Commit Graph

Select branches

Hide Pull Requests

main

#10

#100

#101

#102

#103

#109

#110

#112

#116

#117

#118

#12

#121

#122

#129

#13

#135

#136

#137

#14

#140

#141

#142

#144

#145

#147

#149

#15

#150

#151

#152

#154

#159

#160

#161

#162

#163

#164

#167

#169

#169

#17

#175

#176

#178

#179

#180

#181

#185

#189

#19

#190

#191

#192

#193

#194

#197

#197

#22

#26

#26

#27

#28

#28

#33

#36

#37

#38

#39

#42

#43

#44

#45

#46

#47

#48

#49

#51

#52

#54

#55

#58

#6

#6

#60

#61

#64

#66

#67

#68

#69

#71

#72

#74

#75

#76

#77

#79

#80

#81

#82

#83

#85

#88

#89

#90

#91

#95

#96

#98

#99

0.1

0.7.1

flambda-test

v0.2

v0.3

v0.4

v0.5

v0.6

v0.7

v0.8.0

v0.8.1

v0.8.2

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v0.9.0

v0.9.1

Mono Color

• 15ede4e359
  actualy create the symlink-redirected docker dir so the installer wont remove the dangling symlink xaki23 2019-07-28 13:33:43 +0200
• 8d0bd98805
  adjust to ipaddr-4.0.0 renaming _bytes to _octets in their api xaki23 2019-07-28 13:08:15 +0200
• a72738aa01
  use ocaml 4.08.0 for qubes-builder builds (was 4.07.1) xaki23 2019-07-28 13:07:09 +0200
• 17c6ec491f actually send dns packets./test.sh ! \o/ linse 2019-07-24 18:27:23 +0200
• e01cdfcdda WIP calling the dns request function. linse 2019-07-23 17:59:57 +0200
• 2b8362e007 Dummy send_dns_request function. linse 2019-07-23 17:42:53 +0200
• 369ebfcfd6 Set up for sending dns packets. linse 2019-07-23 17:25:39 +0200
• 15d9e78ae5 Get a non-faked src_port. linse 2019-07-23 16:59:43 +0200
• afeb2cf970 continue plumbing in dns... linse 2019-07-22 19:02:49 +0200
• a4af18c5c3 Make port list mutable. linse 2019-07-17 22:21:46 +0200
• f69485850b Add PortSet in random_user_port. linse 2019-07-17 22:07:44 +0200
• ec901f1f1f Add PortSet. linse 2019-07-17 21:52:07 +0200
• 0eb62fff0a Make a dns resolver. linse 2019-07-17 21:31:04 +0200
• 7b6a946f7a fix another overly permissive specialtarget=dns case Mindy 2019-07-02 19:08:21 -0500
• b6bbd68cae add a should-fail DNS lookup test for an active nameserver that isn't allowed Mindy 2019-07-02 14:24:32 -0500
• 2bae843c94 Merge branch 'static-pf-rules' of github.com:yomimono/qubes-mirage-firewall into static-pf-rules Mindy 2019-07-02 09:14:36 -0500
• 39a0fdeaa7 deny rules for dsthost testing Mindy 2019-07-02 09:14:31 -0500
• cf10315c23 Icmp error type tests are complete and pass. linse 2019-07-01 17:16:37 +0200
• c2a4af3455 New ICMP error type test. linse 2019-06-27 18:01:51 +0200
• 42f504c1c4 We check nat table first and then firewall rules if we don't find anything in the nat table. linse 2019-06-27 18:01:13 +0200
• 7527ff9672 Use new alcotest-mirage. linse 2019-06-27 17:09:32 +0200
• aeaab0f078
  Merge pull request #72 from talex5/unpin-netchannel Thomas Leonard 2019-06-22 15:34:30 +0100
• f9856a3605 Remove netchannel pin Thomas Leonard 2019-06-22 14:53:25 +0100
• e7eb4412ed
  Merge pull request #71 from talex5/remove-cmdliner-pin Thomas Leonard 2019-06-22 14:40:44 +0100
• 0b83ce2c8c Pretest to check for echo services. linse 2019-06-21 17:34:00 +0200
• 8a4743fcbe WIP linse 2019-06-20 17:59:14 +0200
• 41e0d0083c Refactor ping listener. linse 2019-06-20 17:42:50 +0200
• 802936c355 Add info string msg also to tcp_connect. linse 2019-06-20 17:13:57 +0200
• 37375e83c1 Test the upper and lower bounds of a port range. linse 2019-06-20 16:59:58 +0200
• 209b3634a5 Merge branch 'static-pf-rules' of github.com:yomimono/qubes-mirage-firewall into static-pf-rules Mindy 2019-06-20 09:07:00 -0500
• 57bff8ceb9 fix explainer comment Mindy 2019-06-20 09:06:36 -0500
• 473834b4be Dns port as a variable. linse 2019-06-20 16:01:55 +0200
• a53802748d add some special logic for the implicit proto/port restriction in specialtarget=dns Mindy 2019-06-19 18:42:04 -0500
• 90848bcbd4 1s is plenty of time for udp roundtrip on local in-memory network Mindy 2019-06-19 18:26:25 -0500
• 2e8446825f TODO on listen cancelation is resolved Mindy 2019-06-19 18:25:11 -0500
• 19c1806ed9 fix unused variable errors Mindy 2019-06-19 18:23:39 -0500
• 0091ad3958 fix wording about port ranges in comment; resolve TODO in ping test Mindy 2019-06-19 18:19:46 -0500
• 4620330b7e change tests so that connect_denied triggers properly Mindy 2019-06-19 18:06:42 -0500
• 5af89d0152 add failing test for icmp echo replies Mindy 2019-06-19 11:18:11 -0500
• 5a9eabafb3 step back debugging level in fetchmotron Mindy 2019-06-19 10:16:41 -0500
• 1ee858767c tests now work with mirage-net-xen that allows listener replacement! Mindy 2019-06-19 10:16:29 -0500
• a32340ba69 moar WIP Mindy 2019-06-18 10:38:37 -0500
• ce4a8dc934 look for icmpv3 in tcpip too Mindy 2019-06-18 10:36:48 -0500
• 8984af346d pre-check udp echoer for both relevant ports Mindy 2019-06-18 10:36:30 -0500
• d36ecf96af Remove cmdliner pin as 1.0.4 is now released Thomas Leonard 2019-06-15 12:48:01 +0100
• 58a3d3ffb5 WIP linse 2019-06-14 18:00:51 +0200
• aa7f49de47 Build the stack in the unikernel step by step. linse 2019-06-14 17:23:40 +0200
• bcf9c6b9ac wip: use network stuff directly Mindy 2019-06-14 09:38:03 -0500
• 6bc83751d9 fix specialtarget=dns test and add a deny-case test Mindy 2019-06-12 00:41:53 -0500
• a7d9efdc41 remove context and resolver from test unikernel arguments Mindy 2019-06-11 18:03:45 -0500
• 49a826ee4d remove now-unused exception based error checking Mindy 2019-06-11 17:18:32 -0500
• 83511e9fe2 make pass/fail messages more verbose Mindy 2019-06-11 17:17:52 -0500
• 64a7fe7056 WIP linse 2019-06-08 01:44:09 +0200
• dee0d32549 Changes to adapt to pf change that models port ranges as options. linse 2019-06-08 01:26:37 +0200
• 8f392a5ae1 TCP connect denied test. linse 2019-06-08 01:06:14 +0200
• 63315ff1cc Add TCP connect test. linse 2019-06-08 00:44:25 +0200
• 6e991f4184 implement a test for port range of size >1 Mindy 2019-06-10 11:00:40 -0500
• 8f2bee4fb1 restore space to firewall test log name Mindy 2019-06-10 10:39:13 -0500
• dce19f2c90 set log levels to minimize noise Mindy 2019-06-10 10:39:05 -0500
• b164a1a5ab change output for corrupted UDP packet response case Mindy 2019-06-10 09:46:09 -0500
• 959fb31173 pass the source port when sending UDP fetch test packet Mindy 2019-06-10 09:35:21 -0500
• 934dd81edf WIP linse 2019-06-07 15:44:45 +0200
• 056873e25b WIP: changing output to be more human-readable Mindy 2019-06-04 11:55:42 -0500
• faa5b37139 add update-firewall script Mindy 2019-06-04 11:05:48 -0500
• 43960c6080 add notes on setup program flow Mindy 2019-05-31 14:19:45 -0500
• 448ba654fb
  Merge pull request #69 from jaseg/patch-1 Thomas Leonard 2019-05-31 09:06:09 +0100
• 0a4b01a841
  Fix ln(1) call in build instructions jaseg 2019-05-31 12:50:33 +0900
• 010e5945a6 try to read rules dynamically Mindy 2019-05-30 19:05:48 -0500
• 27de63ffed make rules a mutable field in client_link; don't read and set them at connect time Mindy 2019-05-30 18:08:59 -0500
• 7d22eafa59
  Merge pull request #68 from talex5/updatevm yomimono 2019-05-29 17:55:25 -0500
• 0c571a0601
  Merge pull request #67 from talex5/fix-typo yomimono 2019-05-29 17:54:51 -0500
• 3ab7284a64 Note that mirage-firewall cannot be used as UpdateVM Thomas Leonard 2019-05-29 15:22:15 +0100
• de7d05ebfa Fix typos in docs Thomas Leonard 2019-05-29 08:37:31 +0100
• adb451e7e3
  Merge pull request #66 from talex5/add-changelog v0.6 yomimono 2019-05-28 15:25:48 -0500
• ee97d67c84 Add CHANGELOG Thomas Leonard 2019-05-28 21:04:31 +0100
• b15dd32df8 apply rules to incoming traffic (but...) Mindy 2019-05-23 17:40:07 -0500
• 068c5dca9b WIP. linse 2019-05-23 21:31:20 +0200
• 83026f4067 Parse firewall rules from QubesDB (but don't apply them yet :D) linse 2019-05-18 04:06:09 +0200
• a63fcf0dbb Set up everything for rule reading from QubesDB (but don't do it yet ;-) ) linse 2019-05-18 02:49:30 +0200
• bf8f7c7fd2 test against udp echo server Mindy 2019-05-22 10:56:22 -0500
• 5379b91b5a add comments about what to do next Mindy 2019-05-22 10:56:01 -0500
• aca6ac84d8 WIP. linse 2019-05-18 01:29:50 +0200
• 41126c9a6b Handle the exception to check if it was thrown when expected. linse 2019-05-17 23:58:51 +0200
• 09139518fb Rename to test.sh, break if build fails. linse 2019-05-17 23:17:04 +0200
• 1599f63838 Initial test setup. :) linse 2019-05-17 01:35:11 +0200
• 47e3c6c64c Add test directory and setup instructions in setup.sh linse 2019-05-17 00:48:04 +0200
• c55819ffdf
  Merge pull request #64 from talex5/combine-ips yomimono 2019-05-16 18:03:59 -0400
• 3ac145c1ff add some docstrings for host type options Mindy 2019-05-16 17:48:26 -0400
• 45ffee89e1 fix merge mistake :) Mindy 2019-05-16 17:48:17 -0400
• 0d54f80b6b try to make the packet type difference a bit clearer Mindy 2019-05-16 17:44:58 -0400
• ad48a0f78a remove commented out thing Mindy 2019-05-16 17:24:19 -0400
• f2c309c923 packet.mli yay Mindy 2019-05-16 17:23:38 -0400
• 1fb1d35170 it builds yey Mindy 2019-05-16 17:23:19 -0400
• 1e7d894cf9 wip moremake Mindy 2019-05-16 17:06:25 -0400
• 199bc32516 Merge branch 'static-pf-rules' of github.com:yomimono/qubes-mirage-firewall into static-pf-rules Mindy 2019-05-16 15:56:35 -0400
• 6464d9b05e WIP linse 2019-05-16 21:53:54 +0200
• 1e7adb4a72 begin changing the info type to something we find more comprehensible Mindy 2019-02-27 04:43:22 -0600
• 672c82c43c Combine Client_gateway and Firewall_uplink Thomas Leonard 2019-05-16 19:18:31 +0100
• 5119a22ca4 Make a dummy rule that drops all traffic. linse 2019-05-15 00:02:15 +0200
• a7ddc548f3 build against pf with qubes-ready rule definitions Mindy 2019-05-14 16:05:34 -0400