[ol8_appstream] libreswan-3.29-7.0.1.el8_2.x86_64

Name:	libreswan
Version:	3.29
Release:	7.0.1.el8_2
Architecture:	x86_64
Group:	System Environment/Daemons
Size:	4266062
License:	GPLv2
RPM:	libreswan-3.29-7.0.1.el8_2.x86_64.rpm
Source RPM:	libreswan-3.29-7.0.1.el8_2.src.rpm
Build Date:	Tue May 12 2020
Build Host:	jenkins-10-147-72-125-4e268191-3cef-4232-83b4-22c6b4d50e84.appad1iad.osdevelopmeniad.oraclevcn.com
Vendor:	Oracle America
URL:	https://libreswan.org/
Summary:	IPsec implementation with IKEv1 and IKEv2 keying protocols
Description:	Libreswan is a free implementation of IKE/IPsec for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Libreswan. Libreswan also supports IKEv2 (RFC7296) and Secure Labeling Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Changelog (Show File list) (Show related packages)

Tue May 12 2020 EL Errata <el-errata_ww@oracle.com> - 3.29-7.0.1
```
- Add libreswan-oracle.patch to detect Oracle Linux distro
```

Wed Apr 29 2020 Paul Wouters <pwouters@redhat.com> - 3.29-7

- Resolves: rhbz#1814935 CVE-2020-1763 doS attack via malicious IKEv1 informational exchange message [rhel-8.2.0.z]

Tue Aug 13 2019 Paul Wouters <pwouters@redhat.com> - 3.29-6

- Resolves: rhbz#1714331 support NSS based IKE KDF's [require updated nss for rhbz 1738689, memleak fix]

Thu Aug 08 2019 Paul Wouters <pwouters@redhat.com> - 3.29-5

- Resolves: rhbz#1714331 support NSS based IKE KDF's so libreswan does not need FIPS certification

Thu Aug 01 2019 Paul Wouters <pwouters@redhat.com> - 3.29-4

- Resolves: rhbz#1699318 'ipsec show' has python3 invalid syntax

Thu Jul 04 2019 Paul Wouters <pwouters@redhat.com> - 3.29-3

- Resolves: rhbz#1725205 XFRM policy for OE/32 peer is deleted when shunts for previous half-open state expire

Thu Jun 27 2019 Paul Wouters <pwouters@redhat.com> - 3.29-2

- Resolves: rhbz#1723957 libreswan is missing linux audit calls for failed IKE SAs and failed IPsec SAs required for Common Criteria

Mon Jun 10 2019 Paul Wouters <pwouters@redhat.com> - 3.29-1
```
- Resolves: rhbz#1712555 libreswan rebase to 3.29
```

Tue May 28 2019 Paul Wouters <pwouters@redhat.com> - 3.28-2

- Resolves: rhbz#1713734: barf: shell syntax error in barf diagnostic tool

Tue May 21 2019 Paul Wouters <pwouters@redhat.com> - 3.28-1

- Resolves: rhbz#1712555 libreswan rebase to 3.28
- Resolves: rhbz#1683706 Libreswan shows incorrect error messages
- Resolves: rhbz#1706180 Remove last usage of old (unused) PF_KEY API
- Resolves: rhbz#1677045 Opportunistic IPsec instances of /32 groups or auto=start that receive delete won't restart
- Resolves: rhbz#1686990 IKEv1 traffic interruption when responder deletes SAs 60 seconds before EVENT_SA_REPLACE
- Resolves: rhbz#1608353 /usr/sbin/ipsec part of the libreswan packages still invokes commands that were deprecated a decade ago
- Resolves: rhbz#1699318 'ipsec show' has python3 invalid syntax
- Resolves: rhbz#1679394 libreswan using NSS IPsec profiles regresses when critical flags are set causing validation failure