Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | main/strongswan: upgrade to 5.6.1 | Timo Teräs | 2017-11-20 | 2 | -60/+62 |
| | |||||
* | main/*: fix homepage url and source from http:// to https:// | Jakub Jirutka | 2017-11-19 | 1 | -1/+1 |
| | | | | | | | Most of these updates is based on data from https://repology.org/, detection based on permanent redirect from http:// to https://. $source urls are updated when they contain $url as substring. | ||||
* | main/strongswan: rebuild against libressl-2.6 | Natanael Copa | 2017-11-09 | 1 | -1/+1 |
| | |||||
* | main/strongswan: security upgrade to 5.6.0 | Timo Teräs | 2017-08-23 | 2 | -512/+3 |
| | | | | | | CVE-2017-11185 remove also the ikev1 gre-key patch as obsolete | ||||
* | main/strongswan: add secinfo, modernize APKBUILD | Leonardo Arena | 2017-06-15 | 1 | -12/+17 |
| | |||||
* | main/strongswan: upgrade to 5.5.3 | Natanael Copa | 2017-05-30 | 1 | -3/+3 |
| | |||||
* | main/strongswan: rebuild against libressl 2.5 | Natanael Copa | 2017-04-18 | 1 | -1/+1 |
| | |||||
* | main/strongswan: upgrade to 5.5.2 | Timo Teräs | 2017-03-28 | 4 | -73/+54 |
| | |||||
* | main/strongswan: fix libressl support, remove deprecated patch | Timo Teräs | 2016-11-07 | 3 | -62/+200 |
| | |||||
* | main/strongswan: upgrade to 5.5.1 | Timo Teräs | 2016-10-31 | 2 | -22/+8 |
| | |||||
* | [various] rename dependency python to python2 | Jakub Jirutka | 2016-10-26 | 1 | -1/+1 |
| | |||||
* | main/strongswan: build against libressl | Natanael Copa | 2016-10-10 | 2 | -2/+19 |
| | |||||
* | main/strongswan: upgrade to 5.5.0 | Timo Teräs | 2016-08-18 | 7 | -198/+200 |
| | |||||
* | main/[various]: bump pkgrel for pre-install fixes | Przemyslaw Pawelczyk | 2016-04-25 | 1 | -1/+1 |
| | |||||
* | Reorder arguments passed to addgroup/adduser in scripts. | Przemyslaw Pawelczyk | 2016-04-25 | 1 | -1/+1 |
| | | | | | | | Now all invocations have following order of arguments (if present): addgroup -S -g ... GROUP adduser -S -u ... -D -H -h ... -s ... -G ... -g ... USER | ||||
* | Improve consistency of scripts using adduser/addgroup. | Przemyslaw Pawelczyk | 2016-04-25 | 1 | -6/+2 |
| | | | | | | | | | | | | Following rules have been applied: - script starts with shebang !#/bin/sh followed by blank line, - script ends with exit 0 prepended by blank line, - only stderr of adduser, addgroup or passwd is redirected to /dev/null, - getent passwd/group instances has been removed, - manual checking of file and group existence has been removed, - `|| true` instances has been removed. Comments and line wrapping have been preserved. | ||||
* | Add -g option (GECOS/comment) to adduser in scripts. | Przemyslaw Pawelczyk | 2016-04-25 | 1 | -1/+1 |
| | | | | | | This way we can avoid ugly default: Linux user,,, | ||||
* | main/strongswan: upgrade to 5.4.0 | Timo Teräs | 2016-03-26 | 7 | -108/+114 |
| | |||||
* | main/strongswan: remove unnecessary openssl dependency | Timo Teräs | 2016-03-11 | 1 | -2/+2 |
| | | | | | no script requires openssl tool, the relevant openssl libraries are pulled in automatically by abuild. | ||||
* | main/strongswan: rename init.d status to fullstatus | Timo Teräs | 2016-01-06 | 3 | -10/+13 |
| | | | | | preserve 'status' action as per openrc standard. renamed to fullstatus similar to apache2. ref #4979 | ||||
* | main/strongswan: upgrade to 5.3.5 | Timo Teräs | 2015-11-28 | 1 | -4/+4 |
| | |||||
* | main/strongswan: security upgrade to 5.3.4 (CVE-2015-8023) | Timo Teräs | 2015-11-19 | 6 | -63/+69 |
| | |||||
* | main/strongswan: build fix | Carlo Landmeter | 2015-11-10 | 1 | -3/+4 |
| | |||||
* | don't prefix GPL version number with a dash | Sören Tempel | 2015-10-03 | 1 | -1/+1 |
| | | | | | This conforms to wiki documentation regarding package creation: http://wiki.alpinelinux.org/wiki/Creating_an_Alpine_package#license | ||||
* | main/strongswan: upgrade to 5.3.3 | author Timo Teräs timo.teras@iki.fi 1442826138 +0300 | 2015-09-21 | 36 | -2777/+175 |
| | | | | remove upstreamed patches; rebase the rest | ||||
* | Do not delete *.la files manually | Bartłomiej Piotrowski | 2015-09-10 | 1 | -2/+0 |
| | | | | | Since abuild v2.22.0, these are removed automatically unless 'libtool' option has been specified. | ||||
* | main/strongswan: minor update to patches | Timo Teräs | 2015-08-06 | 4 | -70/+128 |
| | | | | | - take the multiple CA fixes from upstream git branch - add more child_sa states that can be monitored | ||||
* | main/strongswan: bump pkgrel | Timo Teräs | 2015-08-01 | 1 | -1/+1 |
| | |||||
* | main/strongswan: additional fixes | Timo Teräs | 2015-08-01 | 5 | -1/+201 |
| | | | | | | - python is needed to prepare config file templates, ref #4484 - three cherry-picks from upstream git master and merge pending branches - add patch to fix connection authentication when multiple CAs are allowed | ||||
* | main/strongswan: cherry-pick fix from upstream | Timo Teräs | 2015-07-29 | 2 | -1/+35 |
| | |||||
* | main/strongswan: cherry-pick upstream fixes | Timo Teräs | 2015-07-28 | 33 | -193/+1872 |
| | | | | | | also fixes a minor memory leak in patch 1001 (the offending hunk is now just deleted, as other upstream commits fixed the issue it tried to address) | ||||
* | main/strongswan: fix invalid read in internal printf | Timo Teräs | 2015-07-26 | 2 | -1/+26 |
| | |||||
* | main/strongswan: add priorization for ikev1 messages | Timo Teräs | 2015-07-17 | 2 | -1/+30 |
| | |||||
* | main/strongswan: add missing patches | Timo Teräs | 2015-07-17 | 3 | -0/+565 |
| | |||||
* | amin/strongswan: upstream patch for applying limits to initiated connections | Timo Teräs | 2015-07-17 | 5 | -79/+96 |
| | |||||
* | main/strongswan: cherry-pick netlink buffer size fixes from upstream | Timo Teräs | 2015-07-16 | 8 | -21/+119 |
| | | | | | and rename the patches so that we have groups for upstream cherry-picks, patches we want to upstream, and locally carried patches. | ||||
* | main/strongswan: ikev1 grekey | Timo Teräs | 2015-07-13 | 2 | -1/+512 |
| | | | | | interoperability fix to work with Alpine patched ipsec-tools (will probably be removed after a migration period) | ||||
* | main/strongswan: rebuild against openssl 1.0.2c | Bartłomiej Piotrowski | 2015-07-03 | 1 | -1/+1 |
| | |||||
* | main/strongswan: security upgrade to 5.3.2 (CVE-2015-4171) | Timo Teräs | 2015-06-11 | 2 | -46/+6 |
| | | | | | This also removes the GRE key patch -- it was incomplete and does not fully fix the issues. | ||||
* | main/strongswan: don't set gre ports for SPDs | Timo Teräs | 2015-06-05 | 2 | -1/+41 |
| | | | | | workaround for certain dmvpn issues due to not supporting grekey handling in charon. | ||||
* | main/strongswan: add patches for quagga/nrhpd support | Timo Teräs | 2015-06-04 | 5 | -1/+968 |
| | |||||
* | main/strongswan: security upgrade to 5.3.1 (CVE-2015-3991) | Timo Teräs | 2015-06-04 | 1 | -10/+12 |
| | |||||
* | main/strongswan: run as non-root | Timo Teräs | 2015-05-01 | 4 | -7/+57 |
| | | | | | | | | | | | | Make charon use 'ipsec' user and group, and enable the libcap support as few capabilities need to be retained for configuring IPsec SAs in to kernel. This also introduces charon.initd which starts charon daemon only and uses swanctl for configuration. It is a little bit more light weight than running the 'starter' which seems to be deprecated. Also the config format is completely different, but more flexible and extensive. | ||||
* | main/*: replace all sbin/runscript with sbin/openrc-run | Natanael Copa | 2015-04-28 | 2 | -5/+5 |
| | |||||
* | main/strongswan: upgrade to 5.3.0 | Timo Teräs | 2015-04-07 | 1 | -4/+4 |
| | |||||
* | main/strongswan: security upgrade to 5.2.2 (CVE-2014-9221) | Timo Teräs | 2015-01-30 | 1 | -5/+5 |
| | |||||
* | main/strongswan: enable EAP TLS | Natanael Copa | 2015-01-01 | 1 | -1/+2 |
| | |||||
* | main/strongswan: linux-headers build fix | Natanael Copa | 2015-01-01 | 1 | -1/+1 |
| | |||||
* | main/strongswan: enable vici and swanctl | Timo Teräs | 2014-08-20 | 1 | -1/+3 |
| | |||||
* | main/strongswan: upgrade to 5.2.0 | Timo Teräs | 2014-08-06 | 1 | -6/+4 |
| |