Re: [Swan-dev] get rid of getnetbyname() /etc/networks?

2021-05-02 Thread D. Hugh Redelmeier
| From: Paul Wouters | Related, there are still a few places that end up calling | gethostbyname2() which is also obsolete and does not work for IPv6: | | lib/libswan/ttoaddress.c: struct hostent *h = gethostbyname2(p, af); | | The case in ttoaddress.c is the main one. Since it is used

Re: [Swan-dev] get rid of getnetbyname() /etc/networks?

2021-05-02 Thread D. Hugh Redelmeier
| From: Paul Wouters | > Subject: [Swan-dev] get rid of getnetbyname() /etc/networks? | kill it :) Done. | Related, there are still a few places that end up calling | gethostbyname2() which is also obsolete and does not work for IPv6: In what way does it not work for IPv6? I admit that it

Re: [Swan-dev] testing and unstable dns

2021-05-02 Thread Paul Wouters
On Sun, 2 May 2021, Antony Antony wrote: I think the swan-prep should to copy fresh config files every time. Moving the nsd/unbound stuff out of transmogrify makes sense. the namespace directories and files, which are bind mount, should be setup in swan-prep.  especially because

Re: [Swan-dev] get rid of getnetbyname() /etc/networks?

2021-05-02 Thread Paul Wouters
On Sun, 2 May 2021, D. Hugh Redelmeier wrote: Subject: [Swan-dev] get rid of getnetbyname() /etc/networks? Comments I added recently: + /* +* try a name from /etc/networks +* +* Seems pretty obsolete: +* - latest RFC, 1101, dated April 1989 +* -

[Swan-dev] get rid of getnetbyname() /etc/networks?

2021-05-02 Thread D. Hugh Redelmeier
Comments I added recently: + /* +* try a name from /etc/networks +* +* Seems pretty obsolete: +* - latest RFC, 1101, dated April 1989 +* - IPv4 only +* - doesn't support classless networks +* - Window has it +*/ We are using

Re: [Swan-dev] testing and unstable dns

2021-05-02 Thread Antony Antony
On Mon, Apr 19, 2021 at 02:02:39PM -0400, Andrew Cagney wrote: > > > On Mon, 19 Apr 2021 at 11:53, Antony Antony wrote: > > On Sat, Apr 17, 2021 at 08:33:18PM -0400, Andrew Cagney wrote: > > BTW, I took a look at swan-prep --dnssec.  As best I can the big > difference > >

Re: [Swan-dev] /etc/NetworkManager/VPN in Fedora 34

2021-05-02 Thread Andrew Cagney
Were you following: https://docs.fedoraproject.org/en-US/quick-docs/dnf-system-upgrade/ The cleanups might help? On Sun, 2 May 2021 at 09:32, D. Hugh Redelmeier wrote: > Does Libreswan care about this directory? > It seems like it might get removed. > > - NM tries to monitor it > > - SELinux

[Swan-dev] /etc/NetworkManager/VPN in Fedora 34

2021-05-02 Thread D. Hugh Redelmeier
Does Libreswan care about this directory? It seems like it might get removed. - NM tries to monitor it - SELinux generates AVCs every time - current work-around seems to be to delete the directory - reports seem to be about systems first installed long ago. In my case, it looks as if the