Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libreswan-5.2-1.el10 RPM for x86_64_v2

From AlmaLinux Kitten 10 AppStream for x86_64_v2

Name: libreswan Distribution: AlmaLinux
Version: 5.2 Vendor: AlmaLinux
Release: 1.el10 Build date: Tue Mar 18 15:58:20 2025
Group: Unspecified Build host: x64-builder04.almalinux.org
Size: 5321241 Source RPM: libreswan-5.2-1.el10.src.rpm
Packager: AlmaLinux Packaging Team <packager@almalinux.org>
Url: https://libreswan.org/
Summary: Internet Key Exchange (IKEv1 and IKEv2) implementation for IPsec
Libreswan is a free implementation of IPsec & IKE for Linux.  IPsec is
the Internet Protocol Security and uses strong cryptography to provide
both authentication and encryption services.  These services allow you
to build secure tunnels through untrusted networks.  Everything passing
through the untrusted net is encrypted by the ipsec gateway machine and
decrypted by the gateway at the other end of the tunnel.  The resulting
tunnel is a virtual private network or VPN.

This package contains the daemons and userland tools for setting up
Libreswan.

Libreswan also supports IKEv2 (RFC7296) and Secure Labeling

Libreswan is based on Openswan-2.6.38 which in turn is based on FreeS/WAN-2.04

Provides

Requires

License

GPL-2.0-or-later AND MPL-2.0

Changelog

* Thu Mar 06 2025 Daiki Ueno <dueno@redhat.com> - 5.2-1
  - Update to libreswan 5.2
* Thu Jan 30 2025 Daiki Ueno <dueno@redhat.com> - 5.1-6
  - ipsec: fix duplicate --ctlsocket option for whack
* Fri Jan 24 2025 Daiki Ueno <dueno@redhat.com> - 5.1-5
  - Avoid expectiation failure with crossing streams
* Fri Jan 24 2025 Daiki Ueno <dueno@redhat.com> - 5.1-4
  - Speed up parsing protoport configuration
* Fri Jan 24 2025 Daiki Ueno <dueno@redhat.com> - 5.1-3
  - showhostkey: fix regression after RHEL-69403
* Fri Nov 29 2024 Daiki Ueno <dueno@redhat.com> - 5.1-2
  - crypto: refcnt struct secret_pubkey_stuff when passing to helper thread
* Fri Nov 29 2024 Paul Wouters <paul.wouters@aiven.io> - 5.1-1
  - Update to libreswan 5.1
* Tue Oct 29 2024 Troy Dawson <tdawson@redhat.com> - 4.15-7
  - Bump release for October 2024 mass rebuild:
* Thu Aug 08 2024 Ondrej Moris <omoris@redhat.com> - 4.15-6
  - Add RHEL-10 CI and gating configuration
* Tue Aug 06 2024 Daiki Ueno <dueno@redhat.com> - 4.15-5
  - Make use of Netlink extack for additional error reporting
* Tue Aug 06 2024 Daiki Ueno <dueno@redhat.com> - 4.15-4
  - Fix auto=ondemand connection initialization with TCP
* Tue Aug 06 2024 Daiki Ueno <dueno@redhat.com> - 4.15-3
  - Re-introduce libreswan-4.6-ikev1-policy-defaults-to-drop.patch
* Thu Jun 27 2024 Paul Wouters <paul.wouters@aiven.io> - 4.15-2
  - Add libreswan-4.15-ipsec_import.patch
* Thu Jun 27 2024 Paul Wouters <paul.wouters@aiven.io> - 4.15-1
  - Update libreswan to 4.15 for CVE-2024-3652
  - Resolves rhbz#2274448 CVE-2024-3652 libreswan: IKEv1 default AH/ESP
    responder can crash and restart
  - Allow "ipsec import" to try importing PKCS#12 non-interactively if there
    is no password
* Thu Jun 27 2024 Paul Wouters <paul.wouters@aiven.io> - 4.14-1
  - Update to 4.14 for CVE-2024-2357
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 4.12-3.3
  - Bump release for June 2024 mass rebuild
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 4.12-3.2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 4.12-3.1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Sep 08 2023 Paul Wouters <paul.wouters@aiven.io> - 4.12-3
  - Update libcap-ng patch, fix email addresses in changelog
* Tue Sep 05 2023 Paul Wouters <paul.wouters@aiven.io> - 4.12-2
  - Remove ipsec show and ipsec verify sub commands (not very useful, causes python requirement)
  - Patch for handling libcap-ng return values and fix capng_apply() call
* Fri Aug 11 2023 Paul Wouters <paul.wouters@aiven.io> - 4.12-1
  - Update to 4.12 for CVE-2023-38710, CVE-2023-38711 and CVE-2023-38712
  - Resolves: rhbz#2230225 libreswan-4.12 is available
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 4.11-1.1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu May 04 2023 Paul Wouters <paul.wouters@aiven.io> - 4.11-1
  - Update to 4.11 for CVE-2023-30570

Files

/etc/ipsec.conf
/etc/ipsec.d
/etc/ipsec.d/policies
/etc/ipsec.d/policies/block
/etc/ipsec.d/policies/clear
/etc/ipsec.d/policies/clear-or-private
/etc/ipsec.d/policies/portexcludes.conf
/etc/ipsec.d/policies/private
/etc/ipsec.d/policies/private-or-clear
/etc/ipsec.secrets
/etc/logrotate.d/libreswan
/etc/pam.d/pluto
/run/pluto
/usr/lib/.build-id
/usr/lib/.build-id/07
/usr/lib/.build-id/07/5669221af6393c6aa80f6badff702a87035ea3
/usr/lib/.build-id/3b
/usr/lib/.build-id/3b/1f4ddb506115ac6a3cf82aaed531648b534e2a
/usr/lib/.build-id/42
/usr/lib/.build-id/42/883b779a1048c1ccfbc4b5bdc528cb7ed90acd
/usr/lib/.build-id/54
/usr/lib/.build-id/54/7a4fe42bf9d3ab16c05bf418ce13566a2ee934
/usr/lib/.build-id/6c
/usr/lib/.build-id/6c/3feaa29a01ed8763e670767cb33e9ea957bcf8
/usr/lib/.build-id/81
/usr/lib/.build-id/81/7da58b9579514c057bc02c4bde46280383771f
/usr/lib/.build-id/b3
/usr/lib/.build-id/b3/2b6f1f62aa4a26c7df49ff757ef613c71dd805
/usr/lib/.build-id/cd
/usr/lib/.build-id/cd/5e2889f086e24aef6ab0d5573e44e01f6b6888
/usr/lib/.build-id/ea
/usr/lib/.build-id/ea/cdc0993e5a386010a9e307772f2de0fe84b5ae
/usr/lib/.build-id/ed
/usr/lib/.build-id/ed/5de13ea8825dac970b3d895cb9353b95ee486b
/usr/lib/.build-id/ee
/usr/lib/.build-id/ee/9c0872c229f65a0fea22748b599cecf9f6d934
/usr/lib/.build-id/f4
/usr/lib/.build-id/f4/4dd7fc0dc6b7bab3a5234a6bb4fbcced00606e
/usr/lib/sysctl.d/50-libreswan.conf
/usr/lib/systemd/system/ipsec.service
/usr/lib/tmpfiles.d/libreswan.conf
/usr/libexec/ipsec
/usr/libexec/ipsec/_getpeercon_server
/usr/libexec/ipsec/_import_crl
/usr/libexec/ipsec/_plutorun
/usr/libexec/ipsec/_stackmanager
/usr/libexec/ipsec/_unbound-hook
/usr/libexec/ipsec/_updown
/usr/libexec/ipsec/_updown.xfrm
/usr/libexec/ipsec/addconn
/usr/libexec/ipsec/algparse
/usr/libexec/ipsec/cavp
/usr/libexec/ipsec/ecdsasigkey
/usr/libexec/ipsec/letsencrypt
/usr/libexec/ipsec/newhostkey
/usr/libexec/ipsec/pluto
/usr/libexec/ipsec/readwriteconf
/usr/libexec/ipsec/rsasigkey
/usr/libexec/ipsec/setup
/usr/libexec/ipsec/showhostkey
/usr/libexec/ipsec/showroute
/usr/libexec/ipsec/whack
/usr/sbin/ipsec
/usr/share/doc/libreswan
/usr/share/doc/libreswan/CHANGES
/usr/share/doc/libreswan/CHANGES.freeswan.pluto
/usr/share/doc/libreswan/CHANGES.openswan
/usr/share/doc/libreswan/COPYING
/usr/share/doc/libreswan/CREDITS
/usr/share/doc/libreswan/CREDITS.freeswan
/usr/share/doc/libreswan/CREDITS.openswan
/usr/share/doc/libreswan/GSoC.md
/usr/share/doc/libreswan/LICENSE
/usr/share/doc/libreswan/PlutoFlow.png
/usr/share/doc/libreswan/PlutoFlow.svg
/usr/share/doc/libreswan/ProgrammingConventions.txt
/usr/share/doc/libreswan/README.IANA-PEN
/usr/share/doc/libreswan/README.XAUTH
/usr/share/doc/libreswan/README.labeledipsec
/usr/share/doc/libreswan/README.md
/usr/share/doc/libreswan/README.nss
/usr/share/doc/libreswan/README.rfcs
/usr/share/doc/libreswan/README.x509
/usr/share/doc/libreswan/examples
/usr/share/doc/libreswan/examples/hub-spoke.conf
/usr/share/doc/libreswan/examples/ipv6.conf
/usr/share/doc/libreswan/examples/l2tp-cert.conf
/usr/share/doc/libreswan/examples/l2tp-psk.conf
/usr/share/doc/libreswan/examples/linux-linux.conf
/usr/share/doc/libreswan/examples/oe-authnull.conf
/usr/share/doc/libreswan/examples/oe-dnssec-client.conf
/usr/share/doc/libreswan/examples/oe-dnssec-server.conf
/usr/share/doc/libreswan/examples/oe-exclude-dns.conf
/usr/share/doc/libreswan/examples/oe-letsencrypt-README.txt
/usr/share/doc/libreswan/examples/oe-letsencrypt-client.conf
/usr/share/doc/libreswan/examples/oe-letsencrypt-server.conf
/usr/share/doc/libreswan/examples/oe-upgrade-authnull.conf
/usr/share/doc/libreswan/examples/sysctl.conf
/usr/share/doc/libreswan/examples/xauth.conf
/usr/share/doc/libreswan/l2tp-overhead.txt
/usr/share/doc/libreswan/nss-howto.txt
/usr/share/doc/libreswan/opportunistic-v1.historic
/usr/share/doc/libreswan/opportunistic-v1.historic/opportunism-spec.txt
/usr/share/doc/libreswan/opportunistic-v1.historic/opportunism.nr
/usr/share/doc/libreswan/pluto-internals.txt
/usr/share/man/man5/ipsec.conf.5.gz
/usr/share/man/man5/ipsec.secrets.5.gz
/usr/share/man/man7/libreswan.7.gz
/usr/share/man/man8/ipsec-_plutorun.8.gz
/usr/share/man/man8/ipsec-_stackmanager.8.gz
/usr/share/man/man8/ipsec-_updown.8.gz
/usr/share/man/man8/ipsec-_updown.xfrm.8.gz
/usr/share/man/man8/ipsec-add.8.gz
/usr/share/man/man8/ipsec-addconn.8.gz
/usr/share/man/man8/ipsec-algparse.8.gz
/usr/share/man/man8/ipsec-briefconnectionstatus.8.gz
/usr/share/man/man8/ipsec-briefstatus.8.gz
/usr/share/man/man8/ipsec-certutil.8.gz
/usr/share/man/man8/ipsec-checkconfig.8.gz
/usr/share/man/man8/ipsec-checknflog.8.gz
/usr/share/man/man8/ipsec-checknss.8.gz
/usr/share/man/man8/ipsec-connectionstatus.8.gz
/usr/share/man/man8/ipsec-crlutil.8.gz
/usr/share/man/man8/ipsec-delete.8.gz
/usr/share/man/man8/ipsec-down.8.gz
/usr/share/man/man8/ipsec-ecdsasigkey.8.gz
/usr/share/man/man8/ipsec-fetchcrls.8.gz
/usr/share/man/man8/ipsec-fipsstatus.8.gz
/usr/share/man/man8/ipsec-globalstatus.8.gz
/usr/share/man/man8/ipsec-import.8.gz
/usr/share/man/man8/ipsec-initnss.8.gz
/usr/share/man/man8/ipsec-letsencrypt.8.gz
/usr/share/man/man8/ipsec-listall.8.gz
/usr/share/man/man8/ipsec-listcacerts.8.gz
/usr/share/man/man8/ipsec-listcerts.8.gz
/usr/share/man/man8/ipsec-listcrls.8.gz
/usr/share/man/man8/ipsec-listen.8.gz
/usr/share/man/man8/ipsec-listpubkeys.8.gz
/usr/share/man/man8/ipsec-modutil.8.gz
/usr/share/man/man8/ipsec-newhostkey.8.gz
/usr/share/man/man8/ipsec-ondemand.8.gz
/usr/share/man/man8/ipsec-pk12util.8.gz
/usr/share/man/man8/ipsec-pluto.8.gz
/usr/share/man/man8/ipsec-purgeocsp.8.gz
/usr/share/man/man8/ipsec-readwriteconf.8.gz
/usr/share/man/man8/ipsec-redirect.8.gz
/usr/share/man/man8/ipsec-replace.8.gz
/usr/share/man/man8/ipsec-rereadall.8.gz
/usr/share/man/man8/ipsec-rereadcerts.8.gz
/usr/share/man/man8/ipsec-rereadsecrets.8.gz
/usr/share/man/man8/ipsec-restart.8.gz
/usr/share/man/man8/ipsec-route.8.gz
/usr/share/man/man8/ipsec-rsasigkey.8.gz
/usr/share/man/man8/ipsec-setup.8.gz
/usr/share/man/man8/ipsec-showhostkey.8.gz
/usr/share/man/man8/ipsec-showroute.8.gz
/usr/share/man/man8/ipsec-showstates.8.gz
/usr/share/man/man8/ipsec-shuntstatus.8.gz
/usr/share/man/man8/ipsec-start.8.gz
/usr/share/man/man8/ipsec-status.8.gz
/usr/share/man/man8/ipsec-stop.8.gz
/usr/share/man/man8/ipsec-trafficstatus.8.gz
/usr/share/man/man8/ipsec-unroute.8.gz
/usr/share/man/man8/ipsec-up.8.gz
/usr/share/man/man8/ipsec-vfychain.8.gz
/usr/share/man/man8/ipsec-whack.8.gz
/usr/share/man/man8/ipsec.8.gz
/usr/share/man/man8/pluto.8.gz
/var/lib/ipsec
/var/lib/ipsec/nss


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 24 06:41:04 2025