ipsec-tools-0.8.2-5.35 RPM for ppc64le

From OpenSuSE Leap 15.5 for ppc64le

This is the IPsec-Tools package.  This package is needed to really make
use of the IPsec functionality in the version 2.5 and 2.6 Linux
kernels.  This package builds:
  - libipsec, a PFKeyV2 library
  - setkey, a program to directly manipulate policies and SAs
  - racoon, an IKEv1 keying daemon
These sources can be found at the IPsec-Tools home page at:
http://ipsec-tools.sourceforge.net/

Provides

• ipsec-tools
• config(ipsec-tools)
• ipsec-tools(ppc-64)
• racoon

Requires

• /bin/sh
• /bin/sh
• /bin/sh
• /bin/sh
• config(ipsec-tools) = 0.8.2-5.35
• coreutils
• diffutils
• fillup
• grep
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libcrypt.so.1()(64bit)
• libcrypt.so.1(GLIBC_2.17)(64bit)
• libcrypto.so.1.1()(64bit)
• libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)
• libfl.so.2()(64bit)
• libgssapi_krb5.so.2()(64bit)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)
• libldap_r-2.4.so.2()(64bit)
• libpam.so.0()(64bit)
• libpam.so.0(LIBPAM_1.0)(64bit)
• libreadline.so.7()(64bit)
• libresolv.so.2()(64bit)
• libresolv.so.2(GLIBC_2.17)(64bit)
• libselinux.so.1()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsXz) <= 5.2-1
• systemd
• systemd
• systemd
• systemd

License

BSD-3-Clause

Changelog

* Fri Jan 26 2018 jbohac@suse.com
  - avoid-dos-with-fragment-out-of-order.patch (bsc#1047443,
    CVE-2016-10396)
* Wed Nov 29 2017 meissner@suse.com
  - ipsec-tools-openssl1.1.patch: build against openssl 1.1 (bsc#1066950)
* Thu Nov 23 2017 rbrown@suse.com
  - Replace references to /var/adm/fillup-templates with new
    %_fillupdir macro (boo#1069468)
* Sat Sep 02 2017 chris@computersalat.de
  - add reminder for racoon-setkey.service to setkey.conf
* Wed Aug 05 2015 meissner@suse.com
  - do not run %fdupes over the whole tree, to avoid symlinking
    /etc/ config files and /usr/ sample configs.
* Wed Jun 10 2015 chris@computersalat.de
  - rework racoon.psk.patch
    * comment example entry (its not a backdoor just an example)
* Thu Jun 04 2015 tchvatal@suse.com
  - Cleanup most of the rpmlint warnings to have it in better shape
* Thu Apr 23 2015 meissner@suse.com
  - racoon-fips-rsa.patch: Use a default exponent of at least 65537
    (minimum FIPS required public exponent)
  - racoon-no-md5.patch: replace one md5 usage by sha1 in an internal
    hash table. Allow md5 usage for an external visible interface,
    as it is also hashing only.
* Thu Jan 22 2015 p.drouand@gmail.com
  - Update to version 0.8.2
    * Fix admin port establish-sa for tunnel mode SAs
    * Fix source port selection regression from version 0.8.1
    * Various logging improvements
    * Additional compliance and build fixes
  - Changes from version 0.8.1
    * Improved X.509 subject name comparation
    * Relax DPD cookie check for Cisco IOS compatibility
    * Allow simplified syntax for inherited remote blocks
    * Never shring pfkey socket buffer
    * Privilege separation child process exit fix
    * Multiple memory allocation and use-after-free fixes
  - Remove some obsolete macros
* Tue Jul 08 2014 meissner@suse.com
  - ipsec-tools-0.8.0-certasn1txtbroken.patch:
    disable the certificate test in src/racoon/eaytest.c as the
    internal X.509 ASN.1 string presentation was changed in openssl
    and the test currently does not work.
* Thu Mar 13 2014 jbohac@suse.cz
  - add RemainAfterExit=yes to the .service file (bnc#856625)
* Fri Jan 10 2014 jbohac@suse.cz
  - upgrade to version 0.8.0:
    o Fix authentication method ambiguity with kerberos and xauth
    o RFC2253 compliant escaping of asn1dn identifiers (Cyrus Rahman)
    o Local address code rewrite to speed things up
    o Improved MIPv6 support (Arnaud Ebalard)
    o ISAKMP SA (phase1) rekeying
    o Improved scheduler (faster algorithm, support monotonic clock)
    o Handle RESPONDER-LIFETIME in quick mode
    o Handle INITIAL-CONTACT in from main mode too
    o Rewritten event handling framework for admin port
    o Ability to initiate IPsec SA through admin port
    o NAT-T Original Address handling (transport mode NAT-T support)
    o clean NAT-T - PFkey support
    o support for multiple anonymous remoteconfs
    o Remove various obsolete configuration options
    o A lot of other bug fixes, performance improvements and clean ups
  - Remove ipsec-tools-linux-3.7-compat.diff which caused bnc#867055
    by including wrong headers; fix by installing
    linux-glibc-devel and including /usr/include for kernel headers
* Thu Sep 19 2013 crrodriguez@opensuse.org
  - remove unused racoon.init from the package, it was
    already removed from the spec file in the previous change.
* Thu Sep 19 2013 crrodriguez@opensuse.org
  - Add systemd support, systemctl enable racoon.service
    also enables helper optional service racoon-setkey
  - /etc/sysconfig/racoon was never created, fix that.
* Thu Jan 31 2013 mlin@suse.com
  - Add ipsec-tools-linux-3.7-compat.diff(partly from openwrt)
    * since pfkeyv2.h moved to include/uapi/linux as
      http://lwn.net/Articles/507794/ explained, make the compiler found
      header in valid path. there is a discussion about this issue at
      https://dev.openwrt.org/ticket/12813
* Wed Oct 31 2012 mvyskocil@suse.com
  - unify the permissions of psk.txt to avoid false duplicate warnings
    from fdupes (bnc#784670)
* Tue Jan 31 2012 meissner@suse.de
  - remove suse_update_config macro usage
* Sat Oct 15 2011 coolo@suse.com
  - add libtool as buildrequire to make the spec file more reliable
* Sun Sep 04 2011 mkubecek@suse.cz
  - create /var/run/racoon in the init script rather than including
    it in the package as it doesn't work if /var/run is on tmpfs
    (bnc#710277)
* Sun May 15 2011 chris@computersalat.de
  - remove Author from description
  - add racoon.psk patch
* Wed May 04 2011 idoenmez@novell.com
  - Add ipsec-tools-0.7.3-linkerflag.patch: remove wrong linker flag
  - Add ipsec-tools-0.7.2-nodevel.patch: don't install development
    files, instead of manually removing them in the spec file.
  - Drop no_werror.patch: Remove Werror flag by sed, its all over the
    configure file, old patch was incomplete anyway.
* Tue Nov 03 2009 coolo@novell.com
  - updated patches to apply with fuzz=0
* Tue Oct 06 2009 chris@computersalat.de
  - cleanup spec
    o sorted sections
    o simplify clean
    o sort install section
    o sort files section
  - added missing /etc/racoon/cert DIR
* Fri Sep 18 2009 chris@computersalat.de
  - cleanup spec
    o sorted TAGS
    o added configure macro
  - rpmlint
    o added fdupes
  - fix selinux build
    o if suse_version >= 1100
* Thu Jun 11 2009 jbohac@suse.cz
  - upgrade to 0.7.3
  - integrated security patch
  - enabled selinux support (--enable-security-context=yes)
* Thu Jun 11 2009 jbohac@suse.cz
  - fix_sockaddr_overflow_in_ipsec_doi.c.diff (bnc#506710)
* Wed May 06 2009 jbohac@suse.cz
  - Upgrade to 0.7.2
  - fixed some rpmlint warnings/errors
  - racoon.conf_macros.patch updates the .in file, not the result
  - added /etc/pam.d/racoon
  - added --with-libldap

Files

/etc/pam.d/racoon
/etc/racoon
/etc/racoon/cert
/etc/racoon/psk.txt
/etc/racoon/racoon.conf
/etc/racoon/setkey.conf
/run/racoon
/usr/lib/systemd/system/racoon-setkey.service
/usr/lib/systemd/system/racoon.service
/usr/lib/tmpfiles.d/racoon.conf
/usr/sbin/plainrsa-gen
/usr/sbin/racoon
/usr/sbin/racoonctl
/usr/sbin/rcracoon
/usr/sbin/rcracoon-setkey
/usr/sbin/setkey
/usr/share/doc/packages/ipsec-tools
/usr/share/doc/packages/ipsec-tools/ChangeLog
/usr/share/doc/packages/ipsec-tools/NEWS
/usr/share/doc/packages/ipsec-tools/README
/usr/share/doc/packages/ipsec-tools/examples
/usr/share/doc/packages/ipsec-tools/examples/racoon
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/psk.txt
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/psk.txt.in
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/psk.txt.sample
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.in
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.sample
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.sample-gssapi
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.sample-inherit
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.sample-natt
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/racoon.conf.sample-plainrsa
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/README
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/client
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/client/phase1-down.sh
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/client/phase1-up.sh
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/client/racoon.conf
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/server
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/server/racoon.conf
/usr/share/doc/packages/ipsec-tools/examples/racoon/samples/roadwarrior/server/racoon.conf-radius
/usr/share/doc/packages/ipsec-tools/examples/setkey
/usr/share/doc/packages/ipsec-tools/examples/setkey/sample-policy01.cf
/usr/share/doc/packages/ipsec-tools/examples/setkey/sample-policy02.cf
/usr/share/doc/packages/ipsec-tools/examples/setkey/sample.cf
/usr/share/fillup-templates/sysconfig.racoon
/usr/share/man/man5/racoon.conf.5.gz
/usr/share/man/man8/plainrsa-gen.8.gz
/usr/share/man/man8/racoon.8.gz
/usr/share/man/man8/racoonctl.8.gz
/usr/share/man/man8/setkey.8.gz

Generated by rpm2html 1.8.1

Fabrice Bellet, Mon Feb 9 16:16:51 2026