[Swan] pluto doesn't reread certfificates
Matt Rogers
mrogers at redhat.com
Mon Apr 28 17:38:47 EEST 2014
On 04/28, Wolfgang Nothdurft wrote:
> Am 28.04.2014 14:46, schrieb Tuomo Soini:
> >On Mon, 28 Apr 2014 13:26:03 +0200
> >Wolfgang Nothdurft <wolfgang at linogate.de> wrote:
> >
> >>Hi,
> >>
> >>I'd like to migrate from openswan to libreswan on our internet
> >>appliance.
> >>
> >>For our customers, we need the ability to restart single connections
> >>on configuration or certficate changes.
> >>Unfortunately this seems not possible with the nss database.
> >>I found one comment from Paul here:
> >>https://bugzilla.redhat.com/show_bug.cgi?id=649420
> >>
> >>I can't find any infos about changes to nss or pluto regarding the
> >>reload issue.
> >
> >Some work was done but I don't know if it i ready.
> >
> >https://bugs.libreswan.org/show_bug.cgi?id=77
> >
>
> ah, here it is.
> That explains the weird reference from paul to a bug #77 from 1998
> in the red hat bug tracker. ;)
>
> Thanks
> Wolfgang
I just have a few changes to make (ipsec initnss needs to know about it) and then it
should be ready. I plan on finishing it soon - thanks for the reminder :)
Matt
More information about the Swan
mailing list