1. 10 Mar, 2022 1 commit
    • Karel Koci's avatar
      Sentinel Firewall logs collector version 0.3.0 · e132a6e4
      Karel Koci authored
      * support for welcome message required for newer versions of
      * dependency on libczmq\_logc that integrates CZMQ logging with LogC
      * configuration parsing for `nflog_group`, `socket` and `topic`
      * minimal required version of LogC is now 0.2.0
      * CI: release description for automatic release creation
  2. 04 Jan, 2022 15 commits
    • Miroslav Hanak's avatar
      logs: improve includes · 94a6af00
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
    • Miroslav Hanak's avatar
      fwrecorder: improve includes · f99f9e54
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
    • Miroslav Hanak's avatar
      parser: improvements · 2f6bf40c
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
      - includes
      - attribute nonnull
      - function declarations without parameters names
      - make packet_data ports uint16_t
    • Miroslav Hanak's avatar
      sender: improvements · f4237f62
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
      - sort includes
      - add attribute nonnull to function declarations
    • Miroslav Hanak's avatar
      fwlog: improvements · df88a094
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
      - includes
      - function declarations without parameter names
      - __attribute__((nonnull))
    • Miroslav Hanak's avatar
      sentinel-fwlogs: improve includes · a3c05a81
      Miroslav Hanak authored and Karel Koci's avatar Karel Koci committed
    • Karel Koci's avatar
      fwlogs: handle receive and package handling errors · bac99090
      Karel Koci authored
      The receive of packet can fail. That breaks the loop but it won't print
      any info. This adds report about that.
      The nflog_handle_packet can fail according to some search on the
      Internet. This function is not documented in the official documentation
      but is used in example that is part of it and no error is handled there
      but that minimum the callback can return error so there is probably a
      way how this could fail.
      This is tied to the  change in callback implementation. Originally we
      signaled error from callback if sending failed. This can happen for
      various reasons but in general we do not care about that. We print error
      and we should keep going because ti might be just temporally thing. That
      removes only one place when callback would signal error. Any other place
      is considered unexpected error and thus abort is called there. The
      result is that we no longer need callback to signal error and thus this
      was removed as well.
    • Karel Koci's avatar
      fwrecorder: fix some issues · 33635dc3
      Karel Koci authored
      Run tests with fwrecorder to at least cover it by static analysis.
    • Karel Koci's avatar
      gitlab-ci: fix invalid image URL · 18b36921
      Karel Koci authored
      The variable is also a better option to cover cases when server moves.
    • Karel Koci's avatar
      fwlogs: parse some configuration options and remove -t · f91ee31f
      Karel Koci authored
      This actually uses configuration file for real. We allow configuration
      of socket, topic and nflog group.
      The additional change here is the removal of -t argument. The topic
      change is available only through long option now. The reason for this is
      because whole pipeline depends on default topic and topic change breaks
      it. It is kind of an internal option and thus it for sure should not
      have convenient short option.
    • Karel Koci's avatar
      build: fix distcheck target · ba91905a
      Karel Koci authored
      This ensures that we have working distribution archives.
    • Karel Koci's avatar
      Update code to support LogC 0.2.0 release · e644c371
      Karel Koci authored
      The LogC changed macro names with 0.2.0 release.
    • Karel Koci's avatar
      gitlab-ci: run only memcheck in valgrind · ab4a189b
      Karel Koci authored
      The issue here is that czmq fails to pass helgrind and drd.
      This also extends docker image with new dependency, logc-libs.
    • Karel Koci's avatar
      Link with libczmq_logc for czmq logc integration · 6356ca1a
      Karel Koci authored
      This redirects czmq messages to logc. Note that at the moment this is
      only redirection. The configuration is not yet propagated from
      application log because LogC lacks chain implementation still.
    • Karel Koci's avatar
      fwlogs: add support for welcome message for proxy · f176faaf
      Karel Koci authored
      This adds welcome message that is send as soon as possible to the
      Sentinel proxy.
      This also extends tests to cover sender and to cover cases when data
      received are just simply invalid.
  3. 26 Nov, 2021 1 commit
  4. 08 Sep, 2021 1 commit
  5. 14 May, 2021 1 commit
  6. 10 May, 2021 3 commits
    • Karel Koci's avatar
      fwlogs/protocol2str: do not fail compilation on undefined protocols · 7aec8740
      Karel Koci authored
      These are all protocols that are defined in netinet/in.h but they are
      not all available on all systems. Commenting out some subset is not
      exactly all right solution. This instead just wraps case with check if
      macro is defined.
    • Karel Koci's avatar
      fwlogs: implement IPv6 protocol parsing · fa4d7f62
      Karel Koci authored
      This has still one huge hole and that is that it simply sends info about
      first extension header instead of protocol itself. The idea is to deploy
      it as it is now and get back to it after we collect some data and see
      how often such packets are blocked on firewall. It might be that they
      are just not that common and thus we might not need to hurry with
      implementation. Another option is that they are pretty common and so
      simply we would have to implement them as soon as possible.
    • Karel Koci's avatar
      Move source files to subdirectories · c246dd01
      Karel Koci authored
      This is just so project is little bit better organized. We have now
      sources for recorder and fwlogs itself separate.
      This also changes how we load suites in unittests. We now use
      constructor to auto-inject suites without having to edit unittests.c.
  7. 05 Feb, 2021 1 commit
    • Karel Koci's avatar
      Fixes for eb7c4cae · 0f4ba09b
      Karel Koci authored
      This removes typo in gitignore, unsecure git (that was just used to
      overcome temporally bug in Debian and invalid names of release archives.
  8. 10 Jan, 2021 2 commits
  9. 29 Dec, 2020 1 commit
    • Karel Koci's avatar
      Improve build system and CI · eb7c4cae
      Karel Koci authored
      This tweaks build system to hide some warnings and improve help text.
      Another change is in Gitlab CI. Primary change is addition of release
      This also includes some minor code style tweaks.
  10. 06 Oct, 2020 1 commit
  11. 26 Sep, 2020 1 commit
    • Karel Koci's avatar
      configure: make tests and linter disabled at default · 2b4d3924
      Karel Koci authored
      It is common to install using ./configure && make && make install. This
      would include tests and linters and introduced unnecessary dependencies
      just to pass configure step. Making tests and linter disable at default
      allows simpler usage. Developer can enable tests and linter rather
      over common user having to disable them.
  12. 25 Sep, 2020 3 commits
  13. 18 Aug, 2020 1 commit