aboutsummaryrefslogtreecommitdiffstats
path: root/main/strongswan
Commit message (Collapse)AuthorAgeFilesLines
* main/strongswan: upgrade to 5.6.1Timo Teräs2017-11-202-60/+62
|
* main/*: fix homepage url and source from http:// to https://Jakub Jirutka2017-11-191-1/+1
| | | | | | | Most of these updates is based on data from https://repology.org/, detection based on permanent redirect from http:// to https://. $source urls are updated when they contain $url as substring.
* main/strongswan: rebuild against libressl-2.6Natanael Copa2017-11-091-1/+1
|
* main/strongswan: security upgrade to 5.6.0Timo Teräs2017-08-232-512/+3
| | | | | | CVE-2017-11185 remove also the ikev1 gre-key patch as obsolete
* main/strongswan: add secinfo, modernize APKBUILDLeonardo Arena2017-06-151-12/+17
|
* main/strongswan: upgrade to 5.5.3Natanael Copa2017-05-301-3/+3
|
* main/strongswan: rebuild against libressl 2.5Natanael Copa2017-04-181-1/+1
|
* main/strongswan: upgrade to 5.5.2Timo Teräs2017-03-284-73/+54
|
* main/strongswan: fix libressl support, remove deprecated patchTimo Teräs2016-11-073-62/+200
|
* main/strongswan: upgrade to 5.5.1Timo Teräs2016-10-312-22/+8
|
* [various] rename dependency python to python2Jakub Jirutka2016-10-261-1/+1
|
* main/strongswan: build against libresslNatanael Copa2016-10-102-2/+19
|
* main/strongswan: upgrade to 5.5.0Timo Teräs2016-08-187-198/+200
|
* main/[various]: bump pkgrel for pre-install fixesPrzemyslaw Pawelczyk2016-04-251-1/+1
|
* Reorder arguments passed to addgroup/adduser in scripts.Przemyslaw Pawelczyk2016-04-251-1/+1
| | | | | | | Now all invocations have following order of arguments (if present): addgroup -S -g ... GROUP adduser -S -u ... -D -H -h ... -s ... -G ... -g ... USER
* Improve consistency of scripts using adduser/addgroup.Przemyslaw Pawelczyk2016-04-251-6/+2
| | | | | | | | | | | | Following rules have been applied: - script starts with shebang !#/bin/sh followed by blank line, - script ends with exit 0 prepended by blank line, - only stderr of adduser, addgroup or passwd is redirected to /dev/null, - getent passwd/group instances has been removed, - manual checking of file and group existence has been removed, - `|| true` instances has been removed. Comments and line wrapping have been preserved.
* Add -g option (GECOS/comment) to adduser in scripts.Przemyslaw Pawelczyk2016-04-251-1/+1
| | | | | | This way we can avoid ugly default: Linux user,,,
* main/strongswan: upgrade to 5.4.0Timo Teräs2016-03-267-108/+114
|
* main/strongswan: remove unnecessary openssl dependencyTimo Teräs2016-03-111-2/+2
| | | | | no script requires openssl tool, the relevant openssl libraries are pulled in automatically by abuild.
* main/strongswan: rename init.d status to fullstatusTimo Teräs2016-01-063-10/+13
| | | | | preserve 'status' action as per openrc standard. renamed to fullstatus similar to apache2. ref #4979
* main/strongswan: upgrade to 5.3.5Timo Teräs2015-11-281-4/+4
|
* main/strongswan: security upgrade to 5.3.4 (CVE-2015-8023)Timo Teräs2015-11-196-63/+69
|
* main/strongswan: build fixCarlo Landmeter2015-11-101-3/+4
|
* don't prefix GPL version number with a dashSören Tempel2015-10-031-1/+1
| | | | | This conforms to wiki documentation regarding package creation: http://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package#license
* main/strongswan: upgrade to 5.3.3author Timo Teräs timo.teras@iki.fi 1442826138 +03002015-09-2136-2777/+175
| | | | remove upstreamed patches; rebase the rest
* Do not delete *.la files manuallyBartłomiej Piotrowski2015-09-101-2/+0
| | | | | Since abuild v2.22.0, these are removed automatically unless 'libtool' option has been specified.
* main/strongswan: minor update to patchesTimo Teräs2015-08-064-70/+128
| | | | | - take the multiple CA fixes from upstream git branch - add more child_sa states that can be monitored
* main/strongswan: bump pkgrelTimo Teräs2015-08-011-1/+1
|
* main/strongswan: additional fixesTimo Teräs2015-08-015-1/+201
| | | | | | - python is needed to prepare config file templates, ref #4484 - three cherry-picks from upstream git master and merge pending branches - add patch to fix connection authentication when multiple CAs are allowed
* main/strongswan: cherry-pick fix from upstreamTimo Teräs2015-07-292-1/+35
|
* main/strongswan: cherry-pick upstream fixesTimo Teräs2015-07-2833-193/+1872
| | | | | | also fixes a minor memory leak in patch 1001 (the offending hunk is now just deleted, as other upstream commits fixed the issue it tried to address)
* main/strongswan: fix invalid read in internal printfTimo Teräs2015-07-262-1/+26
|
* main/strongswan: add priorization for ikev1 messagesTimo Teräs2015-07-172-1/+30
|
* main/strongswan: add missing patchesTimo Teräs2015-07-173-0/+565
|
* amin/strongswan: upstream patch for applying limits to initiated connectionsTimo Teräs2015-07-175-79/+96
|
* main/strongswan: cherry-pick netlink buffer size fixes from upstreamTimo Teräs2015-07-168-21/+119
| | | | | and rename the patches so that we have groups for upstream cherry-picks, patches we want to upstream, and locally carried patches.
* main/strongswan: ikev1 grekeyTimo Teräs2015-07-132-1/+512
| | | | | interoperability fix to work with Alpine patched ipsec-tools (will probably be removed after a migration period)
* main/strongswan: rebuild against openssl 1.0.2cBartłomiej Piotrowski2015-07-031-1/+1
|
* main/strongswan: security upgrade to 5.3.2 (CVE-2015-4171)Timo Teräs2015-06-112-46/+6
| | | | | This also removes the GRE key patch -- it was incomplete and does not fully fix the issues.
* main/strongswan: don't set gre ports for SPDsTimo Teräs2015-06-052-1/+41
| | | | | workaround for certain dmvpn issues due to not supporting grekey handling in charon.
* main/strongswan: add patches for quagga/nrhpd supportTimo Teräs2015-06-045-1/+968
|
* main/strongswan: security upgrade to 5.3.1 (CVE-2015-3991)Timo Teräs2015-06-041-10/+12
|
* main/strongswan: run as non-rootTimo Teräs2015-05-014-7/+57
| | | | | | | | | | | | Make charon use 'ipsec' user and group, and enable the libcap support as few capabilities need to be retained for configuring IPsec SAs in to kernel. This also introduces charon.initd which starts charon daemon only and uses swanctl for configuration. It is a little bit more light weight than running the 'starter' which seems to be deprecated. Also the config format is completely different, but more flexible and extensive.
* main/*: replace all sbin/runscript with sbin/openrc-runNatanael Copa2015-04-282-5/+5
|
* main/strongswan: upgrade to 5.3.0Timo Teräs2015-04-071-4/+4
|
* main/strongswan: security upgrade to 5.2.2 (CVE-2014-9221)Timo Teräs2015-01-301-5/+5
|
* main/strongswan: enable EAP TLSNatanael Copa2015-01-011-1/+2
|
* main/strongswan: linux-headers build fixNatanael Copa2015-01-011-1/+1
|
* main/strongswan: enable vici and swanctlTimo Teräs2014-08-201-1/+3
|
* main/strongswan: upgrade to 5.2.0Timo Teräs2014-08-061-6/+4
|