[ol8_appstream] libreswan-3.32-7.0.1.el8_3.aarch64

Name:	libreswan
Version:	3.32
Release:	7.0.1.el8_3
Architecture:	aarch64
Group:	Unspecified
Size:	5068010
License:	GPLv2
RPM:	libreswan-3.32-7.0.1.el8_3.aarch64.rpm
Source RPM:	libreswan-3.32-7.0.1.el8_3.src.rpm
Build Date:	Tue Nov 10 2020
Build Host:	ca-buildarm06.us.oracle.com
Vendor:	Oracle America
URL:	https://libreswan.org/
Summary:	IPsec implementation with IKEv1 and IKEv2 keying protocols
Description:	Libreswan is a free implementation of IKE/IPsec for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Libreswan. Libreswan also supports IKEv2 (RFC7296) and Secure Labeling Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Changelog (Show File list) (Show related packages)

Mon Nov 09 2020 EL Errata <el-errata_ww@oracle.com> - 3.32-7.0.1
```
- Add libreswan-oracle.patch to detect Oracle Linux distro
```

Thu Sep 24 2020 Paul Wouters <pwouters@redhat.com> - 3.32-7

- Resolves: rhbz#1882449 Labeled IPsec not working [rhel-8.3.0.z]

Wed Jul 29 2020 Paul Wouters <pwouters@redhat.com> - 3.32-6

- Resolves: rhbz#1861360 authby=rsasig must not imply usage of rsa-pss

Wed Jul 22 2020 Paul Wouters <pwouters@redhat.com> - 3.32-5

- Resolves: rhbz#1820206 Rebase to libreswan 3.32 [rebuild for USE_NSS_PRF]

Wed Jul 01 2020 Paul Wouters <pwouters@redhat.com> - 3.32-4

- Resolves: rhbz#1544463 ipsec service does not work correctly when seccomp filtering is enabled

Wed Jun 17 2020 Paul Wouters <pwouters@redhat.com> - 3.32-3

- Resolves: rhbz#1842597 regression: libreswan does not send PLUTO_BYTES env variables to updown script
- Resolves: rhbz#1847766 subsequent xfrmi interfaces configured outside of libreswan are not recognised properly
- Resolves: rhbz#1840212 protect libreswan against unannounced nss ABI change

Thu Jun 11 2020 Paul Wouters <pwouters@redhat.com> - 3.32-2

- Resolves: rhbz#1820206 Rebase to libreswan 3.32 [addconn fix]

Thu Apr 30 2020 Paul Wouters <pwouters@redhat.com> - 3.32-1

- Resolves: rhbz#1820206 Rebase to libreswan 3.32
- Resolves: rhbz#1816265 Use NSS to check whether FIPS mode is enabled
- Resolves: rhbz#1826337 libreswan in FIPS mode rejects ECDSA keys based on faulty RSA key size check being applied

Tue Aug 13 2019 Paul Wouters <pwouters@redhat.com> - 3.29-6

- Resolves: rhbz#1714331 support NSS based IKE KDF's [require updated nss for rhbz 1738689, memleak fix]

Thu Aug 08 2019 Paul Wouters <pwouters@redhat.com> - 3.29-5

- Resolves: rhbz#1714331 support NSS based IKE KDF's so libreswan does not need FIPS certification