zoulasc / racoon2 Goto Github PK

@zoulasc: an org https://github.com/racoon2project and move this repository?

@kamadak: It is possible to add the website on github?

It will be nice to have this GitHub in News section, and other part too, remove old links "CVS Repository" and have "Git Repository"...

Remove and redirect http://www.racoon2.wide.ad.jp/cvsweb/racoon2/ to this git?

Download -> all releases in https://github.com/zoulasc/racoon2/releases...

Originally posted by @Neustradamus in #2 (comment)

It will be nice to see with original Racoon2 team to be the official new dev:

• http://racoon2.wide.ad.jp/

Hello, tks for the amazing ipsec opensource!

  I am using racoon2 for making my own ipsec tunnel. I want to use options send_cert and send_cert_req. As in your codes, they had not been tested yet. Can you give me an guide to deal with this?
  PS: I did edit the code (by comment  the block - UNSUPPORTED  send_cert and send_cert_req) in /src/iked/ike_conf.c and make the project again, config the: peers_public_key ascii "peer_cert.pem" in tunnel.conf. But the log still show "failed to get  public key".
  Tks again
  Hoang

I am building in $DIR_BUILD with a git clone in $DIR_SRC. This is supposed to work with autotools, and it usually does.

I tried, and failed, with

        cd "$DIR_BUILD"
        rm -rf *
        autoreconf -f -i "$DIR_BUILD" && \
        "$DIR_SRC/configure" --prefix="/usr" && \
        make && \
        empty_dir "$DIR_TREE" && \
        make DESTDIR="$DIR_TREE" install

Problems I found are:

• It stores configuration files in $DIR_SRC
• The make call cannot find lib/*h files (missing.h, racoon.h, rc_malloc.h, ...)
• The make install call does not properly locate the samples (01setkey was the first reported)

I must be doing something wrong; have a poor understanding of autotools, but know that the separation of $DIR_SRC and $DIR_BUILD is part of its intentions. Can you try this and make it work?

There is no more a configure script as indicated in doc/INSTALL; could you please give instructions of the right way of using autotools? I looked for tagged versions, or packages with a configure included, and found none. Is there perhaps a download site for recent stable versions that I missed?

Hello @zoulasc,

I wish you a Happy New Year!

It is possible to launch the transfer to racoon2project organization?

Thanks in advance.

@zmudc: Look here, maybe code to integrate?

• https://launchpad.net/debian/+source/ipsec-tools/+changelog
• https://salsa.debian.org/debian/ipsec-tools/commits/master
• https://salsa.debian.org/debian/ipsec-tools
• https://launchpad.net/ubuntu/+source/ipsec-tools
• https://packages.ubuntu.com/search?keywords=ipsec-tools
• https://gitweb.gentoo.org/repo/gentoo.git/log/net-vpn/ipsec-tools?showmsg=1
• https://github.com/openwrt/packages/tree/openwrt-19.07/net/ipsec-tools
• https://www.archlinux.org/packages/community/x86_64/ipsec-tools/
• ...

Originally posted by @Neustradamus in #2 (comment)

After reviewing the past history of the ipsec-tools package and what has been patched by the Linux distributions mentioned above, at the very least we need to check if any security vulnerabilities that have been patched in ipsec-tools and racoon apply to racoon2. One such vulnerability is CVE-2016-10396, which was patched in racoon at:

https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=51682

I'm running the following commands in racoon dir (outside iked,kinkd):

make distclean
CFLAGS=-D_GNU_SOURCE ./configure
make

I see the following error. Any idea what I'm doing wrong?

vmbuf.c: In function ‘vmemcmp’:
vmbuf.c:145:6: error: pointer targets in assignment differ in signedness [-Werror=pointer-sign]
   p1 = s1->v;
      ^
vmbuf.c:146:6: error: pointer targets in assignment differ in signedness [-Werror=pointer-sign]
   p2 = s2->v;
      ^
cc1: all warnings being treated as errors