Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package strongswan for openSUSE:Factory
checked in at 2022-03-11 21:41:06
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/strongswan (Old)
and /work/SRC/openSUSE:Factory/.strongswan.new.25692 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "strongswan"
Fri Mar 11 21:41:06 2022 rev:82 rq:960587 version:5.9.5
Changes:
--------
--- /work/SRC/openSUSE:Factory/strongswan/strongswan.changes 2022-02-04
00:45:55.753282247 +0100
+++ /work/SRC/openSUSE:Factory/.strongswan.new.25692/strongswan.changes
2022-03-11 21:41:11.442067128 +0100
@@ -1,0 +2,7 @@
+Thu Mar 3 14:49:26 UTC 2022 - Marcus Meissner <meiss...@suse.com>
+
+- Added prf-plus-modularization.patch that outsources the IKE
+ key derivation to openssl. (will be merged to 5.9.6)
+- package the kdf config, template and plugin
+
+-------------------------------------------------------------------
New:
----
prf-plus-modularization.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ strongswan.spec ++++++
--- /var/tmp/diff_new_pack.jpjbom/_old 2022-03-11 21:41:12.102067635 +0100
+++ /var/tmp/diff_new_pack.jpjbom/_new 2022-03-11 21:41:12.126067653 +0100
@@ -81,6 +81,7 @@
%endif
Patch5: 0005-ikev1-Don-t-retransmit-Aggressive-Mode-response.patch
Patch6: harden_strongswan.service.patch
+Patch7: prf-plus-modularization.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: bison
BuildRequires: curl-devel
@@ -269,6 +270,7 @@
> _fipscheck
%endif
%patch6 -p1
+%patch7 -p1
%build
CFLAGS="%{optflags} -W -Wall -Wno-pointer-sign -Wno-strict-aliasing
-Wno-unused-parameter"
@@ -676,6 +678,7 @@
%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/gmp.conf
%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/ha.conf
%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/hmac.conf
+%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/kdf.conf
%config(noreplace) %attr(600,root,root)
%{strongswan_configs}/charon/kernel-netlink.conf
%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/ldap.conf
%config(noreplace) %attr(600,root,root) %{strongswan_configs}/charon/led.conf
@@ -792,6 +795,7 @@
%{strongswan_plugins}/libstrongswan-gmp.so
%{strongswan_plugins}/libstrongswan-ha.so
%{strongswan_plugins}/libstrongswan-hmac.so
+%{strongswan_plugins}/libstrongswan-kdf.so
%{strongswan_plugins}/libstrongswan-kernel-netlink.so
%{strongswan_plugins}/libstrongswan-ldap.so
%{strongswan_plugins}/libstrongswan-led.so
@@ -896,6 +900,7 @@
%{strongswan_templates}/config/plugins/gmp.conf
%{strongswan_templates}/config/plugins/ha.conf
%{strongswan_templates}/config/plugins/hmac.conf
+%{strongswan_templates}/config/plugins/kdf.conf
%{strongswan_templates}/config/plugins/kernel-netlink.conf
%{strongswan_templates}/config/plugins/ldap.conf
%{strongswan_templates}/config/plugins/led.conf
@@ -957,6 +962,7 @@
%{strongswan_templates}/database/imv/data.sql
%{strongswan_templates}/database/imv/tables.sql
+
%if %{with nm}
%files nm
++++++ harden_strongswan.service.patch ++++++
--- /var/tmp/diff_new_pack.jpjbom/_old 2022-03-11 21:41:12.198067708 +0100
+++ /var/tmp/diff_new_pack.jpjbom/_new 2022-03-11 21:41:12.202067711 +0100
@@ -1,7 +1,7 @@
-Index: strongswan-5.9.3/init/systemd/strongswan.service.in
+Index: strongswan-5.9.5/init/systemd/strongswan.service.in
===================================================================
---- strongswan-5.9.3.orig/init/systemd/strongswan.service.in
-+++ strongswan-5.9.3/init/systemd/strongswan.service.in
+--- strongswan-5.9.5.orig/init/systemd/strongswan.service.in
++++ strongswan-5.9.5/init/systemd/strongswan.service.in
@@ -3,6 +3,17 @@ Description=strongSwan IPsec IKEv1/IKEv2
After=network-online.target
++++++ prf-plus-modularization.patch ++++++
++++ 15369 lines (skipped)
