Thomas Bernard
|
733c3c25f7
|
INSTALL: update about apt-get packages to install for nftables
|
2019-10-22 17:49:48 +02:00 |
Thomas Bernard
|
efb6ec1b2f
|
testminiwget.sh: use either "ip addr" or "ifconfig -a"
|
2019-10-22 14:35:15 +02:00 |
Thomas Bernard
|
c2818392e1
|
fix UPNP_GetValidIGD()
lanaddr was the one used to connect to the last device.
fixes #396
|
2019-10-13 19:58:52 +02:00 |
Thomas Bernard
|
5f85321084
|
connecthostport.c: output to help debug
see #396
|
2019-10-13 19:22:59 +02:00 |
Thomas Bernard
|
0d7ccf1388
|
2019
|
2019-10-06 22:53:20 +02:00 |
Thomas Bernard
|
d17912b95b
|
ignore validateversion
|
2019-10-06 22:44:32 +02:00 |
Thomas Bernard
|
ce9cf89f07
|
Makefile.linux_nft: fix depends
|
2019-10-06 22:41:47 +02:00 |
Thomas Bernard
|
f200b1b7e8
|
netfilter_nft/nftpinhole.c: fix after function renames
nft_send_request() => nft_send_rule()
reflesh_nft_cache_filter() => refresh_nft_cache_filter()
|
2019-10-06 22:30:36 +02:00 |
Thomas Bernard
|
e6b1dab5e9
|
travis-ci: build nftables version with --ipv6 --igd2
|
2019-10-06 22:24:26 +02:00 |
Thomas Bernard
|
8ac3784fe2
|
Merge branch 'version'
|
2019-10-06 22:17:25 +02:00 |
Paul Chambers
|
913194cf75
|
Move print_rule to the file it's used in.
|
2019-10-06 21:47:50 +02:00 |
Paul Chambers
|
9d1680455e
|
cleanup some formatting inconsistencies
|
2019-10-06 21:38:58 +02:00 |
Thomas Bernard
|
4ac428cbc9
|
netfilter_nft: remove dead code
|
2019-10-06 21:25:03 +02:00 |
Paul Chambers
|
35fa178ec8
|
encapsulate debug printing of rules. keeps stack layout the same between debug & non-debug builds.
|
2019-10-06 21:15:25 +02:00 |
Thomas Bernard
|
a87011f933
|
fix checking of "~Man:" header"
bug introduced in 3571a41d1b
|
2019-10-06 00:17:52 +02:00 |
Thomas Bernard
|
b747e222a8
|
miniupnpd/.gitignore: dox/
|
2019-10-05 23:55:44 +02:00 |
Thomas Bernard
|
a3c2f21805
|
check before building for nftables
|
2019-10-05 22:54:06 +02:00 |
Thomas Bernard
|
0a35f97db7
|
Makefile.linux: validate version
|
2019-10-05 22:44:36 +02:00 |
Thomas Bernard
|
49d3b57441
|
miniupnpd: Add --version commandline option
fixes #370
|
2019-10-05 22:44:31 +02:00 |
Thomas Bernard
|
700b86eeda
|
compatibility with OpenSSL 1.1.x
Use OpenSSL TLS_server_method() instead of TLSv1_server_method()
Also fix ERR_remove_state(0) call
|
2019-10-05 22:44:31 +02:00 |
Paul Chambers
|
123e589266
|
establish persistent mnl/netlink socket at init_redirect (needs elevated privileges)
|
2019-10-05 22:39:05 +02:00 |
Thomas Bernard
|
22223da9a1
|
use OpenBSD pledge() to drop privileges
To be tested
see #405
|
2019-10-03 23:23:53 +02:00 |
Thomas Bernard
|
174db857f8
|
fix end of file
|
2019-10-03 00:15:50 +02:00 |
Thomas Bernard
|
49a60028e7
|
2019
|
2019-10-03 00:15:32 +02:00 |
Thomas Bernard
|
6f4057ee82
|
update Changelog.txt
|
2019-10-03 00:15:13 +02:00 |
Thomas Bernard
|
57bc67f72a
|
2019
|
2019-10-02 23:42:55 +02:00 |
Paul Chambers
|
7ea314412c
|
make rdr_name_type enum values more unique
|
2019-10-02 23:42:15 +02:00 |
Paul Chambers
|
b36a6e94f8
|
NFT_RULE_USERDATA is sized, not null-terminated. Must use strndup()
|
2019-10-02 23:42:15 +02:00 |
Thomas Bernard
|
b6303c8836
|
clean before building for NFTABLE
|
2019-10-02 23:42:15 +02:00 |
Paul Chambers
|
fda82bceef
|
remove lingering debug stuff, add my name to file headers
|
2019-10-02 13:08:22 -07:00 |
Paul Chambers
|
dcad93615f
|
set the family attribute on the chain
|
2019-10-01 01:12:10 -07:00 |
Paul Chambers
|
2a496a1c1c
|
Minimize attributes set if chain_op is not NFT_MSG_NEWCHAIN
|
2019-10-01 00:40:05 -07:00 |
Paul Chambers
|
6a53e6e765
|
use the same name for all three tables, like sshguard does
|
2019-09-30 11:20:16 -07:00 |
Paul Chambers
|
13b63da3fb
|
bump the priority of miniupnpd's forward chain, so it processes packets before other filter chains
|
2019-09-30 09:40:40 -07:00 |
Paul Chambers
|
75bdb777cf
|
rework nft-specific globals, create & destroy tables/chains at init & shutdown
|
2019-09-30 00:12:08 -07:00 |
Paul Chambers
|
d5773600f9
|
add --firewall=<name> to genconfig.sh & tweak Makefiles to match
|
2019-09-28 22:17:51 -07:00 |
Paul Chambers
|
48f2339759
|
parse_rule_cmp: promote repeated code in cases outside the switch
|
2019-09-27 21:25:34 -07:00 |
Paul Chambers
|
dbdaabd21e
|
insert omitted break statements causing compiler warnings
|
2019-09-27 21:00:28 -07:00 |
Paul Chambers
|
b5021ef57f
|
suppress warnings for some intentional fallthrough cases in switch statements
|
2019-09-27 20:47:53 -07:00 |
Thomas Bernard
|
2c45b0793e
|
fix genconfig.sh for OpenBSD
see 70a215d693
|
2019-09-26 23:46:24 +02:00 |
Thomas Bernard
|
ace2250533
|
cast time_t to long long instead of long
|
2019-09-24 16:07:42 +02:00 |
Thomas Bernard
|
70a215d693
|
net.inet6.ip6.v6only has been removed in recent OpenBSD versions
|
2019-09-24 16:06:38 +02:00 |
Thomas Bernard
|
8c00d0747a
|
include <sys/select.h> for fd_set
|
2019-09-24 16:06:12 +02:00 |
Thomas Bernard
|
2917d99c58
|
2019
|
2019-09-24 16:05:44 +02:00 |
Thomas Bernard
|
a6291ca391
|
update miniupnpd/Changelog.txt and README
|
2019-09-24 13:02:20 +02:00 |
Thomas Bernard
|
1976452125
|
handle both IP_PKTINFO and IP_RECVIF defined.
fixes #391
|
2019-09-24 12:26:57 +02:00 |
Thomas Bernard
|
8cb006c538
|
macros.h: add FALL_THROUGH macro
|
2019-09-24 12:04:40 +02:00 |
Paul Chambers
|
ed9ef746a0
|
Distinguish between iptables and nftables in genconfig.sh, adding USE_IPTABLES or USE_NFTABLES defines.
|
2019-09-24 11:57:39 +02:00 |
Thomas Bernard
|
a2591edfa6
|
Install doxygen and graphviz package
|
2019-09-24 11:57:27 +02:00 |
Thomas Bernard
|
81e0d83403
|
build doc with Doxygen
|
2019-09-24 11:57:27 +02:00 |