[ol7_latest_archive] libreswan-3.12-10.1.0.1.el7_1.x86_64

Name:	libreswan
Version:	3.12
Release:	10.1.0.1.el7_1
Architecture:	x86_64
Group:	System Environment/Daemons
Size:	4670102
License:	GPLv2
RPM:	libreswan-3.12-10.1.0.1.el7_1.x86_64.rpm
Source RPM:	libreswan-3.12-10.1.0.1.el7_1.src.rpm
Build Date:	Tue Jun 23 2015
Build Host:	x86-ol7-builder-03.us.oracle.com
Vendor:	Oracle America
URL:	https://www.libreswan.org/
Summary:	IPsec implementation with IKEv1 and IKEv2 keying protocols
Description:	Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Libreswan. To build KLIPS, see the kmod-libreswan.spec file. Libreswan also supports IKEv2 (RFC4309) and Secure Labeling Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Changelog (Show File list) (Show related packages)

Tue Jun 23 2015 Natalya Naumova <natalya.naumova@oracle.com> - 3.12-10.1.0.1
```
- add libreswan-oracle.patch to detect Oracle Linux distro
```

Fri May 29 2015 Paul Wouters <pwouters@redhat.com> - 3.12-10.1

- Resolves: rhbz#1226407 CVE-2015-3204 libreswan: crafted IKE packet causes daemon restart

Tue May 05 2015 Paul Wouters <pwouters@redhat.com> - 3.12-10

- Resolves: rhbz#1213652 Support CAVS [updated another prf() free symkey, bogus fips mode fix]

Tue Apr 28 2015 Paul Wouters <pwouters@redhat.com> - 3.12-9

- Resolves: rhbz#1213652 Support CAVS [updated to kill another copy of prf()]
- Resolves: rhbz#1208023 Libreswan with IPv6 [updated patch by Jaroslav Aster]
- Resolves: rhbz#1208022 libreswan ignores module blacklist [updated modprobe handling]

Mon Apr 20 2015 Paul Wouters <pwouters@redhat.com> - 3.12-8

- Resolves: rhbz#1213652 Support CAVS testing of the PRF/PRF+ functions

Mon Apr 13 2015 Paul Wouters <pwouters@redhat.com> - 3.12-7

- Resolves: rhbz#1208022 libreswan ignores module blacklist rules
- Resolves: rhbz#1208023 Libreswan with IPv6 in RHEL7 fails after reboot
- Resolves: rhbz#1211146 pluto crashes in fips mode

Tue Mar 17 2015 Paul Wouters <pwouters@redhat.com> - 3.12-6

- Resolves: rhbz#1198650 SELinux context string size limit
- Resolves: rhbz#1198649 Add new option for BSI random requirement

Tue Jan 20 2015 Paul Wouters <pwouters@redhat.com> - 3.12-5

- Resolves: rhbz#826264 aes-gcm implementation support (for IKEv2)
- Resolves: rhbz#1074018 Audit key agreement (integ gcm fixup)

Tue Dec 30 2014 Paul Wouters <pwouters@redhat.com> - 3.12-4

- Resolves: rhbz#1134297 aes-ctr cipher is not supported
- Resolves: rhbz#1131503 non-zero rSPI on INVALID_KE (and proper INVALID_KE handling)

Thu Dec 04 2014 Paul Wouters <pwouters@redhat.com> - 3.12-2

- Resolves: rhbz#1105171 (Update man page entry)
- Resolves: rhbz#1144120 (Update for ESP CAMELLIA with IKEv2)
- Resolves: rhbz#1074018 Audit key agreement