[Swan-commit] Changes to ref refs/heads/master
Paul Wouters
paul at vault.libreswan.fi
Thu Oct 8 01:34:39 UTC 2015
New commits:
commit 115aa65990bc1a943085e6be515042d31574c81a
Merge: c845389 7962622
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Oct 7 21:34:02 2015 -0400
Merge branch 'master' into lbz216_new
commit c845389652f36c68ace81382734a5c69c27fbbf9
Merge: 1639584 47a6d47
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Oct 7 21:28:14 2015 -0400
Merge branch 'lbz216_new' of vault.libreswan.fi:/srv/src/libreswan into lbz216_new
commit 47a6d4708d1a15a2d8787f13b604f01fa21dd858
Author: Matt Rogers <mrogers at redhat.com>
Date: Wed Oct 7 16:54:49 2015 -0400
pluto: add on-demand loading of NSS certificate private keys
Cert private keys are loaded during the connection add. If the
private key is forgotten afterwards (ie. during auto=start),
load it again when searching for the secrets entry, based on
the existing certificate data.
commit 16395842c38959f56a99ad946bf8deca4112b3e3
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Sep 23 12:25:35 2015 -0400
libsecret: clarify erorr msg
commit 4cc1e2868f5949a89dab700d856d07e4bf70ef0a
Merge: 32dbde8 9bdd003
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Sep 23 11:51:58 2015 -0400
Merge branch 'master' into lbz216_new
commit 32dbde81ba5c86c722726ace215d1cc5a5f943e6
Author: Matt Rogers <mrogers at redhat.com>
Date: Wed Sep 2 17:45:34 2015 -0400
testing: Add nss-cert-nosecret
commit 6dc7d94a0eae9118d277df6b782dd6ed5a4bd24c
Author: Matt Rogers <mrogers at redhat.com>
Date: Wed Sep 2 16:38:40 2015 -0400
libswan/pluto: Deprecate RSA secrets file entries for NSS certificates
- Private keys are now added on connection load if available for the
certificate specified in leftcert= and rightcert=
commit f7bf33caa791ae40632f93398e4663460df61d96
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Aug 31 12:46:14 2015 -0400
updated changes
commit 0c0f394f557133e9a4b97edc09e64364f3e7df0a
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Aug 31 12:29:49 2015 -0400
newhostkey: fix bogus /dev/seeddev back to /dev/random
commit 64d84bb5c2704469d9b9042e0b5a2e00ddae67eb
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Mon Aug 31 11:56:15 2015 -0400
parser.y: inline trivial function "alloc_comment"
commit e4907eccfae006d56f860160d31f75fce68bfea8
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Mon Aug 31 11:39:17 2015 -0400
ipsecconf: tidy parser.y
- eliminate unused component "decimal" of struct kw_list
- replace a lot of boilerplate with calls to new function "new_parser_kw"
- use bool in place of int where appropriate
- recast tests so they use boolean-valued expressions
- use initializing declarations where this improves readability
- reduce scopes of variables where possible
- replace "strncmp(file, "-", sizeof("-")) == 0" with "streq(file, "-")"
How does the first get invented?
- improve formatting
commit 1992c4c701821236e4b911fc4bba15dc44065411
Author: Antony Antony <antony at phenome.org>
Date: Mon Aug 31 12:37:53 2015 +0200
pam: improve comments and log message 0eef5f3c
commit 3f14d347d8218fb5ff00c796948f96f8bfac03b3
Author: Antony Antony <antony at phenome.org>
Date: Mon Aug 31 11:57:58 2015 +0200
pluto: fix ikev1 xauth pam, a bug introduced in f8e3ba3f2
consolidate ikev1 and ikev2 do_pam_authentication to one function.
log elapsed time for PAM.
improve debug messages in do_pam_authentication to track multiple clients.
commit a2af1d85c48f46b232eed5003797e54f009a7108
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Mon Aug 31 02:00:42 2015 -0400
sarefnc: fix typo in comment
commit 9162b54f8a7526e67fa77fe5f32e927bff4e69a8
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sun Aug 30 23:40:12 2015 -0400
parser.y: rename C variables to eliminate leading underscores
commit 9b9ec15a28a0de622805a78aceaa875ef589adc9
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 30 23:35:08 2015 -0400
remove testing/pluto/xauth-pluto-20-pam/mypam.o
commit 3bb9026c34e42d7f3f84b15a1c6eb95a69ee711f
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 30 23:34:22 2015 -0400
.gitignore: don't add .o files
commit 426b2db584d552a397ddd78afa1d67c878916d31
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 30 19:01:41 2015 -0400
updated TESTLIST
commit 448f72b82402ac787d1b2b89b4c072847af97f0a
Author: Paul Wouters <pwouters at redhat.com>
Date: Sun Aug 30 19:00:21 2015 -0400
testing: added xauth-pluto-20-pam
commit f9cdf1bde439970dbe34a45927bad0e4f527be74
Author: Antony Antony <antony at phenome.org>
Date: Sun Aug 30 22:03:26 2015 +0200
testing: swantest print runtime in hh:mm:ss than seconds
commit d88c3d19af8e124dd67b4276eaf46cf2b32c36cc
Author: Antony Antony <antony at phenome.org>
Date: Sun Aug 30 09:01:57 2015 +0200
testing: swantest was blowing up reading wrong file
commit 2a6f1b5e987d72486b1b7eaef5f28807a48802fb
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sun Aug 30 00:59:36 2015 -0400
libipsecconf: allow time with no unit suffix; detect more overflows
- be more careful with the result of strtoul:
- check errno (signifying overflow)
- before sticking the result in an unsigned int, check that it fits
- introduce the new non-terminal "duration" to the grammar. This
accepts a string (an integer with a unit suffix) or an integer
(presumed to be seconds). Times are now expressed as durations.
Odd fact: this seems to be the only non-terminal that
creates a synthetic attribute (i.e. sets $$).
- tidy some of the code in parser.y
commit ecb64c0d89f1a1082bba8c4fb8d8cef94760cc70
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sat Aug 29 20:30:08 2015 -0400
lib/libispecconf: refix fix for GCC vs flex and avoid make leaving broken residue
refine 82669d6052ef6d8394014044ae1dddb51ad64eb5
and db20372661dc89a672e1490562bf003b9aa5cf93
The previous commits left RHEL 6 with a warning on 32-bit hardware.
Fixed now.
Our recipes for flex and bison could leave broken files if the recipe
failed. This would cause subsequent makes to not replace the broken
file. Fixed by using different names for the intermediate files.
commit 2042b16e9201408b5a7e1213dec1a76404596075
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sat Aug 29 10:50:52 2015 -0400
libipsecconf/confwrite.c: don't put trailing space on "#also =" output
commit 900e4554fd72b8e0946055fb8b9b09176c471376
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Fri Aug 28 23:29:40 2015 -0400
testing/scripts: host might not be i386 so use $(arch) instead
commit e039812ef5e3a9a970026421d93b0d8108352403
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Fri Aug 28 22:25:31 2015 -0400
lib/libipsecconf/parser.y: use tabs where possible for each line's initial whitespace
commit 6ceecabaa20d15e45ae84f3b469a931d72bd0331
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sat Aug 29 13:49:03 2015 -0400
tidy addconn.c
- be a little more careful noticing errors
- improve comments describing hack to calls to NLMSG_OK
- add comment to definition of RTNL_BUFSIZE explaining
that it must be no larger than USHRT_MAX because of our
hack to fix calls to NLMSG_OK
- exploit initializing declarations to simplify the code
commit 9c6af78181de29f86aa8deda8b43b26736c4b4e6
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sat Aug 29 13:48:02 2015 -0400
pluto: make line in connections.c clearer by breaking it
commit 6e6bd87ffd781fc800d8d84b11f1dc0697d9f5b4
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Sat Aug 29 13:46:15 2015 -0400
confread: add const attribute to ctlbase argument of confread_load
commit 1a4707eb7f3ca2b5cdf47a277e83bd188b475356
Author: Antony Antony <antony at phenome.org>
Date: Sat Aug 29 13:26:12 2015 +0200
testing: use tab instead of whitespace
commit e43dd85b6187d3bcb8869d9b815873f9e65be6ce
Author: Antony Antony <antony at phenome.org>
Date: Sat Aug 29 13:23:58 2015 +0200
testing: update ikev2-37-docker-rw
commit d8cf2686a890cec47946fc1c6507522cf7be742b
Author: Antony Antony <antony at phenome.org>
Date: Sat Aug 29 13:16:03 2015 +0200
testing: sanitize kernel: line sha256_ssse3: Using AVX2 optimized SHA-256
sha512_ssse3: Using AVX2 optimized SHA
update fedorabase.ks Fedora 22
swan-transmogrify use hostname inside docker
swan-prep rm /etc/resolv.conf before copying. It could be link in F22
swantest improvements for docker, use eth0. ethx should matc with kvm
commit db20372661dc89a672e1490562bf003b9aa5cf93
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Fri Aug 28 18:32:14 2015 -0400
Refine 82669d6052ef6d8394014044ae1dddb51ad64eb5
- add comments describing purpose of the hack
- avoid pipeline so that failure of flex will become a recipe failure,
as it should
commit 82669d6052ef6d8394014044ae1dddb51ad64eb5
Author: Paul Wouters <pwouters at redhat.com>
Date: Fri Aug 28 14:33:44 2015 -0400
pluto: fixup for flex.yy.c unsigned/signed warning on RHEL7 (with Hugh)
commit 8a4509a4b1f14e9a71fcd4aaaf0b0e9935f92e53
Author: Paul Wouters <pwouters at redhat.com>
Date: Thu Aug 27 23:30:43 2015 -0400
documentation. Remove auth.xml, add keyexchange.xml
commit e8544efb11ed945a7c908b3ca8d1c22cd25e88a9
Author: Antony Antony <antony at phenome.org>
Date: Wed Aug 26 18:25:41 2015 +0200
testing: add ikev1-initial-contact wip
commit 5cddc2b28104ad722a2be863c7020a30010609d7
Author: Antony Antony <antony at phenome.org>
Date: Tue Aug 25 17:41:40 2015 +0200
pluto get_sa_info call outbytes first
commit e65432d1ffb26f6bea4fa96da951937b5b7881f9
Merge: 2056d18 2933f97
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 13:16:42 2015 -0400
Merge branch 'master' of vault.libreswan.org:/srv/src/libreswan
commit 2056d18e1d9c14c42f2ae3b7d1507cd92ef929a5
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 13:16:31 2015 -0400
Revert "RELEASE: bump version to 3.15"
This reverts commit 45a396519da4bfccb5b3e8af2beb79fde0e39027.
commit 200a0fc45a595e4053313dae114f4baf4d42a480
Merge: cab7ad1 45a3965
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 13:15:00 2015 -0400
Merge branch 'release-v3.15'
commit 2933f9717e9d034075b831709e7d7cdd8b881bde
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 13:07:49 2015 -0400
updates TESTLIST
commit 6afd94dc9910b45aa222281cc69d152a79b2302a
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 13:06:55 2015 -0400
testing: newoe-19-poc-poc-clear to test with 0.0.0.0/0 in clear
commit 4f88d1a37999d70d9be9e0bfafbef9f0d96e63a5
Merge: bd71bed cab7ad1
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 12:40:22 2015 -0400
Merge branch 'master' of vault.libreswan.org:/srv/src/libreswan
commit cab7ad123e8a233be11c1d887d6f032c4f585ed2
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 00:36:07 2015 -0400
testing: various minor test updates
commit 49fd1a0531b5b1c8d2b7d621a1c594f064ed4ab8
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Aug 25 00:35:27 2015 -0400
updated changes for release date
commit bd71beda75d12c26f07e634fcf09a0ec2fd4b269
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date: Mon Aug 24 14:55:13 2015 -0400
pluto: simplify justship_KE() impairment
More information about the Swan-commit
mailing list