Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Apr 21, 2015
  1. doc updates

    authored
  2. Merge pull request #153 from Coacher/master

    authored
    extras: adjust 'localstatedir' value for the AppArmor profile
Commits on Apr 20, 2015
  1. bump version to 2.6.6

    authored
  2. [server] minor -h usage update

    authored
  3. @Coacher

    extras: adjust 'localstatedir' value for the AppArmor profile

    Coacher authored
    Comments in the shipped AppArmor profile state that fwknopd is assumed
    to be built with 'localstatedir=/var', which is misleading for several
    reasons:
    
    * AppArmor profile assumes that fwknopd's pidfile and digest cache are
    under /run/fwknop by the looks of it, i.e. 'localstatedir' is '/run'.
    
    * By default these files are placed under /var/run/fwknop. Thus this
    profile implicitly relies on the existence of '/var/run -> /run' symlink
    and won't work otherwise when 'localstatedir' is '/var'
    
    Since GitHub PR#152 was merged, 'localstatedir' can be simply set to
    '/run' for AppArmor users to avoid this confusion. This changeset does
    it.
    
    If anyone had it working before, they should have it working now as the
    shipped AppArmor profile required /run existence before as well.
  4. Merge pull request #152 from Coacher/master

    authored
    server: remove extra '/run' subdir from paths
  5. [server] switch from abs() to labs() for time difference calculation

    authored
    This commit fixes the following warning during compilation on Mac OS X:
    
    gcc -DHAVE_CONFIG_H -I. -I..  -I ../lib -I ../common -DSYSCONFDIR=\"/etc\" -DSYSRUNDIR=\"/var\"   -g -O2 -Wall -Wformat -Wformat-security -fstack-protector-all -fstack-protector -fPIE -D_FORTIFY_SOURCE=2 -MT fwknopd-incoming_spa.o -MD -MP -MF .deps/fwknopd-incoming_spa.Tpo -c -o fwknopd-incoming_spa.o `test -f 'incoming_spa.c' || echo './'`incoming_spa.c
    incoming_spa.c:736:23: warning: absolute value function 'abs' given an argument of
          type 'long' but has parameter of type 'int' which may cause truncation of
          value [-Wabsolute-value]
                ts_diff = abs(now_ts - spadat.timestamp);
                          ^
    incoming_spa.c:736:23: note: use function 'labs' instead
                ts_diff = abs(now_ts - spadat.timestamp);
                          ^~~
                          labs
    1 warning generated.
Commits on Apr 19, 2015
  1. @Coacher
  2. @Coacher

    server: remove extra '/run' subdir from paths

    Coacher authored
    Having extra '/run' subdirectory hardcoded into paths used for options
    'digest-file', 'pid-file', 'run-dir' is counterintuitive and can lead to
    bogus directory layouts when 'localstatedir' differs from the default
    value.
    
    For example, if 'localstatedir' is set to '/run', which is a common and
    recommended substitute for /var/run in many distros nowadays, then
    fwknop files will be placed under /run/run/fwknop.
    
    This changeset removes extra '/run' subdirectory from all relevant paths
    by changing DEF_RUN_DIR. Default value of 'localstatedir' is changed to
    '/var/run' so users who relied on the previous behaviour won't have to
    bother changing anything.
    
    This is tested and works. Gentoo have this patch applied since 2.6.0.
  3. minor docs update

    authored
Commits on Apr 18, 2015
  1. ChangeLog and doc updates

    authored
Commits on Apr 17, 2015
  1. Merge pull request #151 from mrdanbrooks/master

    authored
    android: allow definition of custom server udp port
Commits on Apr 15, 2015
  1. @mrdanbrooks
Commits on Apr 14, 2015
  1. [server] remove DISABLE_DNAT exception for SPA packets that request a…

    authored
    … NAT operation - this is reserved for FORCE_NAT scenarios
Commits on Apr 13, 2015
  1. [server] remove DISABLE_DNAT exception for SPA packets that request a…

    authored
    … NAT operation - this is reserved for FORCE_NAT scenarios
Commits on Apr 12, 2015
  1. Revert "[server] use 'success' string for firewalld as returned firew…

    authored
    …all-cmd for command success"
    
    This reverts commit 1e33119.
Something went wrong with that request. Please try again.