rpms/libreswan
7
0
Fork 0
Code Issues Pull Requests Releases Activity

updated to 3.7

Browse Source
This commit is contained in:
Paul Wouters 2013-12-10 20:30:56 -05:00
parent 923dd884a3
commit fe276015a8
3 changed files with 17 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@ -3,3 +3,4 @@
/libreswan-3.4.tar.gz /libreswan-3.4.tar.gz
/libreswan-3.5.tar.gz /libreswan-3.5.tar.gz
/libreswan-3.6.tar.gz /libreswan-3.6.tar.gz
/libreswan-3.7.tar.gz

25
libreswan.spec
View File

@ -16,7 +16,7 @@
Name: libreswan Name: libreswan
Summary: IPsec implementation with IKEv1 and IKEv2 keying protocols Summary: IPsec implementation with IKEv1 and IKEv2 keying protocols
Version: 3.6 Version: 3.7
Release: %{?prever:0.}1%{?prever:.%{prever}}%{?dist} Release: %{?prever:0.}1%{?prever:.%{prever}}%{?dist}
License: GPLv2 License: GPLv2
Url: https://www.libreswan.org/ Url: https://www.libreswan.org/
@ -34,7 +34,7 @@ Provides: openswan = %{version}-%{release}
Provides: openswan-doc = %{version}-%{release} Provides: openswan-doc = %{version}-%{release}
BuildRequires: pkgconfig hostname BuildRequires: pkgconfig hostname
BuildRequires: nss-devel >= 3.12.6-2, nspr-devel BuildRequires: nss-devel >= 3.14.3, nspr-devel
BuildRequires: pam-devel BuildRequires: pam-devel
%if %{USE_DNSSEC} %if %{USE_DNSSEC}
BuildRequires: unbound-devel BuildRequires: unbound-devel
@ -99,7 +99,7 @@ Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04
USE_XAUTHPAM=true \ USE_XAUTHPAM=true \
%if %{USE_FIPSCHECK} %if %{USE_FIPSCHECK}
USE_FIPSCHECK="%{USE_FIPSCHECK}" \ USE_FIPSCHECK="%{USE_FIPSCHECK}" \
FIPSPRODUCTCHECK=/etc/system-fips \ FIPSPRODUCTCHECK=%{_sysconfdir}/system-fips \
%endif %endif
USE_LIBCAP_NG="%{USE_LIBCAP_NG}" \ USE_LIBCAP_NG="%{USE_LIBCAP_NG}" \
USE_LABELED_IPSEC="%{USE_LABELED_IPSEC}" \ USE_LABELED_IPSEC="%{USE_LABELED_IPSEC}" \
@ -153,8 +153,8 @@ install -d %{buildroot}%{_sysconfdir}/prelink.conf.d/
install -m644 packaging/fedora/libreswan-prelink.conf %{buildroot}%{_sysconfdir}/prelink.conf.d/libreswan-fips.conf install -m644 packaging/fedora/libreswan-prelink.conf %{buildroot}%{_sysconfdir}/prelink.conf.d/libreswan-fips.conf
%endif %endif
echo "include /etc/ipsec.d/*.secrets" > %{buildroot}%{_sysconfdir}/ipsec.secrets echo "include %{_sysconfdir}/ipsec.d/*.secrets" > %{buildroot}%{_sysconfdir}/ipsec.secrets
rm -fr %{buildroot}/etc/rc.d/rc* rm -fr %{buildroot}%{_sysconfdir}/rc.d/rc*
%files %files
%doc BUGS CHANGES COPYING CREDITS README LICENSE %doc BUGS CHANGES COPYING CREDITS README LICENSE
@ -190,14 +190,19 @@ rm -fr %{buildroot}/etc/rc.d/rc*
%post %post
%systemd_post ipsec.service %systemd_post ipsec.service
if [ ! -f /etc/ipsec.d/cert8.db ] ; then if [ ! -f %{_sysconfdir}/ipsec.d/cert8.db ] ; then
echo > /var/tmp/libreswan-nss-pwd TEMPFILE=$(/bin/mktemp %{_sysconfdir}/ipsec.d/nsspw.XXXXXXX)
certutil -N -f /var/tmp/libreswan-nss-pwd -d /etc/ipsec.d [ $? -gt 0 ] && TEMPFILE=%{_sysconfdir}/ipsec.d/nsspw.$$
restorecon /etc/ipsec.d/*db 2>/dev/null || : echo > ${TEMPFILE}
rm /var/tmp/libreswan-nss-pwd certutil -N -f ${TEMPFILE} -d %{_sysconfdir}/ipsec.d
restorecon %{_sysconfdir}/ipsec.d/*db 2>/dev/null || :
rm -f ${TEMPFILE}
fi fi
%changelog %changelog
* Wed Dec 11 2013 Paul Wouters <pwouters@redhat.com> - 3.7-1
- Updated to 3.7, fixes CVE-2013-4564
* Thu Oct 31 2013 Paul Wouters <pwouters@redhat.com> - 3.6-1 * Thu Oct 31 2013 Paul Wouters <pwouters@redhat.com> - 3.6-1
- Updated to 3.6 (IKEv2, MODECFG, Cisco interop fixes) - Updated to 3.6 (IKEv2, MODECFG, Cisco interop fixes)
- Generate empty NSS db if none exists - Generate empty NSS db if none exists

2
sources
View File

@ -1 +1 @@
6c6f0ffec329e09d2d7fa24ae102c69b libreswan-3.6.tar.gz 5ab889e6a0c3b157c8dcd59966090e2f libreswan-3.7.tar.gz