[Swan-commit] Changes to ref refs/heads/master

Paul Wouters paul at vault.libreswan.fi
Thu Oct 8 01:34:39 UTC 2015


New commits:
commit 115aa65990bc1a943085e6be515042d31574c81a
Merge: c845389 7962622
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Oct 7 21:34:02 2015 -0400

    Merge branch 'master' into lbz216_new

commit c845389652f36c68ace81382734a5c69c27fbbf9
Merge: 1639584 47a6d47
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Oct 7 21:28:14 2015 -0400

    Merge branch 'lbz216_new' of vault.libreswan.fi:/srv/src/libreswan into lbz216_new

commit 47a6d4708d1a15a2d8787f13b604f01fa21dd858
Author: Matt Rogers <mrogers at redhat.com>
Date:   Wed Oct 7 16:54:49 2015 -0400

    pluto: add on-demand loading of NSS certificate private keys
    
    Cert private keys are loaded during the connection add. If the
    private key is forgotten afterwards (ie. during auto=start),
    load it again when searching for the secrets entry, based on
    the existing certificate data.

commit 16395842c38959f56a99ad946bf8deca4112b3e3
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Sep 23 12:25:35 2015 -0400

    libsecret: clarify erorr msg

commit 4cc1e2868f5949a89dab700d856d07e4bf70ef0a
Merge: 32dbde8 9bdd003
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Sep 23 11:51:58 2015 -0400

    Merge branch 'master' into lbz216_new

commit 32dbde81ba5c86c722726ace215d1cc5a5f943e6
Author: Matt Rogers <mrogers at redhat.com>
Date:   Wed Sep 2 17:45:34 2015 -0400

    testing: Add nss-cert-nosecret

commit 6dc7d94a0eae9118d277df6b782dd6ed5a4bd24c
Author: Matt Rogers <mrogers at redhat.com>
Date:   Wed Sep 2 16:38:40 2015 -0400

    libswan/pluto: Deprecate RSA secrets file entries for NSS certificates
    
    - Private keys are now added on connection load if available for the
      certificate specified in leftcert= and rightcert=

commit f7bf33caa791ae40632f93398e4663460df61d96
Author: Paul Wouters <pwouters at redhat.com>
Date:   Mon Aug 31 12:46:14 2015 -0400

    updated changes

commit 0c0f394f557133e9a4b97edc09e64364f3e7df0a
Author: Paul Wouters <pwouters at redhat.com>
Date:   Mon Aug 31 12:29:49 2015 -0400

    newhostkey: fix bogus /dev/seeddev back to /dev/random

commit 64d84bb5c2704469d9b9042e0b5a2e00ddae67eb
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Mon Aug 31 11:56:15 2015 -0400

    parser.y: inline trivial function "alloc_comment"

commit e4907eccfae006d56f860160d31f75fce68bfea8
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Mon Aug 31 11:39:17 2015 -0400

    ipsecconf: tidy parser.y
    
    - eliminate unused component "decimal" of struct kw_list
    
    - replace a lot of boilerplate with calls to new function "new_parser_kw"
    
    - use bool in place of int where appropriate
    
    - recast tests so they use boolean-valued expressions
    
    - use initializing declarations where this improves readability
    
    - reduce scopes of variables where possible
    
    - replace "strncmp(file, "-", sizeof("-")) == 0" with "streq(file, "-")"
      How does the first get invented?
    
    - improve formatting

commit 1992c4c701821236e4b911fc4bba15dc44065411
Author: Antony Antony <antony at phenome.org>
Date:   Mon Aug 31 12:37:53 2015 +0200

    pam: improve comments and log message 0eef5f3c

commit 3f14d347d8218fb5ff00c796948f96f8bfac03b3
Author: Antony Antony <antony at phenome.org>
Date:   Mon Aug 31 11:57:58 2015 +0200

    pluto: fix ikev1 xauth pam, a bug introduced in f8e3ba3f2
    consolidate ikev1 and ikev2 do_pam_authentication to one function.
    log elapsed time for PAM.
    improve debug messages in do_pam_authentication to track multiple clients.

commit a2af1d85c48f46b232eed5003797e54f009a7108
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Mon Aug 31 02:00:42 2015 -0400

    sarefnc: fix typo in comment

commit 9162b54f8a7526e67fa77fe5f32e927bff4e69a8
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sun Aug 30 23:40:12 2015 -0400

    parser.y: rename C variables to eliminate leading underscores

commit 9b9ec15a28a0de622805a78aceaa875ef589adc9
Author: Paul Wouters <pwouters at redhat.com>
Date:   Sun Aug 30 23:35:08 2015 -0400

    remove testing/pluto/xauth-pluto-20-pam/mypam.o

commit 3bb9026c34e42d7f3f84b15a1c6eb95a69ee711f
Author: Paul Wouters <pwouters at redhat.com>
Date:   Sun Aug 30 23:34:22 2015 -0400

    .gitignore: don't add .o files

commit 426b2db584d552a397ddd78afa1d67c878916d31
Author: Paul Wouters <pwouters at redhat.com>
Date:   Sun Aug 30 19:01:41 2015 -0400

    updated TESTLIST

commit 448f72b82402ac787d1b2b89b4c072847af97f0a
Author: Paul Wouters <pwouters at redhat.com>
Date:   Sun Aug 30 19:00:21 2015 -0400

    testing: added xauth-pluto-20-pam

commit f9cdf1bde439970dbe34a45927bad0e4f527be74
Author: Antony Antony <antony at phenome.org>
Date:   Sun Aug 30 22:03:26 2015 +0200

    testing: swantest print runtime in hh:mm:ss than seconds

commit d88c3d19af8e124dd67b4276eaf46cf2b32c36cc
Author: Antony Antony <antony at phenome.org>
Date:   Sun Aug 30 09:01:57 2015 +0200

    testing:  swantest was blowing up reading wrong file

commit 2a6f1b5e987d72486b1b7eaef5f28807a48802fb
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sun Aug 30 00:59:36 2015 -0400

    libipsecconf: allow time with no unit suffix; detect more overflows
    
    - be more careful with the result of strtoul:
      - check errno (signifying overflow)
      - before sticking the result in an unsigned int, check that it fits
    
    - introduce the new non-terminal "duration" to the grammar.  This
      accepts a string (an integer with a unit suffix) or an integer
      (presumed to be seconds).  Times are now expressed as durations.
      Odd fact: this seems to be the only non-terminal that
      creates a synthetic attribute (i.e. sets $$).
    
    - tidy some of the code in parser.y

commit ecb64c0d89f1a1082bba8c4fb8d8cef94760cc70
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sat Aug 29 20:30:08 2015 -0400

    lib/libispecconf: refix fix for GCC vs flex and avoid make leaving broken residue
    
    refine 82669d6052ef6d8394014044ae1dddb51ad64eb5
    and db20372661dc89a672e1490562bf003b9aa5cf93
    
    The previous commits left RHEL 6 with a warning on 32-bit hardware.
    Fixed now.
    
    Our recipes for flex and bison could leave broken files if the recipe
    failed.  This would cause subsequent makes to not replace the broken
    file.  Fixed by using different names for the intermediate files.

commit 2042b16e9201408b5a7e1213dec1a76404596075
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sat Aug 29 10:50:52 2015 -0400

    libipsecconf/confwrite.c: don't put trailing space on "#also =" output

commit 900e4554fd72b8e0946055fb8b9b09176c471376
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Fri Aug 28 23:29:40 2015 -0400

    testing/scripts: host might not be i386 so use $(arch) instead

commit e039812ef5e3a9a970026421d93b0d8108352403
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Fri Aug 28 22:25:31 2015 -0400

    lib/libipsecconf/parser.y: use tabs where possible for each line's initial whitespace

commit 6ceecabaa20d15e45ae84f3b469a931d72bd0331
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sat Aug 29 13:49:03 2015 -0400

    tidy addconn.c
    
    - be a little more careful noticing errors
    
    - improve comments describing hack to calls to NLMSG_OK
    
    - add comment to definition of RTNL_BUFSIZE explaining
      that it must be no larger than USHRT_MAX because of our
      hack to fix calls to NLMSG_OK
    
    - exploit initializing declarations to simplify the code

commit 9c6af78181de29f86aa8deda8b43b26736c4b4e6
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sat Aug 29 13:48:02 2015 -0400

    pluto: make line in connections.c clearer by breaking it

commit 6e6bd87ffd781fc800d8d84b11f1dc0697d9f5b4
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Sat Aug 29 13:46:15 2015 -0400

    confread: add const attribute to ctlbase argument of confread_load

commit 1a4707eb7f3ca2b5cdf47a277e83bd188b475356
Author: Antony Antony <antony at phenome.org>
Date:   Sat Aug 29 13:26:12 2015 +0200

    testing: use tab instead of whitespace

commit e43dd85b6187d3bcb8869d9b815873f9e65be6ce
Author: Antony Antony <antony at phenome.org>
Date:   Sat Aug 29 13:23:58 2015 +0200

    testing:  update ikev2-37-docker-rw

commit d8cf2686a890cec47946fc1c6507522cf7be742b
Author: Antony Antony <antony at phenome.org>
Date:   Sat Aug 29 13:16:03 2015 +0200

    testing: sanitize kernel: line sha256_ssse3: Using AVX2 optimized SHA-256
    sha512_ssse3: Using AVX2 optimized SHA
    update fedorabase.ks Fedora 22
    swan-transmogrify use hostname inside docker
    swan-prep rm /etc/resolv.conf before copying. It could  be link in F22
    swantest improvements for docker, use eth0. ethx should matc with kvm

commit db20372661dc89a672e1490562bf003b9aa5cf93
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Fri Aug 28 18:32:14 2015 -0400

    Refine 82669d6052ef6d8394014044ae1dddb51ad64eb5
    
    - add comments describing purpose of the hack
    
    - avoid pipeline so that failure of flex will become a recipe failure,
      as it should

commit 82669d6052ef6d8394014044ae1dddb51ad64eb5
Author: Paul Wouters <pwouters at redhat.com>
Date:   Fri Aug 28 14:33:44 2015 -0400

    pluto: fixup for flex.yy.c unsigned/signed warning on RHEL7 (with Hugh)

commit 8a4509a4b1f14e9a71fcd4aaaf0b0e9935f92e53
Author: Paul Wouters <pwouters at redhat.com>
Date:   Thu Aug 27 23:30:43 2015 -0400

    documentation. Remove auth.xml, add keyexchange.xml

commit e8544efb11ed945a7c908b3ca8d1c22cd25e88a9
Author: Antony Antony <antony at phenome.org>
Date:   Wed Aug 26 18:25:41 2015 +0200

    testing: add ikev1-initial-contact wip

commit 5cddc2b28104ad722a2be863c7020a30010609d7
Author: Antony Antony <antony at phenome.org>
Date:   Tue Aug 25 17:41:40 2015 +0200

    pluto get_sa_info call outbytes first

commit e65432d1ffb26f6bea4fa96da951937b5b7881f9
Merge: 2056d18 2933f97
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 13:16:42 2015 -0400

    Merge branch 'master' of vault.libreswan.org:/srv/src/libreswan

commit 2056d18e1d9c14c42f2ae3b7d1507cd92ef929a5
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 13:16:31 2015 -0400

    Revert "RELEASE: bump version to 3.15"
    
    This reverts commit 45a396519da4bfccb5b3e8af2beb79fde0e39027.

commit 200a0fc45a595e4053313dae114f4baf4d42a480
Merge: cab7ad1 45a3965
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 13:15:00 2015 -0400

    Merge branch 'release-v3.15'

commit 2933f9717e9d034075b831709e7d7cdd8b881bde
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 13:07:49 2015 -0400

    updates TESTLIST

commit 6afd94dc9910b45aa222281cc69d152a79b2302a
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 13:06:55 2015 -0400

    testing: newoe-19-poc-poc-clear to test with 0.0.0.0/0 in clear

commit 4f88d1a37999d70d9be9e0bfafbef9f0d96e63a5
Merge: bd71bed cab7ad1
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 12:40:22 2015 -0400

    Merge branch 'master' of vault.libreswan.org:/srv/src/libreswan

commit cab7ad123e8a233be11c1d887d6f032c4f585ed2
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 00:36:07 2015 -0400

    testing: various minor test updates

commit 49fd1a0531b5b1c8d2b7d621a1c594f064ed4ab8
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Aug 25 00:35:27 2015 -0400

    updated changes for release date

commit bd71beda75d12c26f07e634fcf09a0ec2fd4b269
Author: D. Hugh Redelmeier <hugh at mimosa.com>
Date:   Mon Aug 24 14:55:13 2015 -0400

    pluto: simplify justship_KE() impairment



More information about the Swan-commit mailing list