4f59ab0bd4
Support GRE key in selectors
2025-10-11 15:25:14 +02:00
9fd7b5d486
Patch vici for NHRP
2025-10-11 15:25:14 +02:00
Michel Lind
78d3aed4af
Depend on openssl-devel-engine since we still use this deprecated feature (rhbz#2295335)
...
Signed-off-by: Michel Lind <salimma@fedoraproject.org >
2024-07-27 21:40:43 -05:00
Miroslav Suchý
3bf66dd5e8
convert GPLv2+ license to SPDX
...
This is part of https://fedoraproject.org/wiki/Changes/SPDX_Licenses_Phase_4
2024-07-26 03:05:56 +02:00
Fedora Release Engineering
279afb5fc2
Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
2024-07-20 06:34:35 +00:00
Python Maint
9c80b5c38a
Rebuilt for Python 3.13
2024-06-07 10:59:25 +02:00
Paul Wouters
2ba804af93
* Fri May 31 2024 Paul Wouters <paul.wouters@aiven.io> - 5.9.14-1
...
- Resolves: rhbz#2254560 CVE-2023-41913 buffer overflow and possible RCE
- Resolved: rhbz#2250666 Update to 5.9.14 (IKEv2 OCSP extensions, seqno/regno overflow handling
- Update to 5.9.13 (OCSP nonce set regression configuration option charon.ocsp_nonce_len)
- Update to 5.9.12 (CVE-2023-41913 fix, various IKEv2 fixes)
2024-05-31 18:21:01 -04:00
Fedora Release Engineering
19c48bd52d
Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
2024-01-27 04:30:59 +00:00
Fedora Release Engineering
c14cb600a0
Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org >
2023-07-22 02:39:37 +00:00
Paul Wouters
9d159bf0d0
- Resolves: rhbz#2214186 strongswan-5.9.11 is available
2023-07-14 13:45:25 -04:00
Python Maint
f779b6c7bb
Rebuilt for Python 3.12
2023-06-13 23:05:47 +02:00
Paul Wouters
9d642ad352
no longer use patches merged upstream
2023-03-02 11:02:38 -05:00
Paul Wouters
0132cc5668
- Update to 5.9.10
2023-03-02 10:24:58 -05:00
Paul Wouters
33fb3b13a3
- Resolves: CVE-2023-26463 authorization bypass in TLS-based EAP methods
2023-02-28 17:38:50 -05:00
Petr Menšík
6000262f47
Use configure paths in manual pages ( #2106120 )
2023-01-16 19:46:37 +01:00
Petr Menšík
d7206ab591
Switch all URLs to https
...
Include also github repository link in package to simplify upstream
changes tracking.
2023-01-16 14:04:39 +01:00
Petr Menšík
585aca3015
Update to 5.9.9 ( #2157850 )
2023-01-15 15:33:16 +01:00
Jitka Plesnikova
ea8056eb33
Add BR perl-generators to automatically generates run-time dependencies
...
for installed Perl files
2022-12-08 16:46:43 +01:00
Paul Wouters
199f1d8708
fixup systemd build requires
2022-10-16 22:42:15 -04:00
Paul Wouters
243ac7aa4a
remove obsoleted --enable-imc-swid, --enable-imv-swid
2022-10-16 21:55:29 -04:00
Arne Reiter
d8e91f4aa4
Resolves rhbz#2112274 strongswan-5.9.8 is available
...
Patch1 removes CFLAGS -Wno-format which interferes with -Werror=format-security
Add BuildRequire for autoconf and automake, now required for release
Remove obsolete patches
2022-10-16 11:47:16 +02:00
Fedora Release Engineering
27a4aa8167
Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org >
2022-07-23 09:32:45 +00:00
Petr Menšík
de70bbe3c5
Remove signature key from a cache, include it inside git
...
Key should be tracked by git. It is small and should not change very
often. Ensure signature has trust anchor.
2022-06-23 17:15:48 +02:00
Arne Reiter
9f5e4942d3
Resolves rhbz#2080070 strongswan-5.9.6 is available
2022-06-22 18:02:45 +02:00
Python Maint
15e47bc297
Rebuilt for Python 3.11
2022-06-13 17:17:06 +02:00
Davide Cavalca
c164f65462
Fix changelog entry
2022-03-04 20:49:42 -08:00
reitear
29f8c752f8
Resolves: rhbz#048108 - segfault at 18 ip 00007f4c7c0d841c sp 00007ffe49f61b70 error 4 in libc.so.6
2022-03-04 23:44:00 +01:00
Paul Wouters
e2ccbbed7e
- Use newly published/cleaned strongswan gpg key
2022-01-25 09:14:37 -05:00
Paul Wouters
3f12242eea
- Resolves rhbz#2044361 strongswan-5.9.5 is available (CVE-2021-45079)
2022-01-24 22:05:17 -05:00
Fedora Release Engineering
3067ecdcc7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org >
2022-01-22 01:46:58 +00:00
Neal Gompa
2f04e6389f
Disable TPM/TSS 1.2 support for F36+ / RHEL9+
...
TPM/TSS 1.2 has long since been superseded by TPM/TSS 2.0,
and trousers is more or less dead and replaced by the tpm-tss toolkit
for TPM/TSS 2.0.
Resolves: rhbz#2033299
2021-12-16 08:22:26 -05:00
Petr Menšík
b7c6e022d4
Add timeout and verbosity to tests
...
In case any test hangs, ensure it would release builder.
Increase verbosity to know more about possible failures. Interactive
debugging is not possible on builders.
2021-11-12 21:12:04 +01:00
Petr Menšík
0e9ffbc66d
Enable additional module for testing
2021-11-12 21:12:04 +01:00
Petr Menšík
f751d41f23
Add quirks needed for python install
...
--enable-python-eggs is required to provide correct version. But
otherwise does different thing than is required for python bindings
package. Rebuild python after installation of main package, because it
changed destination directory used later by install.
Related: rhbz#1419441
2021-11-12 21:12:04 +01:00
Petr Menšík
3d925e79dd
Add optional support for tests running
...
Now my tests did not finish successfully even on local build. Not
enabling them by default.
2021-11-12 21:12:02 +01:00
Petr Menšík
b097119cff
Add pytest
2021-11-12 21:10:01 +01:00
Petr Menšík
a894518822
Add python3 and perl vici bindings
...
Work in progress to enable vici bindings. It seems they are not under
active support, because changes required for python3 are not in upstream
code.
2021-11-12 21:09:58 +01:00
Paul Wouters
8d04445d34
strongswan: don't use RuntimeDirectory in systemd service file
...
Because there are two services, strongswan and strongswan-starter
that use this directory. Otherwise when stopping a service, the
directory is removed from /run and the other service that does
not start anymore.
Also cleanup old patches that are obsolete.
2021-11-08 20:45:23 -05:00
Paul Wouters
28ee63eed5
* Wed Oct 20 2021 Paul Wouters <paul.wouters@aiven.io> - 5.9.4-1
...
- Resolves: rhbz#2015165 strongswan-5.9.4 is available
- Resolves: rhbz#2015611 CVE-2021-41990 strongswan: gmp plugin: integer overflow via a crafted certificate with an RSASSA-PSS signature
- Resolves: rhbz#2015614 CVE-2021-41991 strongswan: integer overflow when replacing certificates in cache
- Add BuildRequire for tpm2-tss-devel and weak dependency for tpm2-tools
2021-10-20 17:47:06 -04:00
Sahana Prasad
23b5b73cd8
Rebuilt with OpenSSL 3.0.0
2021-09-14 19:15:51 +02:00
Fedora Release Engineering
48629b5950
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org >
2021-07-23 18:23:56 +00:00
Björn Esser
8ce4072e4d
Rebuild for versioned symbols in json-c
2021-07-10 11:58:08 +02:00
Paul Wouters
6ccc325c15
- Resolves: rhbz#1979574 strongswan-5.9.3 is available
...
- Make strongswan main dir world readable so apps can find strongswan.conf
2021-07-06 17:31:55 -04:00
Paul Wouters
4d2f255b10
- Resolves: rhbz#1896545 strongswan-5.9.2 is available
2021-06-02 20:28:03 -04:00
Zbigniew Jędrzejewski-Szmek
12be37ab1b
Rebuilt for updated systemd-rpm-macros
...
See https://pagure.io/fesco/issue/2583 .
2021-03-02 16:12:17 +01:00
Paul Wouters
dafd128e1f
update rundir patch
2021-02-12 14:07:45 -05:00
Paul Wouters
7e67e8cca6
- Resolves: rhbz# 1896545 strongswan-5.9.1 is available
2021-02-12 13:52:44 -05:00
Paul Wouters
04aee4b450
update changelog with rhbz
2021-02-12 13:47:19 -05:00
Davide Cavalca
8f80a71a01
Build with with capabilities support
2021-02-11 13:26:29 -08:00
Fedora Release Engineering
5449a7c2dc
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org >
2021-01-27 21:09:17 +00:00
