[Swan-commit] Changes to ref refs/heads/master
Andrew Cagney
cagney at vault.libreswan.fi
Wed Nov 20 02:41:10 UTC 2019
New commits:
commit 0441a917db56bd5afdc584f0d5f8499c5a5ac9cf
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Nov 19 21:20:23 2019 -0500
ikev2: set the REPLACE timeout to 2*retransmit timeout when sending IKE_AUTH request
Both retransmit and replace (for half-open IKE) had the same
value 60s leading to either being delivered first.
If the replace is delivered first, whack was left hanging (the replace
keeps the socket open, even when the retransmit is trying to close
it). Slowing down the replace in once sense avoids the problem but in
another sense fixes it as the retransmit timeout should take priority.
commit 6d791e9641f2fb22364ac43173f180174d1873be
Author: Andrew Cagney <cagney at gnu.org>
Date: Wed Jun 7 18:13:24 2017 -0400
work-in-progress: add lswlog_ike_alg_id_name() - useful - intended for when wire value isn't known
Try to meaningfuly log an algorithm's name based on the algorithm's wire value
even though the algorithm is missing from the ike_alg table.
commit 376c9fec31b71fdb940f330c514860243502f10f
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Jun 11 21:25:12 2019 -0400
playing with jambuf without lswlog
commit a986a1db3b9ae73016747d68c4b8730060c497b5
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Jun 11 19:58:47 2019 -0400
loggin: delete lswlog.c add jambuf wrappers
commit 4be4db126578f9c5d24ae920ccacceb3807e058d
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Jul 5 22:23:35 2019 -0400
iwork-in-progress logging playing with logger double dispatch
commit a7ff0b09b69e8b9590f5f98f530838c60815d750
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Jul 4 15:22:18 2019 -0400
work-in-progress abstract logjam
commit 93c1d7d54012d84dfb82ef108638221884955c4d
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Jul 4 13:49:16 2019 -0400
work-in-progress add missing loglog_*() functions
commit 416b8ec83acf791753684d57abae022975127b73
Author: Andrew Cagney <cagney at gnu.org>
Date: Wed Aug 21 17:28:15 2019 -0400
work-in-progress fmt_state() -> log_state() - note use of log_raw_fn()
commit 8e55eec5705e8dd1194b5287c51afb7e1010f5f7
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Sep 27 12:09:39 2019 -0400
work-in-progress LSWLOG_WHACK() -> WHACK_LOG()
commit 4d65e58f17fdb3d65ad3a8756b1048fb26c4cb27
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Sep 20 13:38:37 2019 -0400
work-in-progress logging: add cached {st,md,c}_log_prefix fields
commit a2245a7b0acffd2b6b1bd206dc0a392fac5b836d
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Sep 27 11:49:22 2019 -0400
work-in-progress jam_connection_topology() -- ikev1 needs update
commit 1d7524c740073116169f54ad62c7568a041ab8a1
Author: Andrew Cagney <cagney at gnu.org>
Date: Sun Sep 29 13:13:03 2019 -0400
work-in-progress whack_log()->loglog()
commit b7a2a3ee6e451c768213d30303f5c74f0d63af3a
Author: Andrew Cagney <cagney at gnu.org>
Date: Sat Sep 28 16:43:37 2019 -0400
work-in-progress make whack global only - there are wack log lines that shouldn't, for instance:
--- MASTER/testing/pluto/basic-pluto-01/west.console.txt
+++ OUTPUT/testing/pluto/basic-pluto-01/west.console.txt
@@ -151,14 +151,14 @@
west #
ipsec auto --up westnet-eastnet
002 "westnet-eastnet" #1: initiating Main Mode
-1v1 "westnet-eastnet" #1: STATE_MAIN_I1: initiate
+1v1 STATE_MAIN_I1: initiate
1v1 "westnet-eastnet" #1: STATE_MAIN_I2: sent MI2, expecting MR2
1v1 "westnet-eastnet" #1: STATE_MAIN_I3: sent MI3, expecting MR3
002 "westnet-eastnet" #1: Peer ID is ID_FQDN: '@east'
003 "westnet-eastnet" #1: Authenticated using RSA
004 "westnet-eastnet" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
002 "westnet-eastnet" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO
-1v1 "westnet-eastnet" #2: STATE_QUICK_I1: initiate
+1v1 STATE_QUICK_I1: initiate
004 "westnet-eastnet" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=none DPD=passive}
west #
ping -n -c 4 -I 192.0.1.254 192.0.2.254
--- MASTER/testing/pluto/basic-pluto-01-failtest/west.console.txt
+++ OUTPUT/testing/pluto/basic-pluto-01-failtest/west.console.txt
@@ -138,14 +138,14 @@
west #
ipsec auto --up westnet-eastnet
002 "westnet-eastnet" #1: initiating Main Mode
-1v1 "westnet-eastnet" #1: STATE_MAIN_I1: initiate
+1v1 STATE_MAIN_I1: initiate
1v1 "westnet-eastnet" #1: STATE_MAIN_I2: sent MI2, expecting MR2
1v1 "westnet-eastnet" #1: STATE_MAIN_I3: sent MI3, expecting MR3
002 "westnet-eastnet" #1: Peer ID is ID_FQDN: '@east'
003 "westnet-eastnet" #1: Authenticated using RSA
004 "westnet-eastnet" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
002 "westnet-eastnet" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO
-1v1 "westnet-eastnet" #2: STATE_QUICK_I1: initiate
+1v1 STATE_QUICK_I1: initiate
004 "westnet-eastnet" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=none DPD=passive}
west #
ping -n -c 4 -I 192.0.1.254 192.0.2.254
commit 989a70a442f9fe190d63e06417ffdefc321bc478
Author: Andrew Cagney <cagney at gnu.org>
Date: Mon Oct 7 12:43:58 2019 -0400
work-in-progress always loglog complete_*_state_transition()
commit e2eb83e68fa9b7881b2fd3aabfab5b74fcf0ee4b
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Oct 8 10:01:28 2019 -0400
work-in-progress really eliminate LSWLOG_FILE() -- lswlog_*()->jam_*()
commit 543377602de481b7eb545bd4b4a890549fcd30ee
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Oct 8 09:48:45 2019 -0400
work-in-progress file_as_jambuf()
commit 991664cbba1680e939859b25ba2778656984241e
Author: Andrew Cagney <cagney at gnu.org>
Date: Mon Oct 21 21:38:59 2019 -0400
work-in-progress barf when a global cur_* is used
commit fe9817bedf348a38a68a9d1ec4c8e532c969c492
Author: Andrew Cagney <cagney at gnu.org>
Date: Thu Nov 7 21:30:36 2019 -0500
whackfd fixes
commit 96b3d8043a3874ec1fe1d26a56e7dc34e4e5bfe2
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Oct 22 16:47:00 2019 -0400
work-in-progress cur_from fixes
commit e33e72c6e83b3a8506d3187641b5c072e603a8d1
Author: Andrew Cagney <cagney at gnu.org>
Date: Wed Sep 4 16:38:47 2019 -0400
logging: in show_virtual_private_kind() use jambuf_ok() to detect the buffer overflow
commit 627fee5cb4ad3f06c5543588690222399fa7574d
Author: Andrew Cagney <cagney at gnu.org>
Date: Tue Jan 22 20:45:34 2019 -0500
logging: delete support for addrtot('r')
not used
commit 35df291036dcc69d767486bf8e7501f9a0681699
Author: Andrew Cagney <cagney at gnu.org>
Date: Mon Nov 4 12:01:57 2019 -0500
work-in-progress perfer st's whack-fd over the global -- looses output from things like delete connection
commit 7b3dcb1ebd169a7715dd4e374308a581f40834de
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Nov 8 14:20:18 2019 -0500
work-in-progress zombify
commit ce8a1f9c2bb62a31844889a8312c137d46163dbd
Author: Andrew Cagney <cagney at gnu.org>
Date: Wed Nov 6 13:20:02 2019 -0500
pluto: add --efence-protect option
More information about the Swan-commit
mailing list