Your message dated Tue, 12 Aug 2008 18:32:20 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#494678: fixed in strongswan 4.2.4-3
has caused the Debian Bug report #494678,
regarding strongswan: configure option --enable-p2p changed to
--enable-mediation
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
494678: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494678
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: strongswan
Version: 4.2.4-2
Severity: important
Tags: patch
Hello!
Some time ago the configuration option
--enable-p2p
has changed to
--enable-mediation
In the debian/rules file there is still the old option. There is no warning
about this
error and the peer to peer service is not compiled in.
Best regards,
Thomas Kallenberg
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.26 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
#!/usr/bin/make -f
# Sample debian/rules that uses debhelper.
# GNU copyright 1997 to 1999 by Joey Hess.
# Uncomment this to turn on verbose mode.
#export DH_VERBOSE=1
export DH_OPTIONS
# this is a security-critical package, set all the options we can
export DEB_BUILD_HARDENING=1
CONFIGUREARGS := --prefix=/usr --sysconfdir=/etc --localstatedir=/var \
--libexecdir=/usr/lib \
--enable-http --enable-ldap \
--enable-nonblocking --enable-thread \
--enable-smartcard --enable-cisco-quirks \
--with-default-pkcs11=/usr/lib/opensc-pkcs11.so \
--enable-xml \
--enable-mediation --enable-manager \
--enable-openssl
# Could enable --enable-nat-transport, but this is actually insecure,
# so don't!
# And for --enable-eap-sim we would need the library, which we don't
# have right now.
DEB_BUILD_ARCH_CPU ?=$(shell dpkg-architecture -qDEB_BUILD_ARCH_CPU)
#the padlock plugin only makes sense on i386
ifeq ($(DEB_BUILD_ARCH_CPU),i386)
CONFIGUREARGS += --enable-padlock
endif
configure: configure-stamp
configure-stamp: patch
dh_testdir
# Add here commands to configure the package.
./configure $(CONFIGUREARGS)
touch configure-stamp
patch:
dh_testdir
dpatch apply-all
unpatch:
dpatch deapply-all
build: build-stamp
build-stamp: configure-stamp
$(MAKE)
touch build-stamp
clean: unpatch
dh_testdir
dh_testroot
rm -f build-stamp configure-stamp
-$(MAKE) clean
#-$(MAKE) -C programs/fswcert/ clean
# after a make clean, no binaries _should_ be left, but ....
-find $(CURDIR) -name "*.o" | xargs --no-run-if-empty rm
-find $(CURDIR)/lib/libcrypto -name "*.a" | xargs --no-run-if-empty rm
# Really clean (#356716)
# This is a hack: should be better implemented
rm -f lib/libstrongswan/libstrongswan.a || true
rm -f lib/libstrongswan/liboswlog.a || true
# just in case something went wrong
rm -f $(CURDIR)/debian/ipsec.secrets
# and make sure that template are up-to-date
debconf-updatepo
dh_clean
install-strongswan: DH_OPTIONS=-a
install-strongswan: build-stamp
dh_testdir
dh_testroot
dh_installdirs
# Add here commands to install the package into debian/tmp.
$(MAKE) install DESTDIR=$(CURDIR)/debian/strongswan
install --mode=0600 $(CURDIR)/debian/ipsec.secrets.proto
$(CURDIR)/debian/strongswan/etc/ipsec.secrets
# also "patch" ipsec.conf to include the debconf-managed file
echo >> $(CURDIR)/debian/strongswan/etc/ipsec.conf
echo "include /var/lib/strongswan/ipsec.conf.inc" >>
$(CURDIR)/debian/strongswan/etc/ipsec.conf
# and to enable both IKEv1 and IKEv2 by default
sed -r 's/^[ \t]+# *plutostart=(yes|no) */\tplutostart=yes/;s/^[ \t]+#
*charonstart=(yes|no) */\tcharonstart=yes/' <
$(CURDIR)/debian/strongswan/etc/ipsec.conf >
$(CURDIR)/debian/strongswan/etc/ipsec.conf.tmp
mv $(CURDIR)/debian/strongswan/etc/ipsec.conf.tmp
$(CURDIR)/debian/strongswan/etc/ipsec.conf
# this is handled by update-rc.d
rm -rf $(CURDIR)/debian/strongswan/etc/rc?.d
dh_installdocs -pstrongswan -n
# change the paths in the installed doc files (but only in regular
# files, not in links to the outside of the build tree !)
# TODO: check if we still need this
( cd $(CURDIR)/debian/strongswan/; \
for f in `grep "/usr/local/" --recursive --files-with-match *`; \
do \
if [ -f $$f -a ! -L $$f ]; then \
cp $$f $$f.old; \
sed 's/\/usr\/local\//\/usr\//' $$f.old > $$f; \
rm $$f.old; \
fi; \
done )
# the logcheck ignore files
install -D --mode=0600 $(CURDIR)/debian/logcheck.ignore.paranoid
$(CURDIR)/debian/strongswan/etc/logcheck/ignore.d.paranoid/strongswan
install -D --mode=0600 $(CURDIR)/debian/logcheck.ignore.server
$(CURDIR)/debian/strongswan/etc/logcheck/ignore.d.server/strongswan
install -D --mode=0600 $(CURDIR)/debian/logcheck.ignore.server
$(CURDIR)/debian/strongswan/etc/logcheck/ignore.d.workstation/strongswan
install -D --mode=0600 $(CURDIR)/debian/logcheck.violations.ignore
$(CURDIR)/debian/strongswan/etc/logcheck/violations.ignore.d/strongswan
# set permissions on ipsec.secrets
chmod 600 $(CURDIR)/debian/strongswan/etc/ipsec.secrets
#chmod 644 $(CURDIR)/debian/strongswan/etc/ipsec.conf
chmod 700 -R $(CURDIR)/debian/strongswan/etc/ipsec.d/private/
# don't know why they come with +x set by default...
#chmod 644 $(CURDIR)/debian/strongswan/etc/ipsec.d/policies/*
#chmod 644 $(CURDIR)/debian/strongswan/etc/ipsec.d/examples/*
# more lintian cleanups
find $(CURDIR)/debian/strongswan -name ".cvsignore" | xargs
--no-run-if-empty rm -f
find $(CURDIR)/debian/strongswan -name "/.svn/" | xargs
--no-run-if-empty rm -rf
# and lintian overrides
install --mode=0644 $(CURDIR)/debian/strongswan.lintian-overrides
$(CURDIR)/debian/strongswan/usr/share/lintian/overrides/strongswan
binary-common:
dh_testdir
dh_testroot
dh_installinit --name=ipsec
dh_installdebconf
dh_installchangelogs NEWS
dh_link
dh_strip
dh_compress
dh_fixperms -X etc/ipsec.secrets -X etc/ipsec.d
dh_makeshlibs
dh_installdeb
dh_shlibdeps
dh_gencontrol
dh_md5sums
dh_builddeb
# Build architecture-independent files here.
binary-indep:
$(MAKE) -f debian/rules binary-common DH_OPTIONS=-i
# Build architecture-dependent files here.
binary-arch: install-strongswan
$(MAKE) -f debian/rules binary-common DH_OPTIONS=-a
# Any other binary targets build just one binary package at a time.
binary-%: build-stamp install-strongswan
make -f debian/rules binary-common DH_OPTIONS=-p$*
binary: binary-indep binary-arch
..PHONY: clean binary-indep binary-arch
--- End Message ---
--- Begin Message ---
Source: strongswan
Source-Version: 4.2.4-3
We believe that the bug you reported is fixed in the latest version of
strongswan, which is due to be installed in the Debian FTP archive:
strongswan_4.2.4-3.diff.gz
to pool/main/s/strongswan/strongswan_4.2.4-3.diff.gz
strongswan_4.2.4-3.dsc
to pool/main/s/strongswan/strongswan_4.2.4-3.dsc
strongswan_4.2.4-3_i386.deb
to pool/main/s/strongswan/strongswan_4.2.4-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Rene Mayrhofer <[EMAIL PROTECTED]> (supplier of updated strongswan package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 12 Aug 2008 20:08:26 +0200
Source: strongswan
Binary: strongswan
Architecture: source i386
Version: 4.2.4-3
Distribution: unstable
Urgency: low
Maintainer: Rene Mayrhofer <[EMAIL PROTECTED]>
Changed-By: Rene Mayrhofer <[EMAIL PROTECTED]>
Description:
strongswan - IPSec utilities for strongSwan
Closes: 494678
Changes:
strongswan (4.2.4-3) unstable; urgency=low
.
* Changed configure option to build peer-to-peer service again.
Closes: #494678: strongswan: configure option --enable-p2p changed to
--enable-mediation
Checksums-Sha1:
3eec711ab0ec5f593c35bb0fdb36b10778a2a52c 1297 strongswan_4.2.4-3.dsc
0ed03476f05229f2cbc42b9d037d61e42f1d812c 55038 strongswan_4.2.4-3.diff.gz
174142e33cb664c67b2d376b76637c23d3f718c8 1383790 strongswan_4.2.4-3_i386.deb
Checksums-Sha256:
b72860093d121a37935f0697abd2454f3c4d80126da93cd76f8e23402143fbb6 1297
strongswan_4.2.4-3.dsc
1ece694ff95f9bf6e9d81df5541c088d76521f69edc452d4fcff2d674f55ea0a 55038
strongswan_4.2.4-3.diff.gz
9d63a06689da76f32c70077fb9d0c79a9b788da92b6e696ade5d51de0a115ec1 1383790
strongswan_4.2.4-3_i386.deb
Files:
86e57a472918fd656623e010bf3fdf7c 1297 net optional strongswan_4.2.4-3.dsc
b7b53234b7ec83a81676044aa3d089aa 55038 net optional strongswan_4.2.4-3.diff.gz
8625e0205911fff29c9f177c60f18eb3 1383790 net optional
strongswan_4.2.4-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkih1mUACgkQq7SPDcPCS94RgQCfabRchSFJlv1cBMwcNs4+8dn1
/wcAoM0chLlc4LnpiwziE/2iNCVQUeCF
=DYw/
-----END PGP SIGNATURE-----
--- End Message ---
