 2013 00:33:38 +0000]
[libfko] set version-info to 2:0:0 per Damien and Franck's recommendations

14 months agoChangeLog.git file now shows changes since 2.0.4
Michael Rash [Fri, 19 Jul 2013 03:14:00 +0000]
ChangeLog.git file now shows changes since 2.0.4

14 months ago[client] added --use-hmac to --help output (noticed by Damien)
Michael Rash [Fri, 19 Jul 2013 03:06:24 +0000]
[client] added --use-hmac to --help output (noticed by Damien)

14 months agoadded fwknop-2.5 release date
Michael Rash [Fri, 19 Jul 2013 03:05:49 +0000]
added fwknop-2.5 release date

14 months ago[client] fix minor memory leak in getpasswd() routine caught by the test suite in...
Michael Rash [Thu, 18 Jul 2013 21:30:25 +0000]
[client] fix minor memory leak in getpasswd() routine caught by the test suite in valgrind mode

14 months ago[client] fix minor compilation warning about an unused variable
Michael Rash [Thu, 18 Jul 2013 04:15:22 +0000]
[client] fix minor compilation warning about an unused variable

14 months agoRevert "[libfko] Have 'make install' run ldconfig if basic fwknop/fwknopd -h exec...
Michael Rash [Thu, 18 Jul 2013 03:51:54 +0000]
Revert "[libfko] Have 'make install' run ldconfig if basic fwknop/fwknopd -h exec fails"

This reverts commit f55b89c867ab63aaf69daae0aec0c19f1c52d521.

Damien recommended not having 'make install' run ldconfig since it breaks an RPM
build of fwknop, and most package managers should be doing this step anyway.

14 months agominor ChangeLog text tweaks and one typo fix
Michael Rash [Thu, 18 Jul 2013 03:34:37 +0000]
minor ChangeLog text tweaks and one typo fix

14 months agoTweaks to unbreak the windows build: Renamed FD_SET macro to FD_SET_ALT to avoid...
Damien S. Stuart [Thu, 18 Jul 2013 02:46:24 +0000]
Tweaks to unbreak the windows build: Renamed FD_SET macro to FD_SET_ALT to avoid conflict with the well-known FD_SET macro. Made the client read password from file descriptor a non-supported function on Windows.

14 months agoadd legacy_iv_long_key2_access.conf file to Makefile.am
Michael Rash [Sun, 14 Jul 2013 21:46:48 +0000]
add legacy_iv_long_key2_access.conf file to Makefile.am

14 months ago[server] restore backwards compatibility for Rijndael keys > 16 bytes in legacy mode...
Michael Rash [Sun, 14 Jul 2013 19:37:24 +0000]
[server] restore backwards compatibility for Rijndael keys > 16 bytes in legacy mode by truncating (upgrading recommended of course)