[Swan-commit] Changes to ref refs/heads/main
Andrew Cagney
cagney at vault.libreswan.fi
Sat Nov 13 17:26:00 EET 2021
New commits:
commit fa2bfed3220a358327a662de8a12aa0ace763b6a
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Nov 12 13:15:15 2021 -0500
kernel: in raw_policy(OP) replace cur_spi with what_about_inbound
This replaces the logic:
(op == KP_DELETE_INBOUND ||
(op == KP_DELETE_OUTBOUND && ntohl(cur_spi) == SPI_HOLD));
which was determining when to ignore updates that don't match a policy
(it was too weak and supressed real errors; given pluto can track when
it added a policy it can determine when it needs deleting).
Instead callers pass in WHAT_ABOUT_INBOUND which specifies when an
update should work, and when the update is dubious and should be
eliminated. For instance, when a Child SA exchange fails, there's no
point trying to delete incoming policy that was never added.
commit 06593b2fb7175bc871e5d2826fe89d511f328ee2
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Nov 12 18:11:17 2021 -0500
testing: mark ikev2-x509-29-selfsigned wip, see github bug #542
commit d0cfb01ce2b477b58866ec1854f94fb3857f02cd
Author: Andrew Cagney <cagney at gnu.org>
Date: Fri Nov 12 15:05:17 2021 -0500
testing: mark ikev2-xfrmi-05-remote-access-client and ikev2-xfrmi-10 wip, see github #541
More information about the Swan-commit
mailing list