[Swan-commit] Changes to ref refs/heads/fragmentation

Paul Wouters paul at vault.libreswan.fi
Tue Feb 5 17:41:29 EET 2013 

New commits:
commit 0042cc156e14712fa0da00d8ee716357765ee22e
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Feb 5 10:39:03 2013 -0500

    * send_frags can be static, fill in a little more of packet format.

commit 976ef3b1ee9430a107509a0a4f42f02596d1aa53
Merge: 3eeb304 f0dce92
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Feb 5 10:31:10 2013 -0500

    Merge branch 'fragmentation' of vault.libreswan.fi:/srv/src/libreswan into fragmentation

commit 3eeb3047634c586c8ca69e46c7676dc6382c679f
Author: Paul Wouters <pwouters at redhat.com>
Date:   Mon Feb 4 22:44:05 2013 -0500

    * mtustr was capped at 8 chars, not 16
    
    As the compiler wisely told us:
    
    In function ‘snprintf’,
        inlined from ‘show_one_connection’ at /source/programs/pluto/connections.c:3458:10:
    /usr/include/bits/stdio2.h:65:3: warning: call to __builtin___snprintf_chk will always overflow destination buffer [enabled by default]
    
    This cannot be exploited other than by whomever can edit the local ipsec
    config, at which point you can already set leftupdown=/some/script that
    runs as root. Still, not good :/

commit 7cf0ba6ab21d858145de298490bc298f78464767
Merge: e65eafa 8cae519
Author: Paul Wouters <pwouters at redhat.com>
Date:   Mon Feb 4 20:21:28 2013 -0500

    Merge branch 'master' into fragmentation

commit 8cae51971c52925384f93c9a56b4ad765573b377
Author: Antony Antony <antony at phenome.org>
Date:   Tue Feb 5 02:44:49 2013 +0200

    *testing : basic-pluto-11 good output

commit 9fa23bcf910d2f4a6f5464bccd243713099b03bc
Author: Antony Antony <antony at phenome.org>
Date:   Tue Feb 5 02:38:38 2013 +0200

    *testing basic-pluto-01 fixes. need a bit more sanitizing. an output for reference

commit fb5d299c8eb1f0fac60477c6b0094a9ee6882c00
Author: Antony Antony <antony at phenome.org>
Date:   Tue Feb 5 02:34:32 2013 +0200

    *testing : use san-build and isntall

commit 7d5904abf3027db6af0924c0257e77a17f88d1de
Author: Antony Antony <antony at phenome.org>
Date:   Tue Feb 5 02:13:51 2013 +0200

    *testing : xauth-pluto-12 final.sh add shutdown

commit 63d97568110a4acfb6c5eb1e735f7bec87606b43
Author: Antony Antony <antony at phenome.org>
Date:   Tue Feb 5 02:12:17 2013 +0200

    *testing : fix auth-pluto-12 (almost, modecfg works. However, i see packet loss 1 packet?
    	   host-ping-sanitize.sed allow variable packets in and out

commit e244e7df64ed8b73ab43762ea2b2d1c2da9547aa
Author: root <pwouters at redhat.com>
Date:   Mon Feb 4 13:19:22 2013 -0500

    * updated changes

commit 361a04404523ce632018b359e04db0aef304e017
Author: root <pwouters at redhat.com>
Date:   Mon Feb 4 13:17:52 2013 -0500

    * starter: auto=route and auto=start only performed auto=add [Wolfgang]
    
    We only loaded the connections, we did not route or initiate these.
    This was previously done by the shell script _plutoload, which was
    obsoleted in libreswan 3.0

More information about the Swan-commit mailing list