The NetBSD Project

CVS log for src/tests/net/ipsec/t_ipsec_natt.sh

[BACK] Up to [cvs.NetBSD.org] / src / tests / net / ipsec

Request diff between arbitrary revisions


Keyword substitution: kv
Default branch: MAIN


Revision 1.2.2.1: download - view: text, markup, annotated - select for diffs
Tue Nov 10 11:44:22 2020 UTC (4 years ago) by martin
Branches: netbsd-9
CVS tags: netbsd-9-4-RELEASE, netbsd-9-3-RELEASE, netbsd-9-2-RELEASE
Diff to: previous 1.2: preferred, colored; next MAIN 1.3: preferred, colored
Changes since revision 1.2: +3 -4 lines
Pull up following revision(s) (requested by knakahara in ticket #1129):

	tests/net/if_ipsec/t_ipsec_pfil.sh: revision 1.3
	tests/net/if_ipsec/t_ipsec.sh: revision 1.11
	tests/net/if_ipsec/t_ipsec_natt.sh: revision 1.4
	tests/net/if_ipsec/t_ipsec_natt.sh: revision 1.5
	tests/net/ipsec/t_ipsec_natt.sh: revision 1.4
	tests/net/ipsec/t_ipsec_natt.sh: revision 1.5
	tests/net/ipsec/common.sh: revision 1.8

Typo in error message

Refactor a little and follow new format of "npfctl list".

Fix the below ATF failures.
    - net/if_ipsec/t_ipsec_natt:ipsecif_natt_transport_null
    - net/if_ipsec/t_ipsec_natt:ipsecif_natt_transport_rijndaelcbc
    - net/ipsec/t_ipsec_natt:ipsec_natt_transport_ipv4_null
    - net/ipsec/t_ipsec_natt:ipsec_natt_transport_ipv4_rijndaelcbc
ok'ed by ozaki-r@n.o, thanks.

Fix missing "-m tranport" options.  Pointed out by k-goda@IIJ.

Using any mode SA causes unepected call path, that is,
ipsec4_common_input_cb() calls ip_input() directly instead of
ipsecif4_input().

Revision 1.5: download - view: text, markup, annotated - select for diffs
Fri Jun 5 03:24:58 2020 UTC (4 years, 6 months ago) by knakahara
Branches: MAIN
CVS tags: perseant-exfatfs-base-20240630, perseant-exfatfs-base, perseant-exfatfs, netbsd-10-base, netbsd-10-0-RELEASE, netbsd-10-0-RC6, netbsd-10-0-RC5, netbsd-10-0-RC4, netbsd-10-0-RC3, netbsd-10-0-RC2, netbsd-10-0-RC1, netbsd-10, cjep_sun2x-base1, cjep_sun2x-base, cjep_sun2x, cjep_staticlib_x-base1, cjep_staticlib_x-base, cjep_staticlib_x, HEAD
Diff to: previous 1.4: preferred, colored
Changes since revision 1.4: +2 -3 lines
Refactor a little and follow new format of "npfctl list".

Fix the below ATF failures.
    - net/if_ipsec/t_ipsec_natt:ipsecif_natt_transport_null
    - net/if_ipsec/t_ipsec_natt:ipsecif_natt_transport_rijndaelcbc
    - net/ipsec/t_ipsec_natt:ipsec_natt_transport_ipv4_null
    - net/ipsec/t_ipsec_natt:ipsec_natt_transport_ipv4_rijndaelcbc

ok'ed by ozaki-r@n.o, thanks.

Revision 1.4: download - view: text, markup, annotated - select for diffs
Mon Jun 1 04:38:37 2020 UTC (4 years, 6 months ago) by martin
Branches: MAIN
Diff to: previous 1.3: preferred, colored
Changes since revision 1.3: +2 -2 lines
Typo in error message

Revision 1.1.6.2: download - view: text, markup, annotated - select for diffs
Mon Apr 13 08:05:31 2020 UTC (4 years, 7 months ago) by martin
Branches: phil-wifi
Diff to: previous 1.1.6.1: preferred, colored; branchpoint 1.1: preferred, colored; next MAIN 1.2: preferred, colored
Changes since revision 1.1.6.1: +3 -3 lines
Mostly merge changes from HEAD upto 20200411

Revision 1.3: download - view: text, markup, annotated - select for diffs
Mon Aug 19 03:22:05 2019 UTC (5 years, 3 months ago) by ozaki-r
Branches: MAIN
CVS tags: phil-wifi-20200421, phil-wifi-20200411, phil-wifi-20200406, phil-wifi-20191119, is-mlppp-base, is-mlppp
Diff to: previous 1.2: preferred, colored
Changes since revision 1.2: +3 -3 lines
tests: use rump_server_add_iface to create interfaces

Revision 1.1.6.1: download - view: text, markup, annotated - select for diffs
Mon Jun 10 22:10:10 2019 UTC (5 years, 5 months ago) by christos
Branches: phil-wifi
Diff to: previous 1.1: preferred, colored
Changes since revision 1.1: +133 -16 lines
Sync with HEAD

Revision 1.1.4.1: download - view: text, markup, annotated - select for diffs
Mon Nov 26 01:52:53 2018 UTC (6 years ago) by pgoyette
Branches: pgoyette-compat
CVS tags: pgoyette-compat-merge-20190127
Diff to: previous 1.1: preferred, colored; next MAIN 1.2: preferred, colored
Changes since revision 1.1: +133 -16 lines
Sync with HEAD, resolve a couple of conflicts

Revision 1.2: download - view: text, markup, annotated - select for diffs
Thu Nov 22 04:51:41 2018 UTC (6 years ago) by knakahara
Branches: MAIN
CVS tags: phil-wifi-20190609, pgoyette-compat-20190127, pgoyette-compat-20190118, pgoyette-compat-1226, pgoyette-compat-1126, netbsd-9-base, netbsd-9-1-RELEASE, netbsd-9-0-RELEASE, netbsd-9-0-RC2, netbsd-9-0-RC1
Branch point for: netbsd-9
Diff to: previous 1.1: preferred, colored
Changes since revision 1.1: +133 -16 lines
Add ATF for IPv6 NAT-T.

We use IPv6 NAT-T to avoid IPsec slowing down caused by dropping ESP packets
by some Customer Premises Equipments (CPE). I implement ATF to test such
situation.

I think it can also work with nat66, but I have not tested to the fine details.

Revision 1.1.2.2: download - view: text, markup, annotated - select for diffs
Fri Nov 17 20:43:11 2017 UTC (7 years ago) by snj
Branches: netbsd-8
CVS tags: netbsd-8-3-RELEASE, netbsd-8-2-RELEASE, netbsd-8-1-RELEASE, netbsd-8-1-RC1, netbsd-8-0-RELEASE, netbsd-8-0-RC2, netbsd-8-0-RC1
Diff to: previous 1.1.2.1: preferred, colored; branchpoint 1.1: preferred, colored; next MAIN 1.2: preferred, colored
Changes since revision 1.1.2.1: +376 -0 lines
Pull up following revision(s) (requested by ozaki-r in ticket #357):
	distrib/sets/lists/debug/mi: 1.228
	distrib/sets/lists/tests/mi: 1.765-1.766
	etc/mtree/NetBSD.dist.tests: 1.149
	sys/net/npf/npf_ctl.c: 1.49
	tests/net/ipsec/Makefile: 1.10
	tests/net/ipsec/algorithms.sh: 1.6
	tests/net/ipsec/natt_terminator.c: 1.1
	tests/net/ipsec/t_ipsec_natt.sh: 1.1
	tests/net/net_common.sh: 1.23-1.24
	usr.sbin/npf/npfctl/npfctl.c: 1.54
Handle esp-udp for NAT-T
--
Fix npfclt reload on rump kernels
It fails because npfctl cannot get an errno when it calls ioctl to the (rump)
kernel; npfctl (libnpf) expects that an errno is returned via proplib,
however, the rump library of npf doesn't so. It happens because of mishandlings
of complicate npf kernel options.
PR kern/52643
--
Fix showing translated port (ntohs-ed twice wrongly)
--
Add test cases of NAT-T (transport mode)
A small C program is added to make a special socket (UDP_ENCAP_ESPINUDP)
and keep it to handle UDP-encapsulated ESP packets.
--
Add net/ipsec debug lib directory
--
Add ./usr/libdata/debug/usr/tests/net/ipsec
--
Stop using bpfjit
Because most architectures don't support it and npf still works without it.

Revision 1.1.2.1
Mon Oct 30 15:59:23 2017 UTC (7 years, 1 month ago) by snj
Branches: netbsd-8
FILE REMOVED
Changes since revision 1.1: +0 -376 lines
file t_ipsec_natt.sh was added on branch netbsd-8 on 2017-11-17 20:43:11 +0000

Revision 1.1: download - view: text, markup, annotated - select for diffs
Mon Oct 30 15:59:23 2017 UTC (7 years, 1 month ago) by ozaki-r
Branches: MAIN
CVS tags: phil-wifi-base, pgoyette-compat-base, pgoyette-compat-1020, pgoyette-compat-0930, pgoyette-compat-0906, pgoyette-compat-0728, pgoyette-compat-0625, pgoyette-compat-0521, pgoyette-compat-0502, pgoyette-compat-0422, pgoyette-compat-0415, pgoyette-compat-0407, pgoyette-compat-0330, pgoyette-compat-0322, pgoyette-compat-0315
Branch point for: phil-wifi, pgoyette-compat, netbsd-8
Add test cases of NAT-T (transport mode)

A small C program is added to make a special socket (UDP_ENCAP_ESPINUDP)
and keep it to handle UDP-encapsulated ESP packets.

Diff request

This form allows you to request diffs between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

Log view options

CVSweb <webmaster@jp.NetBSD.org>