-
Notifications
You must be signed in to change notification settings - Fork 227
Issues: libreswan/libreswan
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
overhaul BC, KU, and EKU, of basic root and intermediate certs
test framework
problems with the test framework (KVM, NS, WWW, ...)
X.509
config option to allow non-ipsecIKE x.509 profile
ipsec.conf
including addconn and connection.c's add_connection()
RFC
RFC compliance
X.509
reduce including addconn and connection.c's add_connection()
ipsec pluto --option to a bare minimum, encourage ipsec pluto --conf file
ipsec.conf
#2071
opened Mar 5, 2025 by
cagney
load conns when the cert has an invalid time
ipsec.conf
including addconn and connection.c's add_connection()
X.509
#2066
opened Mar 2, 2025 by
cagney
1 task done
are the bespoke certificates needed?
test framework
problems with the test framework (KVM, NS, WWW, ...)
X.509
ipsec start behaves differently inside a custom namespace trying to test libreswan
build
#2054
opened Feb 27, 2025 by
cagney
4 of 6 tasks
roadwarrior xauth cannot respond to IPsec SA request because no connection is known
#2051
opened Feb 27, 2025 by
wmasilva
6 tasks
ipsec-interface doesn't handle IPv4+IPv6 addresspool assignments, see aka ipsec-interface; Linux VTI, XFRMI; BSD ipsecif, ipsec_if, sec
add_kernel_ipsec_interface_address_1()
IPsec Interface
#2047
opened Feb 25, 2025 by
paulwouters
3 of 6 tasks
ipsec status Total line should show number in routed-ondemand too
#2043
opened Feb 24, 2025 by
paulwouters
updown confused by unmanaged ipsec-interface
has workaround
#2040
opened Feb 23, 2025 by
cagney
warn that aka ipsec-interface; Linux VTI, XFRMI; BSD ipsecif, ipsec_if, sec
interface-ip is ignored when unmanaged
IPsec Interface
#2037
opened Feb 21, 2025 by
cagney
XPECTATION FAILED: "rw-eap"[1] 192.1.3.209 #1: not (md->chain[ISAKMP_NEXT_v2AUTH] == ((void *)0))
EAPTLS
IKEv2
reproduced
#2036
opened Feb 20, 2025 by
cagney
SEGV using NULL authentication with multiple peers
ESP
Encapsulating Security Payload
IKEv2
v5.0
#2029
opened Feb 7, 2025 by
paulwouters
2 of 6 tasks
ikev2-x509-pluto-05-forged is using an expired forgery
IKEv2
test framework
#2025
opened Jan 30, 2025 by
cagney
ikev2 silently ignores ikev1's xauth parameters
IKEv2
ipsec.conf
including addconn and connection.c's add_connection()
logging
#2018
opened Jan 27, 2025 by
cagney
wip Stuff that happens with IPv6 (but presumably not IPv4)
test framework
problems with the test framework (KVM, NS, WWW, ...)
addresspool-6in6-defaultroute-dual-dns-ikev2 nee ipv6-addresspool-05-dual-stack is showing correct DNS lookup
IPv6
#2016
opened Jan 27, 2025 by
cagney
review Stuff that happens with IPv6 (but presumably not IPv4)
test framework
problems with the test framework (KVM, NS, WWW, ...)
addresspool-6in6-6in6-6in6-ikev2 aka ipv6-addresspool-02-3-clients-ikev2
addresspool
IPv6
#2015
opened Jan 27, 2025 by
cagney
Previous Next
ProTip!
Follow long discussions with comments:>50.