Debian Package Tracker

From: Rene Mayrhofer <rmayr@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted freeswan 1.96-2 (i386 source all)
Date: Tue, 15 Oct 2002 12:59:06 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 18 Apr 2002 23:20:36 +0200
Source: freeswan
Binary: kernel-patch-freeswan freeswan kernel-patch-freeswan-ext
Architecture: source all i386
Version: 1.96-2
Distribution: unstable
Urgency: high
Maintainer: Rene Mayrhofer <rmayr@debian.org>
Changed-By: Rene Mayrhofer <rmayr@debian.org>
Description: 
 freeswan   - IPSEC utilities for FreeSWan
 kernel-patch-freeswan - IPSEC kernel support for FreeSwan
 kernel-patch-freeswan-ext - IPSEC kernel support for FreeSwan + modular extensions
Closes: 136799 136803 137282 140059 141024 141293 142747 143310
Changes: 
 freeswan (1.96-2) unstable; urgency=high
 .
   Urgency still high to get it into woody.
   * Upstream has already released 1.97, but I am not going to package this
     until freeswan is again in woody. Currently I am concentrating on fixing
     bugs.
   * Moved from non-US to main.
   * Now the source package generates two different kernel-patch-freeswan
     packages: One with and one without the ext patches (which add AES
     among other ciphers). This made some restructuring of debian/rules
     necessary, but there are no changes that should affect the generated
     packages in any way (not getting in the way of the freeze).
     Thanks to Kyle McMartin for doing a lot of fore-work.
 .
     This somehow deals with the following bug (please use the non-ext
     kernel-patch package if there are problems with the ext package). This is
     also good for the freeze since kernel-patch-freeswan is now again back
     to upstream state and therefore stable.
     BTW: This bug can easily be avoided by either enabling the aes or the
     aes-opt module (and not both).
     Closes: #137282: freeswan kernel patch doesn't compile with AES configured
     The restructuring should also deal with this one:
     Closes: #141024: build problem
 .
   * Fixed mkx509cert.sh. I am keeping this script just for one reason
     (and not integrating it directly into the postinst): it will get used by
     some other scripts that are about to come. Therefore I did not want to
     have this code directly in the postinst script.
     Closes: #136803: mkx509cert is fubar
     Closes: #140059: Certificates not generated properly by install
   * Completed the transition to the new capabilities of the X509 patch: now
     the X509 key file (when created in PEM format or taken from an existing
     key) is copied to /etc/ipsec.d/private/<hostname<Key>.pem and this
     filename is put into /etc/ipsec.secrets. Therefore this file does not
     need to be touched anymore manually when using X509 certificates.
     Also fixed a small bug - thanks to Robert Bihlmeyer for discovering and
     sending a patch.
     Closes: #143310: generating a non-self-signed keypair (cert req) is broken
     Since fswcert is now no longer needed (there is no need to extract the RSA
     key from the PEM file anymore, pluto can now deal with this directly), it
     is not included in the upstream X509 patch. The references in README.x509
     also say that this tool is optional and that it can be downloaded from the
     given webpage.
     Closes: #141293: fswcert not present
   * Changed the default keylength for created RSA keys. Now it is 2028 bit,
     conforming with the recommendation by upstream.
     Closes: #136799: RSA keys should default to 2048 bits
   * Really distribute the example configurations for the ext patches.
     Closes: #142747: README.Debian mentions non existant documentation
Files: 
 a618fec8a92b8ef2e0a9f36a9e251ee1 719 main optional freeswan_1.96-2.dsc
 9ea1a778713e48d39f3c77de5f54752b 2251757 main optional freeswan_1.96.orig.tar.gz
 780485bf0f1e4bf4f08a45eea38da529 318441 main optional freeswan_1.96-2.diff.gz
 44a104e36d07c5f268dd4198f4b1ac86 680224 main optional kernel-patch-freeswan_1.96-2_all.deb
 13ade336529c92281b61277e9f0bb110 876806 main optional kernel-patch-freeswan-ext_1.96-2_all.deb
 9270ef1dfa0f1528f4e51fa200128149 1081234 main optional freeswan_1.96-2_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Weitere Infos: siehe http://www.gnupg.org

iEUEARECAAYFAjy/4B0ACgkQq7SPDcPCS961cgCXXCnqUvAj8AmC8ih3PlTjvrRK
ogCfdYTCvRKBUHjwNqaEtzc4TgcSQnY=
=kJa4
-----END PGP SIGNATURE-----


Accepted:
freeswan_1.96-2.diff.gz
  to pool/main/f/freeswan/freeswan_1.96-2.diff.gz
freeswan_1.96-2.dsc
  to pool/main/f/freeswan/freeswan_1.96-2.dsc
freeswan_1.96-2_i386.deb
  to pool/main/f/freeswan/freeswan_1.96-2_i386.deb
freeswan_1.96.orig.tar.gz
  to pool/main/f/freeswan/freeswan_1.96.orig.tar.gz
kernel-patch-freeswan-ext_1.96-2_all.deb
  to pool/main/f/freeswan/kernel-patch-freeswan-ext_1.96-2_all.deb
kernel-patch-freeswan_1.96-2_all.deb
  to pool/main/f/freeswan/kernel-patch-freeswan_1.96-2_all.deb


-- 
To UNSUBSCRIBE, email to debian-devel-changes-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
News for package freeswan
