summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-09-01remove patch, included upstreamYves-Alexis Perez
2017-09-01fix insufficient input validation in gmp plugin, which can cause a denial of ↵Yves-Alexis Perez
service vulnerability (CVE-2017-11185) closes: #872155
2017-09-01New upstream release.Yves-Alexis Perez
2017-09-01Updated version 5.6.0 from 'upstream/5.6.0'Yves-Alexis Perez
with Debian dir e138a03837a338ec35cc53a33de19381770a5f0c
2017-09-01New upstream version 5.6.0Yves-Alexis Perez
2017-06-30replace DEB_BUILD_* by DEB_HOST_* when needed, fix FTCBFS, for example when ↵Yves-Alexis Perez
building for ppc64el on x86. Thanks Helmut Grohne. closes: #866669
2017-06-30Install AppArmor profiles for /usr/sbin/swanctl and /usr/sbin/charon-systemd.Gerald Turner
The AppArmor profile for charon-systemd was copied from the existing profile for /usr/lib/ipsec/charon without much scrutiny other than testing basic IPsec tunnels (no fancy plugin options were tested). It appears that the team at Canonical that had written the /usr/lib/ipsec/charon policy had done extensive testing with several plugins, and it seems likely that applying the same profile to charon-systemd will allow those plugins to continue to work. The AppArmor profile for swanctl was written from scratch and well tested. It turns out that swanctl unnecessarily loads plugins by default, so a bit of frivolous access has been granted.
2017-06-30Install /etc/strongswan.d/charon-systemd.conf with charon-systemd packageYves-Alexis Perez
* debian/patches: - 02_configure-Install-charon-systemd.conf added, cherry-picked from upstream to install configuration to output logging information to the journal. * debian/charon-systemd.install: - install charon-systemd.conf files, thanks Gerald Tuner. closes: #866325
2017-06-30restrict permissions on swanctl folder containing private materialYves-Alexis Perez
2017-06-30install the whole /etc/swanctl folder, including (empty) subfolders.Yves-Alexis Perez
2017-06-30Use dh_missing to catch uninstalled filesYves-Alexis Perez
* debian/rules: - remove .la files before install - don't call dh_install with --fail-missing - override dh_missing with --fail-missing to catch uninstalled files.
2017-06-28release strongSwan 5.5.3-2Yves-Alexis Perez
2017-06-28fix typo in long descriptionsYves-Alexis Perez
2017-06-28move curve25519 plugin from libcharon-extra-plugins to ↵Yves-Alexis Perez
libstrongswan-extra-plugins
2017-06-23fix typo in libstrongswan-extra-plugins long description.Yves-Alexis Perez
2017-06-23release strongSwan 5.5.3-1Yves-Alexis Perez
2017-06-23update standards version to 4.0.0Yves-Alexis Perez
2017-05-30revert spurious change in scepclient.8Yves-Alexis Perez
2017-05-30New upstream release.Yves-Alexis Perez
2017-05-30New upstream version 5.5.3Yves-Alexis Perez
2017-05-30New upstream version 5.5.3Yves-Alexis Perez
2017-05-19release strongSwan 5.5.2-1Yves-Alexis Perez
2017-05-19install libtpmtss library to libstrongswan-extra-pluginsYves-Alexis Perez
2017-04-01include curve25519 plugin.Yves-Alexis Perez
2017-04-01debian/patches/03_systemd-service refreshed.Yves-Alexis Perez
2017-04-01New upstream release.Yves-Alexis Perez
2017-04-01New upstream version 5.5.2Yves-Alexis Perez
2017-04-01Merge tag 'upstream/5.5.2'Yves-Alexis Perez
Upstream version 5.5.2
2017-01-16release strongSwan 5.5.1-3Yves-Alexis Perez
2017-01-16re-enable mediation (but not medcli/medsrv) closes: #851507Yves-Alexis Perez
2017-01-16mark as UNRELEASEDYves-Alexis Perez
2016-12-21changelog: Add updated logcheck rules to match recent strongswan outputChristian Ehrhardt
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21* Add updated logcheck rules to match recent strongswan outputRyan Harper
- debian/libstrongswan.strongswan.logcheck.* Remove outdated logcheck files - debian/{rules,strongswan.logcheck}: Add updated logcheck rules - this does no more provide different logcheck levels, but marks all common output to be acceptable Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21changelog: Add basic DEP8 testsChristian Ehrhardt
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21* Add basic DEP8 testsChristian Ehrhardt
- d/tests/* add DEP8 tests - d/control enable autotestpkg Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21changelog: Add and install strongswan apparmor profilesChristian Ehrhardt
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21* add and install apparmor profilesChristian Ehrhardt
- d/rules install AppArmor profiles - d/control add dh-apparmor build-dep - d/usr.lib.ipsec.{charon, lookip, stroke} add latest AppArmor profiles for charon, lookip and stroke Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21changelog: d/rules: Reorganize to ease maintenanceChristian Ehrhardt
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-21* d/rules: Reorganize to ease maintenanceChristian Ehrhardt
- one enable option per line - sort enable options Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
2016-12-07release strongSwan 5.5.1-2Yves-Alexis Perez
2016-12-06make the systemd build-dep linux-only.Yves-Alexis Perez
2016-10-22release strongSwan 5.5.1-1Yves-Alexis Perez
2016-10-22add dependency on lsb-base to strongswan-starter because the init script ↵Yves-Alexis Perez
uses /lib/lsb/init-functions
2016-10-22add a Replaces on n-m-strongswan because it used to ship the Dbus service fileYves-Alexis Perez
2016-10-20install /etc/dbus-1/system.d/nm-strongswan-service.confYves-Alexis Perez
2016-10-20install the new,empty /etc/ipsec.secretsYves-Alexis Perez
2016-10-20patch 05_network-manager-strongswan-1.4 dropped, included upstream.Yves-Alexis Perez
2016-10-20New upstream bugfix release.Yves-Alexis Perez
2016-10-20New upstream version 5.5.1Yves-Alexis Perez
2016-10-20Merge tag 'upstream/5.5.1'Yves-Alexis Perez
Upstream version 5.5.1
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-15 18:58:52 +0000