diff options
| author | Niklas Hallqvist <niklas@cvs.openbsd.org> | 1999-02-26 03:29:21 +0000 |
|---|---|---|
| committer | Niklas Hallqvist <niklas@cvs.openbsd.org> | 1999-02-26 03:29:21 +0000 |
| commit | 17d4074552fe89be8976560d86a6878995b4bad2 (patch) | |
| tree | ed0021ec1c06ced8f00377f061b0efb86f398ec2 | |
| parent | 03b94e42e0462f5ca081fea44b16e07645c89c85 (diff) | |
Merge from the Ericsson repository
| revision 1.23
| date: 1999/02/24 15:48:05; author: niklas; state: Exp; lines: +17 -2
| update
| ----------------------------
| -rw-r--r-- | sbin/isakmpd/BUGS | 21 |
1 files changed, 18 insertions, 3 deletions
diff --git a/sbin/isakmpd/BUGS b/sbin/isakmpd/BUGS index d7acc9e17f7..8324d10bf55 100644 --- a/sbin/isakmpd/BUGS +++ b/sbin/isakmpd/BUGS @@ -1,5 +1,5 @@ -$OpenBSD: BUGS,v 1.4 1998/12/21 01:02:21 niklas Exp $ -$EOM: BUGS,v 1.22 1998/12/17 07:50:50 niklas Exp $ +$OpenBSD: BUGS,v 1.5 1999/02/26 03:29:20 niklas Exp $ +$EOM: BUGS,v 1.23 1999/02/24 15:48:05 niklas Exp $ Until we have a bug-tracking system setup, we might just add bugs to this file: @@ -50,4 +50,19 @@ file: * Renegotiation after a failed phase 1 fails. -* Phase 1 rekey event removal seems to be done twice. +* Phase 1 rekey event removal seems to be done twice. [fixed] + +* PF_ENCAP expirations does not find the proper phase 2 SA to remove. + +* ISAKMP SA expirations should have a soft/hard timeout just like IPsec ones. + The soft one should put a watchdog on the SA, and start a renegotiation as + soon as something used the SA. Hard ones should just clean it up, no + renegotiation at all. + +* ISAKMP SAs does not get removed after rekeying. + +* On-demand PF_ENCAP SAs does not get reestablished. + +* Rekeying is now done automatically on expirations, it should not. The + SAs should be brought up on-demand just like the first time. + |