Please merge strongswan 4.4.0-2(universe) from debian unstable(main)

Binary package hint: strongswan

Debian changes

strongswan (4.4.0-2) unstable; urgency=low

   * Force enable-socket-raw configure option and enable list-missing option
     for dh_install to make sure that all required plugins get built and
     installed.
     Closes: #587282: plugins missing
   * Updated fr debconf translations.
     Closes: #587052: strongswan: [INTL:fr] French debconf templates
             translation update
     Closes: #587159: strongswan: [INTL:ru] Russian debconf templates
             translation update
     Closes: #587255: strongswan: [INTL:pt] Updated Portuguese
             translation for debconf messages
     Closes: #587241: [INTL:sv] po-debconf file for strongswan
   * Disabled cisco-quirks configure option, as it causes pluto to emit a
     bogus Cicso vendor ID attribute. Some Cicso VPN clients might not work
     without this, but it is less confusing for standards-compliant remote
     gateways.
   * Removed leftover attribute plugin source caused by incomplete svn-upgrade
     call.
 -- Rene Mayrhofer <email address hidden> Thu, 24 Jun 2010 22:32:18 +0200

strongswan (4.4.0-1) unstable; urgency=HIGH

   * New upstream release, now with a high-availability plugin.
   * Added patch to fix snprintf bug.
   * Enable building of ha, dhcp, and farp plugins.
   * Enable capability dropping (now depends on libcap). Switching
     user to new system user strongswan (with nogroup) after startup
     is still disabled until the iptables updown script can be made
     to work.
 -- Rene Mayrhofer <email address hidden> Tue, 25 May 2010 21:03:52 +0200

strongswan (4.3.6-1) unstable; urgency=low

   * UNRELEASED

   * New upstream release, now build-depends on gperf.
     Closes: #577855: New upstream release 4.3.6
     Closes: #569553: strongswan: Certificates CNs containing email address
                      OIDs are not correctly parsed
     Closes: #557635: strongswan charon does not rekey forever
     Closes: #569299: Please update configure check to use new nm-glib
                      pkgconfig file name
   * Switch to dpkg-source 3.0 (quilt) format
   * Synchronize debconf handling with current openswan 2.6.25 package to keep
     X509 certificate handling etc. similar. Thanks to Harald Jenny for
     implementing these changes in openswan, which I just converted to
     strongswan.
   * Now also build a strongswan-dbg package to ship debugging symbols.
   * Include attr plugin in strongswan-ikev2 package. Thanks to Christoph Lukas
     for pointing out that this was missing.
     Closes: #569550: strongswan: Please include attr plugin
 -- Rene Mayrhofer <email address hidden> Tue, 23 Feb 2010 10:39:21 +0000

2009

strongswan (4.3.4-1) unstable; urgency=low

   * New upstream release.
   * This release supports integrity checking of libraries, which is
     now enabled at build-time and can be enabled at run-time using
         libstrongswan {
           integrity_test = yes
         }
     in /etc/strongswan.conf.
   * Don't disable internal crypto libraries for pluto. They might be
     required when working with older ipsec.conf files.
   * charon now supports "include" directives in ipsec.secrets for
     compatibility with how the maintainer script includes RSA private keys.
   * Patched starter to also look at routing table "default" when table
     "main" doesn't have a default entry. This makes dealing with
     "%defaulroute" in ipsec.conf more flexible.
     Update: It seems Astaro was quicker then me sending a patch with
     exactly that aim to upstream. Now applied this one, which will be
     part of future upstream releases and uses netlink to read routing
     tables.
 -- Rene Mayrhofer <email address hidden> Wed, 21 Oct 2009 11:14:56 +0000