Accepted openswan 1:2.4.5-1 (source all i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 15 Apr 2006 21:36:36 +0100
Source: openswan
Binary: openswan-modules-source kernel-patch-openswan openswan
Architecture: source all i386
Version: 1:2.4.5-1
Distribution: unstable
Urgency: low
Maintainer: Rene Mayrhofer <rmayr@debian.org>
Changed-By: Rene Mayrhofer <rmayr@debian.org>
Description:
kernel-patch-openswan - IPSEC kernel support for Openswan
openswan - IPSEC utilities for Openswan
openswan-modules-source - IPSEC kernel modules source for Openswan
Closes: 292838 296611 298250 307529 311613 316693 318136 318298 339390 340294 342844 343603 352050 353792 354965 356716 357698 357719 361800
Changes:
openswan (1:2.4.5-1) unstable; urgency=low
.
* New upstream release. This release adds support for patching newer kernel
versions. Verified that the patched kernel tree compiles with Debian
kernel sources 2.6.15-8 and 2.6.16-6.
Closes: #361800: kernel-patch-openswan: Fails to patch Debian 2.6.15
kernel
It also adds the patches for an IPSec/L2TP server behind a NAT.
Closes: #307529: More patches for openswan server behind NAT
Closes: #353792: openswan nat-t failure
And additionally there are (according to upstream changelogs) fixes for
running on SMP systems. If the following bug still persists (can not test
myself), then please reopen.
Closes: #343603: kernel-patch-openswan: Starting IPSEC makes system freeze
The patch to fix the snmpd crash is also in this upstream version (just
checked linux/net/ipsec/ipsec_tunnel.c). It was probably in older versions
as well, so this might have been closed earlier. It's not mentioned in
upstream changelog, so I don't know exactly when it has been fixed.
Closes: #318298: kernel-patch-openswan: Kernel Oops - Null Dereference
when using snmpd
The ipsec.conf manual page has been updated to document connaddrfamily.
Closes: #296611: openswan: "man -S 5 ipsec.conf" fails to mention the
parameter "connaddrfamily"
* Acknowledge fixes in last NMU - thanks to Christian.
Closes: #352050: openswan: FTBFS: Package libopensc1-dev has no
installation candidate
Closes: #356716: openswan: Incomplete clean when building
Closes: #316693: openswan_1/2.2.0-10
Closes: #339390: openswan: [INTL:sv] Swedish debconf templates translation
* Enable building of XAUTH support.
* Import override files from /etc/default instead of /etc/sysconfig. This
uses dpatch, so now Build-Depend on it.
Closes: #354965: openswan: /usr/lib/ipsec/_updown uses /etc/sysconfig/,
please change to /etc/default/
* Only ask if an existing certificate/private key pair should be used when
the user chose not to create a new key pair. Also mention, when asking to
create a new key pair, that an existing one can be used alternatively.
Closes: #298250: confusing debconf question about certificate creation
* Move the USE_LDAP, USE_LIBCURL, and HAVE_THREADS options from the
"make install" to the "make programs" call where it belongs.
Closes: #292838: openswan: Dynamic CRL fetching not supported
* Remove /usr/share/doc/openswan/index.html, because it is a duplicate of
/usr/share/doc/openswan/doc/index.html, and only the latter one has links
to existing files.
Closes: #311613: openswan: html documentation links to the wrong place
Closes: #357719: broken links in file:///usr/share/doc/openswan/index.html
Closes: #357698: broken links in file:///usr/share/doc/openswan/index.html
* Add #ifdef to linux/net/ipsec/ipsec_init.c to branch between Debian and
vanilla 2.4 kernels. For Debian kernels with the XFRM (26sec) backport,
a second option is necessary for inet_(add|del)_protocol. This should
allow KLIPS to compile on both Debian and vanilla 2.4 kernels. Verified
that it compiles with Debian 2.4.27-12 and vanilla 2.4.32.
Closes: #340294: openswan-modules-source: fails to build with 2.4.27 on
sarge
Closes: #342844: kernel-patch-openswan: FTBS with kernel-source-2.4.27
2.4.27-11
* Document in README.Debian that KLIPS for 2.4 kernels will not compile with
newer GCC versions and give a hint on how to use older versions with
make-kpkg.
* Kernel 2.6.8 is not properly supported and is horribly outdated by now.
If you really need to use 2.6.8, then please use the native 26sec IPSec
stack. For KLIPS support, use at least 2.6.12, or better 2.6.15.
Closes: #318136: kernel-patch-openswan: Problem applying
kernel-openswan-patch to kernel-source-2.6.8
* Compress the modules source tree with bzip2 instead of gzip and thus
reduce the size of the openswan-modules-source package.
Files:
e77fa56c1836be9c0c1d63c597d17019 816 net optional openswan_2.4.5-1.dsc
a9a8e88313faceebfc5ceb1a9da9a3c4 3597702 net optional openswan_2.4.5.orig.tar.gz
7bf24c5f1e5b946c54535b45a0df61be 46077 net optional openswan_2.4.5-1.diff.gz
fa6cc8a3ec8554a962f3e580f7b33f92 524140 net optional openswan-modules-source_2.4.5-1_all.deb
5ada7fbcebf5501344b8a44f5f683599 594672 net optional kernel-patch-openswan_2.4.5-1_all.deb
9020fb47d261fcdf6dba3654e4f95bd3 1703704 net optional openswan_2.4.5-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEQaBEq7SPDcPCS94RAnZwAKCFZdDOgBIUA/ixBnzo9+l59C4SoQCdHyXP
bQTBimuE/PmzPIWvBWHRo2s=
=gZ7D
-----END PGP SIGNATURE-----
Accepted:
kernel-patch-openswan_2.4.5-1_all.deb
to pool/main/o/openswan/kernel-patch-openswan_2.4.5-1_all.deb
openswan-modules-source_2.4.5-1_all.deb
to pool/main/o/openswan/openswan-modules-source_2.4.5-1_all.deb
openswan_2.4.5-1.diff.gz
to pool/main/o/openswan/openswan_2.4.5-1.diff.gz
openswan_2.4.5-1.dsc
to pool/main/o/openswan/openswan_2.4.5-1.dsc
openswan_2.4.5-1_i386.deb
to pool/main/o/openswan/openswan_2.4.5-1_i386.deb
openswan_2.4.5.orig.tar.gz
to pool/main/o/openswan/openswan_2.4.5.orig.tar.gz
Reply to: