[Swan-commit] Changes to ref refs/heads/libevent
Antony Antony
antony at vault.libreswan.fi
Wed Jan 28 04:45:19 EET 2015
New commits:
commit 339ca17be57ab11a21b15343efc7e5f87619818d
Author: Antony Antony <antony at phenome.org>
Date: Tue Jan 27 20:44:17 2015 -0600
debug log time spend in connection_check_ddns
remove fist attempt of deltamilli seconds.
commit 1088f62b4cf332fde19bbb6a7cb39d9d6aef2e90
Merge: e698bb6 51b1170
Author: Antony Antony <antony at phenome.org>
Date: Tue Jan 27 19:25:54 2015 -0600
Merge branch 'master' into libevent
commit 51b11707570041077bed0ddebd9b8e27c13ae698
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 27 20:07:31 2015 -0500
testing: added ikev2-ddns-02 which uses a DNS server
renamed ikev2-38-ddns to ikev2-ddns-01
commit 68b18b8c1f7cc05b02b32797cbc4f9d74186a2f9
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 27 19:59:33 2015 -0500
testing: swan-prep also restore resolv.conf
commit b5bec1a1aacb5de5e9f28779f400e3e7391a5979
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 27 17:58:11 2015 -0500
testing: added ikev2-38-ddns
This shows what the EVENT_DDNS is supposed to do (although it
is better redesigned from scratch I think)
commit 9e6a4ef938b32acd7a5b4172330d6cc37e9985e1
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 27 17:13:44 2015 -0500
testing: swan-prep should restore /etc/hosts to original
some tests modify /etc/hosts, so ensure we start fresh
commit e698bb68a89d78d3bbd88b66aca9043b1b12952a
Author: Antony Antony <antony at phenome.org>
Date: Tue Jan 27 15:48:11 2015 -0600
remove unused functions
commit 2c98d8f1f2bfba4ecdac79e520c0e29a69e0e28b
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Jan 27 15:23:02 2015 -0500
testing: ikev2-05-basic-psk-oneconf fix duplicate authby= entry
commit 68509f4a721947a0ca8a602aee62199d8ca640f9
Author: Antony Antony <antony at phenome.org>
Date: Tue Jan 27 10:56:51 2015 -0600
remove unused main_loop
commit 27bb6702cc810bdb5ff29a3a704d09e495516b7e
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Jan 26 01:32:26 2015 -0500
testing: added ikev1-2behind-nat-01
commit 3d53451282f4095802c11f030d135dedc844a71b
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Jan 26 01:19:53 2015 -0500
testing: Added ikev2-10-2behind-nat
This shows the problem of two clients behind the same NAT with X.509
using a killall -9 pluto on road where road then connects a 2nd
time using the north credentials.
Error for the second client is:
"road-eastnet-ikev2"[1] 192.1.2.254 #3: Signature check (on C=ca, ST=Ontario, O=Libreswan, OU=Test Department, CN=road.testing.libreswan.org, E=testing at libreswan.org) failed (wrong key?); tried *AwEAAdrh2
"road-eastnet-ikev2"[1] 192.1.2.254 #3: RSA authentication failed
commit 1e25773b8320f4729f0280bb51d683c45b519242
Author: Andrew Cagney <andrew.cagney at gmail.com>
Date: Tue Jan 20 13:59:04 2015 -0500
building: make autoconf style make variables, like abs_top_srcdir, available
The list is:
srcdir
builddir
abs_srcdir
abs_builddir
top_srcdir
top_builddir
abs_top_srcdir
abs_top_builddir
They are only defined in the build tree (under $(OBJDIR)).
(The source tree requires further incremental updates).
commit 0b294ce7c34b0c6b9e3365c9faf0d6050d1fa3fb
Author: Andrew Cagney <andrew.cagney at gmail.com>
Date: Fri Jan 16 19:51:37 2015 -0500
building: rename the make variable "srcdir" to "SRCDIR".
And try to be consistent about its trailing /. This makes room for
an autoconf style relative srcdir which does not contain a trailing /
commit 5a4b98c2ce6d9c56136cde16888fba581edfa357
Author: Andrew Cagney <andrew.cagney at gmail.com>
Date: Thu Jan 15 16:07:02 2015 -0500
building: unconditionally assume OBJDIR is being used (delete USE_OBJDIR)
commit 930185b0b83b97b9665b10544056edc29e6c01d4
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 18:40:48 2015 -0500
GCM gcm test vectors were left out of merge commit
commit 4f20f86157407dba78ea4ac86d30f398ae763831
Author: Andrew Cagney <andrew.cagney at gmail.com>
Date: Sun Jan 25 14:45:10 2015 -0500
IKEv2: Support for AES_GCM
commit c860828d7d429adb55363c8a4aaac6cff2f47692
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 14:43:59 2015 -0500
testing: fixup algo reference output for GCM addition
commit e600cf926b8743ad8e457ddd9ffa9e9ce0f7e8e0
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 14:42:59 2015 -0500
testing: narrowing test simplification
Remove full status output. allow for new retransmit message
commit 5e350effb30969c2ad28f40a85df61a99af43dff
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 14:38:04 2015 -0500
testing: netkey-audit-01 now also displays prf= in audit log
commit 112a1edcb16a514dcc2f2548adb8a43563cff72f
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 14:20:52 2015 -0500
testing: dpd-01: removal of 169 routes in reference output
commit c5c5cb1af82cb2a1e86fe2d00ac7cc562040e5d4
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Jan 25 14:14:14 2015 -0500
testing: aggr-pluto-03 cleared referenec output copied from other test
This test uses aggressive mode, and is failing
commit 447a9fd3fabc04c57204b3cdcb9d3f6899c13c69
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:49:09 2015 -0500
testing: fixup gcm for netkey-pluto-0[12]
commit a73ef0b38979f9af8098cdb67d96f43ae6b115ae
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:47:29 2015 -0500
testing: ipv6-transport-ts-mode-04-netkey-netkey fix nc command.
The tcpdump still shows this test is not using ESP but still sends
plaintext?
commit 4f72444dc2564bac5b96f8386f31c8951279fede
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:39:41 2015 -0500
testing: fixup nat-pluto-09 - passes
commit a160f2aeeb08cc232036e842828d3d6754b1775b
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:36:38 2015 -0500
testing: fixes to basic-pluto-12-netkey but unsure it is passing now
it seems improved compared to the comments in description.txt but
I'm confused the tcpdump capture does not show the port 22 attempt
in either clear or encrypted
commit c38da9f5180b9c0da736ade8c5a3dcadbec628c7
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:33:11 2015 -0500
testing: interop-ikev2-racoon-02-psk-responder sanitizer fixup
commit 4d937182113f947394dd544c5ee361465b3c0fce
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:32:42 2015 -0500
testing: racoon sanitizer needs to mask ephemeral hex blob
commit 663c86f8f3097797ba542c04352ab6a0e93d5d87
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:26:57 2015 -0500
testing: dnssec-pluto-01 updated for GCM
commit f289a16081b39bd8d4cfca5183f8542013ee5fff
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:26:09 2015 -0500
testing: replay-authip-01 updated for GCM
commit 9c63ddbf5ae376b9effc0bfc9fccc63e69b18fd9
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:22:07 2015 -0500
testing: fixup and clarified basic-pluto-12.
The test has an obscure routing isue but it _is_ correct.
(the exclusion of a port causes it to miss the ipsec tunnel and
therefor turns out to miss the only route to the remote network
that goes via ipsec.
commit 3ce626c526a296b94f93007e276cdf4aff36ed17
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 15:03:06 2015 -0500
testing: clarified and cleaned up basic-pluto-14-klips-route
The packet leak should NOT happen. This is a bug. an auto=route
connection should place a shunt in and so packets should never
leak during negotiation!
commit 644e56636ff506f8e3604d32a174524bf62ffa1a
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:57:07 2015 -0500
testing: mark algo-pluto-04 as wip - it shows a bug that needs fixing
commit 77764c5b007e9682fb244b5065f436acc0369def
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:53:53 2015 -0500
testing: removed ah-pluto-06 and ah-pluto-07
also tested algos the linux kernel does not support
commit 03c3c7f8fa8c90c71db59f0dffccc311221c3000
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:53:03 2015 -0500
testing: removed ah-pluto-08 - it tests an unsupported kernel algo
commit 554f271b4c6a45772116caf074f7ec7899652dd2
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:51:24 2015 -0500
testing: mark loopback tests WIP while pending redoing/ripping it out
commit e383244d54eebce694d105ad6b7adc0213873bd6
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:50:42 2015 -0500
testing: fixup ipv6-tunnel-mode-04-rw
commit fb49f1bc017a8b9e9b183e0fea4ea63f3e711fa3
Author: Paul Wouters <pwouters at redhat.com>
Date: Sat Jan 24 14:38:12 2015 -0500
testing: some cleanup of ipv6-tunnel-mode-03-rw
test still fails - using link local instead of the v6 IPs of the
tunnel, so no ESP packets observed in tcpdump and ICMP6 hitting
firewall rule. Marked test as WIP
commit 7e5af2658cbf7dfe6187a42865afd3e220f41ddc
Author: Paul Wouters <pwouters at redhat.com>
Date: Fri Jan 23 21:47:24 2015 -0500
testing: added v6.sed sanitizer
The firewall logs with ephemeral ID= entries :/
commit 11085c5c093c725b401ff673239c5a97209c5ff9
Author: Paul Wouters <pwouters at redhat.com>
Date: Fri Jan 23 21:47:05 2015 -0500
testing: fixup ikev2-ipv6-transport-mode-02-netkey-netkey
commit 14fa5fb30b1c29968534c5be3d8eb7e36306a828
Author: Paul Wouters <pwouters at redhat.com>
Date: Fri Jan 23 20:58:53 2015 -0500
testing: some fixes to interop-ikev2-racoon-04-x509-responder
(still failing)
commit 8d4617377f1e37a0987835750b2b79ada8592c00
Author: Paul Wouters <pwouters at redhat.com>
Date: Fri Jan 23 16:38:08 2015 -0500
testing: mark interop-ikev2-strongswan-18-psk-cast as good
commit 132735e157763dfecc72e2610954264ac6ac4bb9
Merge: ea8efd3 27bb670
Author: Antony Antony <antony at phenome.org>
Date: Thu Jan 22 18:53:12 2015 -0600
Merge branch 'master' into libevent
commit 02d7c439cf896d2903968b18516d1f4504076404
Merge: f9b0176 1e23461
Author: Paul Wouters <pwouters at redhat.com>
Date: Thu Jan 22 14:24:57 2015 -0500
Merge branch 'master' of ssh://vault.foobar.fi/srv/src/libreswan
commit 1e2346106af28b4cfed57fa7760e430691385112
Author: Andrew Cagney <andrew.cagney at gmail.com>
Date: Wed Jan 21 20:29:56 2015 -0500
pluto: Don't include/print a # in test vector descriptions.
Actually don't include any number. Not relevant.
Convention is for #N to denote a state.
commit a8de85564b4030e496a400ca276af9a7158cd69d
Author: Antony Antony <antony at phenome.org>
Date: Wed Jan 21 04:02:36 2015 -0600
pluto: use PRIu64 for st->st_esp.add_time
commit f9b0176e0155f777d0ed917ec603c9b085fb5423
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Jan 12 21:45:03 2015 -0500
testing: update racoon2 PSK to match the new preshared key. Remove eastrun.sh files
More information about the Swan-commit
mailing list