summaryrefslogtreecommitdiff
path: root/debian
AgeCommit message (Collapse)Author
2018-09-24upload strongSwan 5.7.0-1 to unstableYves-Alexis Perez
2018-09-24finalize changelogYves-Alexis Perez
2018-09-24d/control: fix typo in libstrongswan long descriptionYves-Alexis Perez
2018-09-24finalize changelogYves-Alexis Perez
2018-09-24d/gbp.conf added, following DEP-14Yves-Alexis Perez
2018-08-07update AppArmor templates to handle usr mergeYves-Alexis Perez
Thanks Christian Ehrhardt for the patch closes: #905082
2018-06-04release strongSwan 5.6.3-1Yves-Alexis Perez
2018-06-04update changelog for 5.6.3Yves-Alexis Perez
2018-06-04d/p/05_charon-nm-Fix-building-list-of-DNS-MDNS-servers-with removedYves-Alexis Perez
included upstream
2018-04-27update charon-systemd AppArmor profileYves-Alexis Perez
allow access to {,/var}/run/notify closes: #896813
2018-04-13release strongSwan 5.6.2-2Yves-Alexis Perez
2018-04-13finalize changelogYves-Alexis Perez
2018-04-11d/rules: drop parallel and autoreconf from dh, done with compat 10Yves-Alexis Perez
2018-04-11d/compat bumped to 10Yves-Alexis Perez
2018-04-11d/control: drop b-d on n-m-dev and make libnm-dev linux-anyYves-Alexis Perez
closes: #895434
2018-02-22charon-nm: Fix building list of DNS/MDNS servers with libnmYves-Alexis Perez
2018-02-20release strongSwan 5.6.2-1Yves-Alexis Perez
2018-02-20finalize changelogYves-Alexis Perez
2018-02-20install tpm_extendpcr binary in libstrongswan-extra-pluginsYves-Alexis Perez
2018-02-20d/control: update build-deps for libnm portYves-Alexis Perez
closes: #862885
2018-02-20d/control: move Vcs to salsaYves-Alexis Perez
2018-01-03strongswan-libcharon: add bypass-lan pluginYves-Alexis Perez
not loaded by default
2018-01-01d/control: remove Romain Françoise from uploadersYves-Alexis Perez
2017-12-18Merge remote-tracking branch 'origin/master'Yves-Alexis Perez
2017-12-18release strongSwan 5.6.1-3Yves-Alexis Perez
2017-12-17update standards version to 4.1.2.Yves-Alexis Perez
2017-12-17move updown plugin from -starter to -libcharon. closes: #884578Yves-Alexis Perez
2017-11-30changelog updateYves-Alexis Perez
2017-11-30d/NEWS: add information about disabled algorithmsYves-Alexis Perez
closes: #883072
2017-11-23release strongSwan 5.6.1-2Yves-Alexis Perez
2017-11-23move counters plugin from -starter to -libcharon. closes: #882431Yves-Alexis Perez
2017-11-21release strongSwan 5.6.1-1Yves-Alexis Perez
2017-11-21debian/control: replace dh-systemd build-dep by updated build-dep onYves-Alexis Perez
debhelper
2017-11-21debian/control: update standards version to 4.1.1Yves-Alexis Perez
2017-11-21debian/libstrongswan-extra-plugins.install: install tpm pluginYves-Alexis Perez
2017-11-21debian/libstrongswan.install: install MGF1 pluginYves-Alexis Perez
needed for RSASSA-PSS signatures support when using the gmp plugin
2017-11-21debian/strongswan-starter.install: install counters pluginYves-Alexis Perez
2017-11-21debian/rules: explicitly enable tpm pluginYves-Alexis Perez
2017-11-21update changelog for new upstream versionYves-Alexis Perez
2017-10-19Remove transitional packagesYves-Alexis Perez
* debian/control: - remove strongswan-ike{,v1,v2} packages. closes: #878979
2017-09-03release strongSwan 5.6.0-2Yves-Alexis Perez
2017-09-03only use dh_missing --fail-missing when doing an architecture dependentYves-Alexis Perez
packages.
2017-09-03release strongSwan 5.6.0-1Yves-Alexis Perez
2017-09-03add lintian overrides for private keys directories using 700 permissions.Yves-Alexis Perez
2017-09-03install pt-tls-client in /u/b and also install its manpage.Yves-Alexis Perez
2017-09-01remove patch, included upstreamYves-Alexis Perez
2017-09-01fix insufficient input validation in gmp plugin, which can cause a denial of ↵Yves-Alexis Perez
service vulnerability (CVE-2017-11185) closes: #872155
2017-09-01New upstream release.Yves-Alexis Perez
2017-06-30replace DEB_BUILD_* by DEB_HOST_* when needed, fix FTCBFS, for example when ↵Yves-Alexis Perez
building for ppc64el on x86. Thanks Helmut Grohne. closes: #866669
2017-06-30Install AppArmor profiles for /usr/sbin/swanctl and /usr/sbin/charon-systemd.Gerald Turner
The AppArmor profile for charon-systemd was copied from the existing profile for /usr/lib/ipsec/charon without much scrutiny other than testing basic IPsec tunnels (no fancy plugin options were tested). It appears that the team at Canonical that had written the /usr/lib/ipsec/charon policy had done extensive testing with several plugins, and it seems likely that applying the same profile to charon-systemd will allow those plugins to continue to work. The AppArmor profile for swanctl was written from scratch and well tested. It turns out that swanctl unnecessarily loads plugins by default, so a bit of frivolous access has been granted.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-30 22:39:52 +0000