Date: Wed, 17 Mar 2021 19:12:32 +0000 (UTC) From: Dmitry Marakasov <amdmi3@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r568683 - in head: . security/strongswan security/strongswan/files Message-ID: <202103171912.12HJCWdO074199@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: amdmi3 Date: Wed Mar 17 19:12:31 2021 New Revision: 568683 URL: https://svnweb.freebsd.org/changeset/ports/568683 Log: security/strongswan: use "vici" interface instead of deprecated "stroke" by default Add UPDATING entry with migration instruction. PR: 249865 Submitted by: driesm.michiels@gmail.com Approved by: strongswan@nanoteq.com (maintainer) Modified: head/UPDATING head/security/strongswan/Makefile head/security/strongswan/files/strongswan.in Modified: head/UPDATING ============================================================================== --- head/UPDATING Wed Mar 17 18:45:07 2021 (r568682) +++ head/UPDATING Wed Mar 17 19:12:31 2021 (r568683) @@ -5,6 +5,22 @@ they are unavoidable. You should get into the habit of checking this file for changes each time you update your ports collection, before attempting any port upgrades. +20210317: + AFFECTS: users of security/strongswan + AUTHOR: driesm.michiels@gmail.com + + The stroke starter interface has been deprecated by upstream + for some time now. The default interface for controlling the charon + daemon has switched from stroke to vici. Users still using the + legacy config files such as ipsec.conf and ipsec.secret (stroke, starter) + can easily revert to the old behavior by: + + # sysrc strongswan_interface="stroke" + + It is recommended to use the vici interface which is configured by swanctl.conf. + Check : https://wiki.strongswan.org/projects/strongswan/wiki/Fromipsecconf + to ease the transition from ipsec.* to swanctl.conf + 20210313: AFFECTS: users of net-mgmt/phpipam AUTHOR: marko.cupac@mimar.rs Modified: head/security/strongswan/Makefile ============================================================================== --- head/security/strongswan/Makefile Wed Mar 17 18:45:07 2021 (r568682) +++ head/security/strongswan/Makefile Wed Mar 17 19:12:31 2021 (r568683) @@ -3,6 +3,7 @@ PORTNAME= strongswan DISTVERSION= 5.9.2 +PORTREVISION= 1 CATEGORIES= security net-vpn MASTER_SITES= http://download.strongswan.org/ \ http://download2.strongswan.org/ Modified: head/security/strongswan/files/strongswan.in ============================================================================== --- head/security/strongswan/files/strongswan.in Wed Mar 17 18:45:07 2021 (r568682) +++ head/security/strongswan/files/strongswan.in Wed Mar 17 19:12:31 2021 (r568683) @@ -27,7 +27,7 @@ rcvar=strongswan_enable load_rc_config $name : ${strongswan_enable:=NO} -: ${strongswan_interface:="stroke"} +: ${strongswan_interface:="vici"} extra_commands="reload statusall"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202103171912.12HJCWdO074199>