fw-daemon

Commit Graph

Author	SHA1	Message	Date
dma	a3e38de6e5	Reduce log noise + honor log redact config option	7 years ago
xSmurf	bfa28d89da	Fmt'ing some log outputs...	7 years ago
xSmurf	c01894f35c	fmt..	7 years ago
Stephen Watt	8054062418	More checks in SGFW prompt GUI to prevent accidental startup race/panic condition. Increased default max concurrent prompts in standalone prompter to 5 connections. Fixed NULL dereference crash condition from recvfrom() error in go-nfnetlink vendor dependency.	7 years ago
Stephen Watt	e3ab56486b	Upgraded standalone fw-prompt for DBus compatibility with new fw-daemon. Averted potential panic issue in SOCKS5 listener. Fixed strange whole-window scrolling behavior in fw-prompt. Removed verbose debug output in fw-prompt.	7 years ago
Stephen Watt	a3fa1b1285	Slightly kludgy workaround for gtk-3.20 dependence in gtk-3.18 builds. Added SGFW_CONF environment variable for overriding default SGFW configuration path. Added SGFW_SOCKS_CONFIG environment variable for overriding default SGFW SOCKS json config file path. Updated readme with information on building outside SGOS.	7 years ago
dma	ed8c254404	Add TLSGuard to SOCKS5 filter clients not coming from oz-daemon	7 years ago
xSmurf	6e6e265fae	Fmt..	7 years ago
dma	dafec55bc7	Fixed bug with prompt rule / saved rule mismatch on SOCKS connects	7 years ago
dma	7b5a0ed980	Bug fixes, cleanup, improvement	7 years ago
dma	f3f5414fd4	Support for TLSGuard in prompter	7 years ago
dma	a89f8118bf	Fix rule parsing, still working on this	7 years ago
dma	6cdb400d32	Fix bugs related to parsing rules file and saving rules file	7 years ago
shw	2e7b7debeb	Incorporated TLSGuard and turned it on by default for all outbound SOCKS5 connections. Fixed display of nil IPs (when only hostname is passed via SOCKS5 connect).	8 years ago
shw	515c4eb3ee	Squashed (some) noisy debug output.	8 years ago
shw	0f2b2413ea	Added per-process (ephemeral) rule support. (proc coroner now has support for multiple callbacks)	8 years ago
shw	5f5042fed4	Very noisy, experimental support for asynchronous multi-rule firewall prompting. Fixed prompted rule removal bug in fw-prompt.	8 years ago
shw	51c181a881	Full support for multiple protocol types (UDP, ICMP). Cleared up awkward fw-settings/fwprompt GUI language caused by introduction of UDP/ICMP ("connection"-less) rules. fw-daemon automatically passes through all ICMP traffic sent to same address. Added (temporary) rule for passing through all UDP-based DNS server traffic. Updated developers' README documentation.	8 years ago
shw	ea31a28d3a	Added requisite Dbus code so that fw-settings automatically refreshes its rulelist on fw-daemon update. (there is an intermittent bug in here somewhere... seems to be a GTK-related fatal race condition)	8 years ago
shw	f47e23e706	Support for firewall rule matching by uid/gid and/or user/group name value. fw-daemon prompt GUI and fw-settings now include user/uid and group/gid info. sgfw prompt GUI now displays username instead of real name. Fixed bug in parsing IP addresses as CIDR values. sgfw_rules entries can now be commented out. Upgraded bundled go-procsnitch API.	8 years ago
shw	b4ed11261f	Added extra display info for "Sandboxed application" in fw-prompt gnome shell GUI. fw-prompt GUI gracefully displays unknown PIDs and UIDs. Fixed stupid syntax error bug in oz-init PID management code.	8 years ago
shw	9069c91606	Garbage dump commit of current progress.	8 years ago
shw	cadb859dce	Added ephemeral oz sandbox/fw-daemon rules that can be updated via IPC connection. fw-daemon prompter is now updated with source address of originating packet. Fixed bug in decoding DNS data. Packets are dropped properly (by marking and then calling Accept()).	8 years ago
shw	4955c6a66b	Added (unused) origin field in firewall gnome-shell UI. Added some instructions.	8 years ago
xSmurf	02155c44ed	Golint...	8 years ago
xSmurf	5d4b38c5b4	Refactor...	8 years ago
xSmurf	4b632fb6f2	Moved fw-daemon to command/lib	8 years ago
xSmurf	9c8f5895ca	Moved all to sgfw	8 years ago

28 Commits (master)