Skip to content
Commits on Feb 3, 2016
  1. @alteman

    Fix Ubuntu AppArmor regression

    alteman committed
    $ sudo fwknopd -f -c /etc/fwknop/fwknopd.conf 
    Starting fwknopd
    Added jump rule from chain: INPUT to chain: FWKNOP_INPUT
    iptables 'comment' match is available
    Sniffing interface: ppp0
    [*] pcap_open_live() error: ppp0: You don't have permission to capture on that device (socket: Permission denied)
    [...] kernel: [...] type=1400 audit([...]): apparmor="DENIED" operation="create" profile="/usr/sbin/fwknopd" pid=[...] comm="fwknopd" family="packet" sock_type="dgram" protocol=768
Commits on Jan 13, 2016
Commits on Dec 21, 2015
Commits on Dec 10, 2015
Commits on Aug 22, 2015
Commits on Aug 19, 2015
  1. [build] add convenience script for ASan builds

    Sometimes when ASan support is wanted for fwknop, the following compile
    error can be generated. This script provides a means to solve this.
    fwknop-spa_comm.o: In function `send_spa_packet_http':
    /home/mbr/git/fwknop.git/client/spa_comm.c:516: undefined reference to `rpl_malloc'
    ../lib/.libs/ undefined reference to `rpl_realloc'
Commits on Aug 17, 2015
Commits on Jul 19, 2015
  1. @Coacher
Commits on Jul 1, 2015
Commits on May 22, 2015
Commits on May 21, 2015
  1. (Jonathan Bennett) added script to create QR codes from…

    … fwknopd access.conf keys
Commits on Apr 20, 2015
  1. @Coacher

    extras: adjust 'localstatedir' value for the AppArmor profile

    Coacher committed
    Comments in the shipped AppArmor profile state that fwknopd is assumed
    to be built with 'localstatedir=/var', which is misleading for several
    * AppArmor profile assumes that fwknopd's pidfile and digest cache are
    under /run/fwknop by the looks of it, i.e. 'localstatedir' is '/run'.
    * By default these files are placed under /var/run/fwknop. Thus this
    profile implicitly relies on the existence of '/var/run -> /run' symlink
    and won't work otherwise when 'localstatedir' is '/var'
    Since GitHub PR#152 was merged, 'localstatedir' can be simply set to
    '/run' for AppArmor users to avoid this confusion. This changeset does
    If anyone had it working before, they should have it working now as the
    shipped AppArmor profile required /run existence before as well.
Commits on Mar 31, 2015
Commits on Mar 23, 2015
  1. added the extras/patches/ directory (initial patch to link against pt…

    …hreads for libfiu support)
Commits on Jul 23, 2014
Commits on Mar 18, 2014
Commits on Mar 14, 2014
  1. fix header non-ascii chars, and introduce test suite support for dete…

    …cting this in source files
Commits on Mar 4, 2014
  1. Updated authorship and copyright information

    This commit updates all authorship and copyright information to include a
    standard header that references the AUTHORS and CREDITS file. This standard
    header was written by the Debian legal team at the request of Franck Joncourt.
Commits on Nov 23, 2013
  1. AppArmor profile update to allow GnuPG link operations, closes #109

    This fix was submitted by Raybuntu through github.
Commits on Nov 14, 2013
  1. added extras/apparmor helper script for building fw…

    …knop with args that AppArmor expects
Commits on Aug 19, 2013
  1. Added AppArmor policy

    This commit adds an AppArmor policy that is known to work in Debian and Ubuntu
    systems.  The original version of this policy was contributed by Radostan Riedel
    to the fwknop mailing list.
Commits on Jun 30, 2013
  1. @fjoncourt
Commits on Jun 5, 2013
  1. [extras] update script to point fwknop client in gpg m…

    …ode to the no-pw homedir
Commits on Mar 8, 2013
Commits on Jan 18, 2013
  1. merged in fwknop-2.0.4 changes

Commits on Dec 14, 2012
  1. removed openbsd/pkg/ directory

  2. moved openbsd/* to openbsd/fwknop-2.0.3/ now that Vlad Glagolev has c…

    …ontributed an fwknop-2.0.4 OpenBSD port
Commits on Oct 3, 2012
  1. [server] Switched upstart config to use 'expect' section

    This change allows fwknopd to write syslog messages to traditional syslog files
    while running under upstart.  Not forking into the background resulted in
    messages meant for syslog were captured under /var/log/upstart/fwknop.log.
Commits on Sep 30, 2012
  1. [server] upstart config change to start on network device up

    For the upstart config make sure only start fwknopd after a non-loopback
    network interface is brought up.  Also added a commented post-start script
    to send an email whenever fwknopd is (re)started.
Commits on Sep 28, 2012
  1. Added upstart config for Ubuntu systems

    fwknop can be easily managed with upstart with the addition of this config.
    Here is an example:
     # service fwknop start
     fwknop start/running, process 4269
Commits on Sep 14, 2012
  1. (Vlad Glagolev) Submitted an OpenBSD port for fwknop-2.0.3

    (Vlad Glagolev) Submitted an OpenBSD port for fwknop-2.0.3, and this has
    been checked in under extras/openbsd/.
Something went wrong with that request. Please try again.