[ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6

mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed

* [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6
@ 2022-06-16  6:42 Lars Pedersen
  2022-06-16  6:48 ` Alexander Dahl
  0 siblings, 1 reply; 5+ messages in thread
From: Lars Pedersen @ 2022-06-16  6:42 UTC (permalink / raw)
  To: ptxdist; +Cc: Lars Pedersen

New configure options --with-selinux and --disable-kdf
Enabled generic modularized KDF (prf/prf+) implementation

Signed-off-by: Lars Pedersen <lapeddk@gmail.com>
---
 rules/strongswan.make | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/rules/strongswan.make b/rules/strongswan.make
index a64e67cc8..2bea6c839 100644
--- a/rules/strongswan.make
+++ b/rules/strongswan.make
@@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_STRONGSWAN) += strongswan
 #
 # Paths and names
 #
-STRONGSWAN_VERSION	:= 5.9.2
-STRONGSWAN_MD5		:= 8918e6675e1be3784817641f07eadeb8
+STRONGSWAN_VERSION	:= 5.9.6
+STRONGSWAN_MD5		:= 0eeb13eda09fb34e9ab5e2bfcfab1211
 STRONGSWAN		:= strongswan-$(STRONGSWAN_VERSION)
 STRONGSWAN_SUFFIX	:= tar.bz2
 STRONGSWAN_URL		:= https://download.strongswan.org/$(STRONGSWAN).$(STRONGSWAN_SUFFIX)
@@ -221,6 +221,7 @@ STRONGSWAN_CONF_OPT	:= \
 	--disable-log-thread-ids \
 	--disable-monolithic \
 	--disable-defaults \
+	--enable-kdf \
 	--enable-dependency-tracking \
 	--enable-shared \
 	--$(call ptx/endis, PTXCONF_STRONGSWAN_SWANCTL)-swanctl \
@@ -243,6 +244,7 @@ STRONGSWAN_PLUGINS := \
 	libstrongswan-gcm.so \
 	libstrongswan-gmp.so \
 	libstrongswan-hmac.so \
+	libstrongswan-kdf.so \
 	libstrongswan-kernel-netlink.so \
 	libstrongswan-nonce.so \
 	libstrongswan-pem.so \
-- 
2.36.1




^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6
  2022-06-16  6:42 [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6 Lars Pedersen
@ 2022-06-16  6:48 ` Alexander Dahl
  2022-06-16  7:25   ` Lars Pedersen
  0 siblings, 1 reply; 5+ messages in thread
From: Alexander Dahl @ 2022-06-16  6:48 UTC (permalink / raw)
  To: Lars Pedersen; +Cc: ptxdist

Hello Lars,

Am Thu, Jun 16, 2022 at 08:42:35AM +0200 schrieb Lars Pedersen:
> New configure options --with-selinux and --disable-kdf

That first option is not considered in the patch below, is it?

Greets
Alex

> Enabled generic modularized KDF (prf/prf+) implementation
> 
> Signed-off-by: Lars Pedersen <lapeddk@gmail.com>
> ---
>  rules/strongswan.make | 6 ++++--
>  1 file changed, 4 insertions(+), 2 deletions(-)
> 
> diff --git a/rules/strongswan.make b/rules/strongswan.make
> index a64e67cc8..2bea6c839 100644
> --- a/rules/strongswan.make
> +++ b/rules/strongswan.make
> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_STRONGSWAN) += strongswan
>  #
>  # Paths and names
>  #
> -STRONGSWAN_VERSION	:= 5.9.2
> -STRONGSWAN_MD5		:= 8918e6675e1be3784817641f07eadeb8
> +STRONGSWAN_VERSION	:= 5.9.6
> +STRONGSWAN_MD5		:= 0eeb13eda09fb34e9ab5e2bfcfab1211
>  STRONGSWAN		:= strongswan-$(STRONGSWAN_VERSION)
>  STRONGSWAN_SUFFIX	:= tar.bz2
>  STRONGSWAN_URL		:= https://download.strongswan.org/$(STRONGSWAN).$(STRONGSWAN_SUFFIX)
> @@ -221,6 +221,7 @@ STRONGSWAN_CONF_OPT	:= \
>  	--disable-log-thread-ids \
>  	--disable-monolithic \
>  	--disable-defaults \
> +	--enable-kdf \
>  	--enable-dependency-tracking \
>  	--enable-shared \
>  	--$(call ptx/endis, PTXCONF_STRONGSWAN_SWANCTL)-swanctl \
> @@ -243,6 +244,7 @@ STRONGSWAN_PLUGINS := \
>  	libstrongswan-gcm.so \
>  	libstrongswan-gmp.so \
>  	libstrongswan-hmac.so \
> +	libstrongswan-kdf.so \
>  	libstrongswan-kernel-netlink.so \
>  	libstrongswan-nonce.so \
>  	libstrongswan-pem.so \
> -- 
> 2.36.1
> 
> 



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6
  2022-06-16  6:48 ` Alexander Dahl
@ 2022-06-16  7:25   ` Lars Pedersen
  2022-06-16  7:28     ` Christian Melki
  2022-06-16  7:53     ` Alexander Dahl
  0 siblings, 2 replies; 5+ messages in thread
From: Lars Pedersen @ 2022-06-16  7:25 UTC (permalink / raw)
  To: Lars Pedersen, ptxdist

Hello Alex,

On Thu, 16 Jun 2022 at 08:48, Alexander Dahl <ada@thorsis.com> wrote:
>
> Hello Lars,
>
> Am Thu, Jun 16, 2022 at 08:42:35AM +0200 schrieb Lars Pedersen:
> > New configure options --with-selinux and --disable-kdf
>
> That first option is not considered in the patch below, is it?

--with-selinux is implicitly disabled (without). Should I explicitly
set it --without-selinux?

>
> Greets
> Alex
>
> > Enabled generic modularized KDF (prf/prf+) implementation
> >
> > Signed-off-by: Lars Pedersen <lapeddk@gmail.com>
> > ---
> >  rules/strongswan.make | 6 ++++--
> >  1 file changed, 4 insertions(+), 2 deletions(-)
> >
> > diff --git a/rules/strongswan.make b/rules/strongswan.make
> > index a64e67cc8..2bea6c839 100644
> > --- a/rules/strongswan.make
> > +++ b/rules/strongswan.make
> > @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_STRONGSWAN) += strongswan
> >  #
> >  # Paths and names
> >  #
> > -STRONGSWAN_VERSION   := 5.9.2
> > -STRONGSWAN_MD5               := 8918e6675e1be3784817641f07eadeb8
> > +STRONGSWAN_VERSION   := 5.9.6
> > +STRONGSWAN_MD5               := 0eeb13eda09fb34e9ab5e2bfcfab1211
> >  STRONGSWAN           := strongswan-$(STRONGSWAN_VERSION)
> >  STRONGSWAN_SUFFIX    := tar.bz2
> >  STRONGSWAN_URL               := https://download.strongswan.org/$(STRONGSWAN).$(STRONGSWAN_SUFFIX)
> > @@ -221,6 +221,7 @@ STRONGSWAN_CONF_OPT       := \
> >       --disable-log-thread-ids \
> >       --disable-monolithic \
> >       --disable-defaults \
> > +     --enable-kdf \
> >       --enable-dependency-tracking \
> >       --enable-shared \
> >       --$(call ptx/endis, PTXCONF_STRONGSWAN_SWANCTL)-swanctl \
> > @@ -243,6 +244,7 @@ STRONGSWAN_PLUGINS := \
> >       libstrongswan-gcm.so \
> >       libstrongswan-gmp.so \
> >       libstrongswan-hmac.so \
> > +     libstrongswan-kdf.so \
> >       libstrongswan-kernel-netlink.so \
> >       libstrongswan-nonce.so \
> >       libstrongswan-pem.so \
> > --
> > 2.36.1
> >
> >



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6
  2022-06-16  7:25   ` Lars Pedersen
@ 2022-06-16  7:28     ` Christian Melki
  2022-06-16  7:53     ` Alexander Dahl
  1 sibling, 0 replies; 5+ messages in thread
From: Christian Melki @ 2022-06-16  7:28 UTC (permalink / raw)
  To: lapeddk; +Cc: ada, ptxdist

Hi.

On 6/16/22 9:25 AM, Lars Pedersen wrote:
> Hello Alex,
> 
> On Thu, 16 Jun 2022 at 08:48, Alexander Dahl <ada@thorsis.com> wrote:
>>
>> Hello Lars,
>>
>> Am Thu, Jun 16, 2022 at 08:42:35AM +0200 schrieb Lars Pedersen:
>>> New configure options --with-selinux and --disable-kdf
>>
>> That first option is not considered in the patch below, is it?
> 
> --with-selinux is implicitly disabled (without). Should I explicitly
> set it --without-selinux?
> 

I think you can use:

--$(call ptx/wwo, PTXCONF_GLOBAL_SELINUX)-selinux \

/Christian

>>
>> Greets
>> Alex
>>
>>> Enabled generic modularized KDF (prf/prf+) implementation
>>>
>>> Signed-off-by: Lars Pedersen <lapeddk@gmail.com>
>>> ---
>>>   rules/strongswan.make | 6 ++++--
>>>   1 file changed, 4 insertions(+), 2 deletions(-)
>>>
>>> diff --git a/rules/strongswan.make b/rules/strongswan.make
>>> index a64e67cc8..2bea6c839 100644
>>> --- a/rules/strongswan.make
>>> +++ b/rules/strongswan.make
>>> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_STRONGSWAN) += strongswan
>>>   #
>>>   # Paths and names
>>>   #
>>> -STRONGSWAN_VERSION   := 5.9.2
>>> -STRONGSWAN_MD5               := 8918e6675e1be3784817641f07eadeb8
>>> +STRONGSWAN_VERSION   := 5.9.6
>>> +STRONGSWAN_MD5               := 0eeb13eda09fb34e9ab5e2bfcfab1211
>>>   STRONGSWAN           := strongswan-$(STRONGSWAN_VERSION)
>>>   STRONGSWAN_SUFFIX    := tar.bz2
>>>   STRONGSWAN_URL               := https://download.strongswan.org/$(STRONGSWAN).$(STRONGSWAN_SUFFIX)
>>> @@ -221,6 +221,7 @@ STRONGSWAN_CONF_OPT       := \
>>>        --disable-log-thread-ids \
>>>        --disable-monolithic \
>>>        --disable-defaults \
>>> +     --enable-kdf \
>>>        --enable-dependency-tracking \
>>>        --enable-shared \
>>>        --$(call ptx/endis, PTXCONF_STRONGSWAN_SWANCTL)-swanctl \
>>> @@ -243,6 +244,7 @@ STRONGSWAN_PLUGINS := \
>>>        libstrongswan-gcm.so \
>>>        libstrongswan-gmp.so \
>>>        libstrongswan-hmac.so \
>>> +     libstrongswan-kdf.so \
>>>        libstrongswan-kernel-netlink.so \
>>>        libstrongswan-nonce.so \
>>>        libstrongswan-pem.so \
>>> --
>>> 2.36.1
>>>
>>>
> 



^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6
  2022-06-16  7:25   ` Lars Pedersen
  2022-06-16  7:28     ` Christian Melki
@ 2022-06-16  7:53     ` Alexander Dahl
  1 sibling, 0 replies; 5+ messages in thread
From: Alexander Dahl @ 2022-06-16  7:53 UTC (permalink / raw)
  To: Lars Pedersen; +Cc: ptxdist

Hello Lars,

Am Thu, Jun 16, 2022 at 09:25:59AM +0200 schrieb Lars Pedersen:
> Hello Alex,
> 
> On Thu, 16 Jun 2022 at 08:48, Alexander Dahl <ada@thorsis.com> wrote:
> >
> > Hello Lars,
> >
> > Am Thu, Jun 16, 2022 at 08:42:35AM +0200 schrieb Lars Pedersen:
> > > New configure options --with-selinux and --disable-kdf
> >
> > That first option is not considered in the patch below, is it?
> 
> --with-selinux is implicitly disabled (without). Should I explicitly
> set it --without-selinux?

Christian already suggested something, but let me answer this
question, because we just discuss the same issue in the RAUC patchset
thread: yes, configure options should be explicitly set in ptxdist.

The reason is package builds should be reproducible:

https://www.ptxdist.org/doc/contributing.html#package-builds-should-be-reproducible

And:

https://www.ptxdist.org/doc/contributing.html#configure-helper

Greets
Alex

> 
> >
> > Greets
> > Alex
> >
> > > Enabled generic modularized KDF (prf/prf+) implementation
> > >
> > > Signed-off-by: Lars Pedersen <lapeddk@gmail.com>
> > > ---
> > >  rules/strongswan.make | 6 ++++--
> > >  1 file changed, 4 insertions(+), 2 deletions(-)
> > >
> > > diff --git a/rules/strongswan.make b/rules/strongswan.make
> > > index a64e67cc8..2bea6c839 100644
> > > --- a/rules/strongswan.make
> > > +++ b/rules/strongswan.make
> > > @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_STRONGSWAN) += strongswan
> > >  #
> > >  # Paths and names
> > >  #
> > > -STRONGSWAN_VERSION   := 5.9.2
> > > -STRONGSWAN_MD5               := 8918e6675e1be3784817641f07eadeb8
> > > +STRONGSWAN_VERSION   := 5.9.6
> > > +STRONGSWAN_MD5               := 0eeb13eda09fb34e9ab5e2bfcfab1211
> > >  STRONGSWAN           := strongswan-$(STRONGSWAN_VERSION)
> > >  STRONGSWAN_SUFFIX    := tar.bz2
> > >  STRONGSWAN_URL               := https://download.strongswan.org/$(STRONGSWAN).$(STRONGSWAN_SUFFIX)
> > > @@ -221,6 +221,7 @@ STRONGSWAN_CONF_OPT       := \
> > >       --disable-log-thread-ids \
> > >       --disable-monolithic \
> > >       --disable-defaults \
> > > +     --enable-kdf \
> > >       --enable-dependency-tracking \
> > >       --enable-shared \
> > >       --$(call ptx/endis, PTXCONF_STRONGSWAN_SWANCTL)-swanctl \
> > > @@ -243,6 +244,7 @@ STRONGSWAN_PLUGINS := \
> > >       libstrongswan-gcm.so \
> > >       libstrongswan-gmp.so \
> > >       libstrongswan-hmac.so \
> > > +     libstrongswan-kdf.so \
> > >       libstrongswan-kernel-netlink.so \
> > >       libstrongswan-nonce.so \
> > >       libstrongswan-pem.so \
> > > --
> > > 2.36.1
> > >
> > >
> 



^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2022-06-16  7:53 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-06-16  6:42 [ptxdist] [PATCH] strongswan: version bump 5.9.2 -> 5.9.6 Lars Pedersen
2022-06-16  6:48 ` Alexander Dahl
2022-06-16  7:25   ` Lars Pedersen
2022-06-16  7:28     ` Christian Melki
2022-06-16  7:53     ` Alexander Dahl

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox