[Swan-commit] Changes to ref refs/heads/master

Andrew Cagney cagney at vault.libreswan.fi
Wed Nov 20 02:41:10 UTC 2019 

New commits:
commit 0441a917db56bd5afdc584f0d5f8499c5a5ac9cf
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Nov 19 21:20:23 2019 -0500

    ikev2: set the REPLACE timeout to 2*retransmit timeout when sending IKE_AUTH request
    
    Both retransmit and replace (for half-open IKE) had the same
    value 60s leading to either being delivered first.
    
    If the replace is delivered first, whack was left hanging (the replace
    keeps the socket open, even when the retransmit is trying to close
    it).  Slowing down the replace in once sense avoids the problem but in
    another sense fixes it as the retransmit timeout should take priority.

commit 6d791e9641f2fb22364ac43173f180174d1873be
Author: Andrew Cagney <cagney at gnu.org>
Date:   Wed Jun 7 18:13:24 2017 -0400

    work-in-progress: add lswlog_ike_alg_id_name() - useful - intended for when wire value isn't known
    
    Try to meaningfuly log an algorithm's name based on the algorithm's wire value
    even though the algorithm is missing from the ike_alg table.

commit 376c9fec31b71fdb940f330c514860243502f10f
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Jun 11 21:25:12 2019 -0400

    playing with jambuf without lswlog

commit a986a1db3b9ae73016747d68c4b8730060c497b5
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Jun 11 19:58:47 2019 -0400

    loggin: delete lswlog.c add jambuf wrappers

commit 4be4db126578f9c5d24ae920ccacceb3807e058d
Author: Andrew Cagney <cagney at gnu.org>
Date:   Fri Jul 5 22:23:35 2019 -0400

    iwork-in-progress logging playing with logger double dispatch

commit a7ff0b09b69e8b9590f5f98f530838c60815d750
Author: Andrew Cagney <cagney at gnu.org>
Date:   Thu Jul 4 15:22:18 2019 -0400

    work-in-progress abstract logjam

commit 93c1d7d54012d84dfb82ef108638221884955c4d
Author: Andrew Cagney <cagney at gnu.org>
Date:   Thu Jul 4 13:49:16 2019 -0400

    work-in-progress add missing loglog_*() functions

commit 416b8ec83acf791753684d57abae022975127b73
Author: Andrew Cagney <cagney at gnu.org>
Date:   Wed Aug 21 17:28:15 2019 -0400

    work-in-progress fmt_state() -> log_state() - note use of log_raw_fn()

commit 8e55eec5705e8dd1194b5287c51afb7e1010f5f7
Author: Andrew Cagney <cagney at gnu.org>
Date:   Fri Sep 27 12:09:39 2019 -0400

    work-in-progress LSWLOG_WHACK() -> WHACK_LOG()

commit 4d65e58f17fdb3d65ad3a8756b1048fb26c4cb27
Author: Andrew Cagney <cagney at gnu.org>
Date:   Fri Sep 20 13:38:37 2019 -0400

    work-in-progress logging: add cached {st,md,c}_log_prefix fields

commit a2245a7b0acffd2b6b1bd206dc0a392fac5b836d
Author: Andrew Cagney <cagney at gnu.org>
Date:   Fri Sep 27 11:49:22 2019 -0400

    work-in-progress jam_connection_topology() -- ikev1 needs update

commit 1d7524c740073116169f54ad62c7568a041ab8a1
Author: Andrew Cagney <cagney at gnu.org>
Date:   Sun Sep 29 13:13:03 2019 -0400

    work-in-progress whack_log()->loglog()

commit b7a2a3ee6e451c768213d30303f5c74f0d63af3a
Author: Andrew Cagney <cagney at gnu.org>
Date:   Sat Sep 28 16:43:37 2019 -0400

    work-in-progress make whack global only - there are wack log lines that shouldn't, for instance:
    
    --- MASTER/testing/pluto/basic-pluto-01/west.console.txt
    +++ OUTPUT/testing/pluto/basic-pluto-01/west.console.txt
    @@ -151,14 +151,14 @@
     west #
      ipsec auto --up  westnet-eastnet
     002 "westnet-eastnet" #1: initiating Main Mode
    -1v1 "westnet-eastnet" #1: STATE_MAIN_I1: initiate
    +1v1 STATE_MAIN_I1: initiate
     1v1 "westnet-eastnet" #1: STATE_MAIN_I2: sent MI2, expecting MR2
     1v1 "westnet-eastnet" #1: STATE_MAIN_I3: sent MI3, expecting MR3
     002 "westnet-eastnet" #1: Peer ID is ID_FQDN: '@east'
     003 "westnet-eastnet" #1: Authenticated using RSA
     004 "westnet-eastnet" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
     002 "westnet-eastnet" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO
    -1v1 "westnet-eastnet" #2: STATE_QUICK_I1: initiate
    +1v1 STATE_QUICK_I1: initiate
     004 "westnet-eastnet" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=none DPD=passive}
     west #
      ping -n -c 4 -I 192.0.1.254 192.0.2.254
    --- MASTER/testing/pluto/basic-pluto-01-failtest/west.console.txt
    +++ OUTPUT/testing/pluto/basic-pluto-01-failtest/west.console.txt
    @@ -138,14 +138,14 @@
     west #
      ipsec auto --up  westnet-eastnet
     002 "westnet-eastnet" #1: initiating Main Mode
    -1v1 "westnet-eastnet" #1: STATE_MAIN_I1: initiate
    +1v1 STATE_MAIN_I1: initiate
     1v1 "westnet-eastnet" #1: STATE_MAIN_I2: sent MI2, expecting MR2
     1v1 "westnet-eastnet" #1: STATE_MAIN_I3: sent MI3, expecting MR3
     002 "westnet-eastnet" #1: Peer ID is ID_FQDN: '@east'
     003 "westnet-eastnet" #1: Authenticated using RSA
     004 "westnet-eastnet" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
     002 "westnet-eastnet" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO
    -1v1 "westnet-eastnet" #2: STATE_QUICK_I1: initiate
    +1v1 STATE_QUICK_I1: initiate
     004 "westnet-eastnet" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=none DPD=passive}
     west #
      ping -n -c 4 -I 192.0.1.254 192.0.2.254

commit 989a70a442f9fe190d63e06417ffdefc321bc478
Author: Andrew Cagney <cagney at gnu.org>
Date:   Mon Oct 7 12:43:58 2019 -0400

    work-in-progress always loglog complete_*_state_transition()

commit e2eb83e68fa9b7881b2fd3aabfab5b74fcf0ee4b
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Oct 8 10:01:28 2019 -0400

    work-in-progress really eliminate LSWLOG_FILE() -- lswlog_*()->jam_*()

commit 543377602de481b7eb545bd4b4a890549fcd30ee
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Oct 8 09:48:45 2019 -0400

    work-in-progress file_as_jambuf()

commit 991664cbba1680e939859b25ba2778656984241e
Author: Andrew Cagney <cagney at gnu.org>
Date:   Mon Oct 21 21:38:59 2019 -0400

    work-in-progress barf when a global cur_* is used

commit fe9817bedf348a38a68a9d1ec4c8e532c969c492
Author: Andrew Cagney <cagney at gnu.org>
Date:   Thu Nov 7 21:30:36 2019 -0500

    whackfd fixes

commit 96b3d8043a3874ec1fe1d26a56e7dc34e4e5bfe2
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Oct 22 16:47:00 2019 -0400

    work-in-progress cur_from fixes

commit e33e72c6e83b3a8506d3187641b5c072e603a8d1
Author: Andrew Cagney <cagney at gnu.org>
Date:   Wed Sep 4 16:38:47 2019 -0400

    logging: in show_virtual_private_kind() use jambuf_ok() to detect the buffer overflow

commit 627fee5cb4ad3f06c5543588690222399fa7574d
Author: Andrew Cagney <cagney at gnu.org>
Date:   Tue Jan 22 20:45:34 2019 -0500

    logging: delete support for addrtot('r')
    
    not used

commit 35df291036dcc69d767486bf8e7501f9a0681699
Author: Andrew Cagney <cagney at gnu.org>
Date:   Mon Nov 4 12:01:57 2019 -0500

    work-in-progress perfer st's whack-fd over the global -- looses output from things like delete connection

commit 7b3dcb1ebd169a7715dd4e374308a581f40834de
Author: Andrew Cagney <cagney at gnu.org>
Date:   Fri Nov 8 14:20:18 2019 -0500

    work-in-progress zombify

commit ce8a1f9c2bb62a31844889a8312c137d46163dbd
Author: Andrew Cagney <cagney at gnu.org>
Date:   Wed Nov 6 13:20:02 2019 -0500

    pluto: add --efence-protect option

More information about the Swan-commit mailing list