notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Ukraine
FreshPorts needs to find a new hosting provide willing to take a 2U chassis and host it free of charge. This is part of the FreshPorts project. Preferably in the Austin area. This is not a primary server, but it used for development.
Port details
strongswan Open Source IKEv2 IPsec-based VPN solution
5.9.6_2 security on this many watch lists=7 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port View this port on Repology. pkg-fallout Version of this port present on the latest quarterly branch.
Maintainer: strongswan@nanoteq.com search for ports maintained by this maintainer
Port Added: 2010-08-26 13:40:32
Last Update: 2022-06-16 14:41:07
Commit Hash: 4e7ee35
People watching this port, also watch:: openvpn, sudo, postfix, apache24, python27
Also Listed In: net-vpn
License: GPLv2
Description:
SVNWeb : git : Homepage
pkg-plist: as obtained via: make generate-plist
Expand this list (426 items)
Collapse this list.
  1. @ldconfig
  2. /usr/local/share/licenses/strongswan-5.9.6_2/catalog.mk
  3. /usr/local/share/licenses/strongswan-5.9.6_2/LICENSE
  4. /usr/local/share/licenses/strongswan-5.9.6_2/GPLv2
  5. bin/pki
  6. @comment bin/tpm_extendpcr
  7. @sample etc/ipsec.conf.sample
  8. @sample etc/ipsec.secrets.sample
  9. @sample etc/strongswan.conf.sample
  10. @sample etc/strongswan.d/charon-logging.conf.sample
  11. @sample etc/strongswan.d/charon.conf.sample
  12. @sample etc/strongswan.d/charon/addrblock.conf.sample
  13. @sample etc/strongswan.d/charon/aes.conf.sample
  14. @comment @sample etc/strongswan.d/charon/attr-sql.conf.sample
  15. @sample etc/strongswan.d/charon/attr.conf.sample
  16. @sample etc/strongswan.d/charon/blowfish.conf.sample
  17. @sample etc/strongswan.d/charon/cmac.conf.sample
  18. @sample etc/strongswan.d/charon/constraints.conf.sample
  19. @sample etc/strongswan.d/charon/counters.conf.sample
  20. @comment @sample etc/strongswan.d/charon/ctr.conf.sample
  21. @sample etc/strongswan.d/charon/curl.conf.sample
  22. @sample etc/strongswan.d/charon/curve25519.conf.sample
  23. @sample etc/strongswan.d/charon/des.conf.sample
  24. @sample etc/strongswan.d/charon/dnskey.conf.sample
  25. @sample etc/strongswan.d/charon/drbg.conf.sample
  26. @comment @sample etc/strongswan.d/charon/eap-aka-3gpp2.conf.sample
  27. @comment @sample etc/strongswan.d/charon/eap-aka.conf.sample
  28. @comment @sample etc/strongswan.d/charon/eap-dynamic.conf.sample
  29. @sample etc/strongswan.d/charon/eap-identity.conf.sample
  30. @sample etc/strongswan.d/charon/eap-md5.conf.sample
  31. @sample etc/strongswan.d/charon/eap-mschapv2.conf.sample
  32. @sample etc/strongswan.d/charon/eap-peap.conf.sample
  33. @comment @sample etc/strongswan.d/charon/eap-radius.conf.sample
  34. @comment @sample etc/strongswan.d/charon/eap-sim-file.conf.sample
  35. @comment @sample etc/strongswan.d/charon/eap-sim.conf.sample
  36. @sample etc/strongswan.d/charon/eap-tls.conf.sample
  37. @sample etc/strongswan.d/charon/eap-ttls.conf.sample
  38. @comment @sample etc/strongswan.d/charon/farp.conf.sample
  39. @sample etc/strongswan.d/charon/fips-prf.conf.sample
  40. @comment @sample etc/strongswan.d/charon/gcm.conf.sample
  41. @comment @sample etc/strongswan.d/charon/gmp.conf.sample
  42. @sample etc/strongswan.d/charon/hmac.conf.sample
  43. @sample etc/strongswan.d/charon/kdf.conf.sample
  44. @comment @sample etc/strongswan.d/charon/ipseckey.conf.sample
  45. @comment @sample etc/strongswan.d/charon/kernel-libipsec.conf.sample
  46. @sample etc/strongswan.d/charon/kernel-pfkey.conf.sample
  47. @sample etc/strongswan.d/charon/kernel-pfroute.conf.sample
  48. @comment @sample etc/strongswan.d/charon/ldap.conf.sample
  49. @comment @sample etc/strongswan.d/charon/load-tester.conf.sample
  50. @sample etc/strongswan.d/charon/md4.conf.sample
  51. @sample etc/strongswan.d/charon/md5.conf.sample
  52. @comment @sample etc/strongswan.d/charon/mgf1.conf.sample
  53. @comment @sample etc/strongswan.d/charon/mysql.conf.sample
  54. @sample etc/strongswan.d/charon/nonce.conf.sample
  55. @sample etc/strongswan.d/charon/openssl.conf.sample
  56. @sample etc/strongswan.d/charon/pem.conf.sample
  57. @sample etc/strongswan.d/charon/pgp.conf.sample
  58. @sample etc/strongswan.d/charon/pkcs1.conf.sample
  59. @comment @sample etc/strongswan.d/charon/pkcs11.conf.sample
  60. @sample etc/strongswan.d/charon/pkcs12.conf.sample
  61. @sample etc/strongswan.d/charon/pkcs7.conf.sample
  62. @sample etc/strongswan.d/charon/pkcs8.conf.sample
  63. @sample etc/strongswan.d/charon/pubkey.conf.sample
  64. @sample etc/strongswan.d/charon/random.conf.sample
  65. @sample etc/strongswan.d/charon/rc2.conf.sample
  66. @sample etc/strongswan.d/charon/resolve.conf.sample
  67. @sample etc/strongswan.d/charon/revocation.conf.sample
  68. @sample etc/strongswan.d/charon/sha1.conf.sample
  69. @sample etc/strongswan.d/charon/sha2.conf.sample
  70. @comment @sample etc/strongswan.d/charon/smp.conf.sample
  71. @sample etc/strongswan.d/charon/socket-default.conf.sample
  72. @comment @sample etc/strongswan.d/charon/sql.conf.sample
  73. @comment @sample etc/strongswan.d/charon/sqlite.conf.sample
  74. @sample etc/strongswan.d/charon/sshkey.conf.sample
  75. @sample etc/strongswan.d/charon/stroke.conf.sample
  76. @comment @sample etc/strongswan.d/charon/test-vectors.conf.sample
  77. @comment @sample etc/strongswan.d/charon/tpm.conf.sample
  78. @comment @sample etc/strongswan.d/charon/unbound.conf.sample
  79. @comment @sample etc/strongswan.d/charon/unity.conf.sample
  80. @sample etc/strongswan.d/charon/updown.conf.sample
  81. @sample etc/strongswan.d/charon/vici.conf.sample
  82. @sample etc/strongswan.d/charon/whitelist.conf.sample
  83. @sample etc/strongswan.d/charon/x509.conf.sample
  84. @comment @sample etc/strongswan.d/charon/xauth-eap.conf.sample
  85. @sample etc/strongswan.d/charon/xauth-generic.conf.sample
  86. @comment @sample etc/strongswan.d/charon/xauth-pam.conf.sample
  87. @sample etc/strongswan.d/charon/xcbc.conf.sample
  88. @sample etc/strongswan.d/pki.conf.sample
  89. @comment @sample etc/strongswan.d/pool.conf.sample
  90. @comment @sample etc/strongswan.d/scepclient.conf.sample
  91. @sample etc/strongswan.d/starter.conf.sample
  92. @sample etc/strongswan.d/swanctl.conf.sample
  93. @sample etc/swanctl/swanctl.conf.sample
  94. include/libvici.h
  95. lib/ipsec/libcharon.la
  96. lib/ipsec/libcharon.so
  97. lib/ipsec/libcharon.so.0
  98. lib/ipsec/libcharon.so.0.0.0
  99. @comment lib/ipsec/libipsec.la
  100. @comment lib/ipsec/libipsec.so
  101. @comment lib/ipsec/libipsec.so.0
  102. @comment lib/ipsec/libipsec.so.0.0.0
  103. @comment lib/ipsec/libradius.la
  104. @comment lib/ipsec/libradius.so
  105. @comment lib/ipsec/libradius.so.0
  106. @comment lib/ipsec/libradius.so.0.0.0
  107. @comment lib/ipsec/libsimaka.la
  108. @comment lib/ipsec/libsimaka.so
  109. @comment lib/ipsec/libsimaka.so.0
  110. @comment lib/ipsec/libsimaka.so.0.0.0
  111. lib/ipsec/libstrongswan.la
  112. lib/ipsec/libstrongswan.so
  113. lib/ipsec/libstrongswan.so.0
  114. lib/ipsec/libstrongswan.so.0.0.0
  115. lib/ipsec/libtls.la
  116. lib/ipsec/libtls.so
  117. lib/ipsec/libtls.so.0
  118. lib/ipsec/libtls.so.0.0.0
  119. @comment lib/ipsec/libtpmtss.la
  120. @comment lib/ipsec/libtpmtss.so
  121. @comment lib/ipsec/libtpmtss.so.0
  122. @comment lib/ipsec/libtpmtss.so.0.0.0
  123. lib/ipsec/libvici.la
  124. lib/ipsec/libvici.so
  125. lib/ipsec/libvici.so.0
  126. lib/ipsec/libvici.so.0.0.0
  127. lib/ipsec/plugins/libstrongswan-addrblock.la
  128. lib/ipsec/plugins/libstrongswan-addrblock.so
  129. lib/ipsec/plugins/libstrongswan-aes.la
  130. lib/ipsec/plugins/libstrongswan-aes.so
  131. @comment lib/ipsec/plugins/libstrongswan-attr-sql.la
  132. @comment lib/ipsec/plugins/libstrongswan-attr-sql.so
  133. lib/ipsec/plugins/libstrongswan-attr.la
  134. lib/ipsec/plugins/libstrongswan-attr.so
  135. lib/ipsec/plugins/libstrongswan-blowfish.la
  136. lib/ipsec/plugins/libstrongswan-blowfish.so
  137. lib/ipsec/plugins/libstrongswan-cmac.la
  138. lib/ipsec/plugins/libstrongswan-cmac.so
  139. lib/ipsec/plugins/libstrongswan-constraints.la
  140. lib/ipsec/plugins/libstrongswan-constraints.so
  141. lib/ipsec/plugins/libstrongswan-counters.la
  142. lib/ipsec/plugins/libstrongswan-counters.so
  143. @comment lib/ipsec/plugins/libstrongswan-ctr.la
  144. @comment lib/ipsec/plugins/libstrongswan-ctr.so
  145. lib/ipsec/plugins/libstrongswan-curl.la
  146. lib/ipsec/plugins/libstrongswan-curl.so
  147. lib/ipsec/plugins/libstrongswan-curve25519.la
  148. lib/ipsec/plugins/libstrongswan-curve25519.so
  149. lib/ipsec/plugins/libstrongswan-des.la
  150. lib/ipsec/plugins/libstrongswan-des.so
  151. lib/ipsec/plugins/libstrongswan-dnskey.la
  152. lib/ipsec/plugins/libstrongswan-dnskey.so
  153. lib/ipsec/plugins/libstrongswan-drbg.la
  154. lib/ipsec/plugins/libstrongswan-drbg.so
  155. @comment lib/ipsec/plugins/libstrongswan-eap-aka-3gpp2.la
  156. @comment lib/ipsec/plugins/libstrongswan-eap-aka-3gpp2.so
  157. @comment lib/ipsec/plugins/libstrongswan-eap-aka.la
  158. @comment lib/ipsec/plugins/libstrongswan-eap-aka.so
  159. @comment lib/ipsec/plugins/libstrongswan-eap-dynamic.la
  160. @comment lib/ipsec/plugins/libstrongswan-eap-dynamic.so
  161. lib/ipsec/plugins/libstrongswan-eap-identity.la
  162. lib/ipsec/plugins/libstrongswan-eap-identity.so
  163. lib/ipsec/plugins/libstrongswan-eap-md5.la
  164. lib/ipsec/plugins/libstrongswan-eap-md5.so
  165. lib/ipsec/plugins/libstrongswan-eap-mschapv2.la
  166. lib/ipsec/plugins/libstrongswan-eap-mschapv2.so
  167. lib/ipsec/plugins/libstrongswan-eap-peap.la
  168. lib/ipsec/plugins/libstrongswan-eap-peap.so
  169. @comment lib/ipsec/plugins/libstrongswan-eap-radius.la
  170. @comment lib/ipsec/plugins/libstrongswan-eap-radius.so
  171. @comment lib/ipsec/plugins/libstrongswan-eap-sim-file.la
  172. @comment lib/ipsec/plugins/libstrongswan-eap-sim-file.so
  173. @comment lib/ipsec/plugins/libstrongswan-eap-sim.la
  174. @comment lib/ipsec/plugins/libstrongswan-eap-sim.so
  175. lib/ipsec/plugins/libstrongswan-eap-tls.la
  176. lib/ipsec/plugins/libstrongswan-eap-tls.so
  177. lib/ipsec/plugins/libstrongswan-eap-ttls.la
  178. lib/ipsec/plugins/libstrongswan-eap-ttls.so
  179. @comment lib/ipsec/plugins/libstrongswan-farp.la
  180. @comment lib/ipsec/plugins/libstrongswan-farp.so
  181. lib/ipsec/plugins/libstrongswan-fips-prf.la
  182. lib/ipsec/plugins/libstrongswan-fips-prf.so
  183. @comment lib/ipsec/plugins/libstrongswan-gcm.la
  184. @comment lib/ipsec/plugins/libstrongswan-gcm.so
  185. @comment lib/ipsec/plugins/libstrongswan-gmp.la
  186. @comment lib/ipsec/plugins/libstrongswan-gmp.so
  187. lib/ipsec/plugins/libstrongswan-hmac.la
  188. lib/ipsec/plugins/libstrongswan-hmac.so
  189. @comment lib/ipsec/plugins/libstrongswan-ipseckey.la
  190. @comment lib/ipsec/plugins/libstrongswan-ipseckey.so
  191. lib/ipsec/plugins/libstrongswan-kdf.la
  192. lib/ipsec/plugins/libstrongswan-kdf.so
  193. @comment lib/ipsec/plugins/libstrongswan-kernel-libipsec.la
  194. @comment lib/ipsec/plugins/libstrongswan-kernel-libipsec.so
  195. lib/ipsec/plugins/libstrongswan-kernel-pfkey.la
  196. lib/ipsec/plugins/libstrongswan-kernel-pfkey.so
  197. lib/ipsec/plugins/libstrongswan-kernel-pfroute.la
  198. lib/ipsec/plugins/libstrongswan-kernel-pfroute.so
  199. @comment lib/ipsec/plugins/libstrongswan-ldap.la
  200. @comment lib/ipsec/plugins/libstrongswan-ldap.so
  201. @comment lib/ipsec/plugins/libstrongswan-load-tester.la
  202. @comment lib/ipsec/plugins/libstrongswan-load-tester.so
  203. lib/ipsec/plugins/libstrongswan-md4.la
  204. lib/ipsec/plugins/libstrongswan-md4.so
  205. lib/ipsec/plugins/libstrongswan-md5.la
  206. lib/ipsec/plugins/libstrongswan-md5.so
  207. @comment lib/ipsec/plugins/libstrongswan-mgf1.la
  208. @comment lib/ipsec/plugins/libstrongswan-mgf1.so
  209. @comment lib/ipsec/plugins/libstrongswan-mysql.la
  210. @comment lib/ipsec/plugins/libstrongswan-mysql.so
  211. lib/ipsec/plugins/libstrongswan-nonce.la
  212. lib/ipsec/plugins/libstrongswan-nonce.so
  213. lib/ipsec/plugins/libstrongswan-openssl.la
  214. lib/ipsec/plugins/libstrongswan-openssl.so
  215. lib/ipsec/plugins/libstrongswan-pem.la
  216. lib/ipsec/plugins/libstrongswan-pem.so
  217. lib/ipsec/plugins/libstrongswan-pgp.la
  218. lib/ipsec/plugins/libstrongswan-pgp.so
  219. lib/ipsec/plugins/libstrongswan-pkcs1.la
  220. lib/ipsec/plugins/libstrongswan-pkcs1.so
  221. @comment lib/ipsec/plugins/libstrongswan-pkcs11.la
  222. @comment lib/ipsec/plugins/libstrongswan-pkcs11.so
  223. lib/ipsec/plugins/libstrongswan-pkcs12.la
  224. lib/ipsec/plugins/libstrongswan-pkcs12.so
  225. lib/ipsec/plugins/libstrongswan-pkcs7.la
  226. lib/ipsec/plugins/libstrongswan-pkcs7.so
  227. lib/ipsec/plugins/libstrongswan-pkcs8.la
  228. lib/ipsec/plugins/libstrongswan-pkcs8.so
  229. lib/ipsec/plugins/libstrongswan-pubkey.la
  230. lib/ipsec/plugins/libstrongswan-pubkey.so
  231. lib/ipsec/plugins/libstrongswan-random.la
  232. lib/ipsec/plugins/libstrongswan-random.so
  233. lib/ipsec/plugins/libstrongswan-rc2.la
  234. lib/ipsec/plugins/libstrongswan-rc2.so
  235. lib/ipsec/plugins/libstrongswan-resolve.la
  236. lib/ipsec/plugins/libstrongswan-resolve.so
  237. lib/ipsec/plugins/libstrongswan-revocation.la
  238. lib/ipsec/plugins/libstrongswan-revocation.so
  239. lib/ipsec/plugins/libstrongswan-sha1.la
  240. lib/ipsec/plugins/libstrongswan-sha1.so
  241. lib/ipsec/plugins/libstrongswan-sha2.la
  242. lib/ipsec/plugins/libstrongswan-sha2.so
  243. @comment lib/ipsec/plugins/libstrongswan-smp.la
  244. @comment lib/ipsec/plugins/libstrongswan-smp.so
  245. lib/ipsec/plugins/libstrongswan-socket-default.la
  246. lib/ipsec/plugins/libstrongswan-socket-default.so
  247. @comment lib/ipsec/plugins/libstrongswan-sql.la
  248. @comment lib/ipsec/plugins/libstrongswan-sql.so
  249. @comment lib/ipsec/plugins/libstrongswan-sqlite.la
  250. @comment lib/ipsec/plugins/libstrongswan-sqlite.so
  251. lib/ipsec/plugins/libstrongswan-sshkey.la
  252. lib/ipsec/plugins/libstrongswan-sshkey.so
  253. lib/ipsec/plugins/libstrongswan-stroke.la
  254. lib/ipsec/plugins/libstrongswan-stroke.so
  255. @comment lib/ipsec/plugins/libstrongswan-test-vectors.la
  256. @comment lib/ipsec/plugins/libstrongswan-test-vectors.so
  257. @comment lib/ipsec/plugins/libstrongswan-tpm.la
  258. @comment lib/ipsec/plugins/libstrongswan-tpm.so
  259. @comment lib/ipsec/plugins/libstrongswan-unbound.la
  260. @comment lib/ipsec/plugins/libstrongswan-unbound.so
  261. @comment lib/ipsec/plugins/libstrongswan-unity.la
  262. @comment lib/ipsec/plugins/libstrongswan-unity.so
  263. lib/ipsec/plugins/libstrongswan-updown.la
  264. lib/ipsec/plugins/libstrongswan-updown.so
  265. lib/ipsec/plugins/libstrongswan-vici.la
  266. lib/ipsec/plugins/libstrongswan-vici.so
  267. lib/ipsec/plugins/libstrongswan-whitelist.la
  268. lib/ipsec/plugins/libstrongswan-whitelist.so
  269. lib/ipsec/plugins/libstrongswan-x509.la
  270. lib/ipsec/plugins/libstrongswan-x509.so
  271. @comment lib/ipsec/plugins/libstrongswan-xauth-eap.la
  272. @comment lib/ipsec/plugins/libstrongswan-xauth-eap.so
  273. lib/ipsec/plugins/libstrongswan-xauth-generic.la
  274. lib/ipsec/plugins/libstrongswan-xauth-generic.so
  275. @comment lib/ipsec/plugins/libstrongswan-xauth-pam.la
  276. @comment lib/ipsec/plugins/libstrongswan-xauth-pam.so
  277. lib/ipsec/plugins/libstrongswan-xcbc.la
  278. lib/ipsec/plugins/libstrongswan-xcbc.so
  279. libexec/ipsec/_copyright
  280. libexec/ipsec/_updown
  281. libexec/ipsec/charon
  282. @comment libexec/ipsec/load-tester
  283. @comment libexec/ipsec/pool
  284. @comment libexec/ipsec/scepclient
  285. libexec/ipsec/starter
  286. libexec/ipsec/stroke
  287. libexec/ipsec/whitelist
  288. man/man1/pki---acert.1.gz
  289. man/man1/pki---dn.1.gz
  290. man/man1/pki---gen.1.gz
  291. man/man1/pki---issue.1.gz
  292. man/man1/pki---keyid.1.gz
  293. man/man1/pki---pkcs7.1.gz
  294. man/man1/pki---print.1.gz
  295. man/man1/pki---pub.1.gz
  296. man/man1/pki---req.1.gz
  297. man/man1/pki---self.1.gz
  298. man/man1/pki---signcrl.1.gz
  299. man/man1/pki---verify.1.gz
  300. man/man1/pki.1.gz
  301. man/man5/ipsec.conf.5.gz
  302. man/man5/ipsec.secrets.5.gz
  303. man/man5/strongswan.conf.5.gz
  304. man/man5/swanctl.conf.5.gz
  305. man/man8/charon-cmd.8.gz
  306. man/man8/ipsec.8.gz
  307. @comment man/man8/scepclient.8.gz
  308. man/man8/swanctl.8.gz
  309. sbin/charon-cmd
  310. sbin/ipsec
  311. sbin/swanctl
  312. share/strongswan/templates/config/plugins/addrblock.conf
  313. share/strongswan/templates/config/plugins/aes.conf
  314. @comment share/strongswan/templates/config/plugins/attr-sql.conf
  315. share/strongswan/templates/config/plugins/attr.conf
  316. share/strongswan/templates/config/plugins/blowfish.conf
  317. share/strongswan/templates/config/plugins/cmac.conf
  318. share/strongswan/templates/config/plugins/constraints.conf
  319. share/strongswan/templates/config/plugins/counters.conf
  320. share/strongswan/templates/config/plugins/curl.conf
  321. share/strongswan/templates/config/plugins/curve25519.conf
  322. share/strongswan/templates/config/plugins/des.conf
  323. share/strongswan/templates/config/plugins/dnskey.conf
  324. share/strongswan/templates/config/plugins/drbg.conf
  325. @comment share/strongswan/templates/config/plugins/eap-aka-3gpp2.conf
  326. @comment share/strongswan/templates/config/plugins/eap-aka.conf
  327. @comment share/strongswan/templates/config/plugins/eap-dynamic.conf
  328. share/strongswan/templates/config/plugins/eap-identity.conf
  329. share/strongswan/templates/config/plugins/eap-md5.conf
  330. share/strongswan/templates/config/plugins/eap-mschapv2.conf
  331. share/strongswan/templates/config/plugins/eap-peap.conf
  332. @comment share/strongswan/templates/config/plugins/eap-radius.conf
  333. @comment share/strongswan/templates/config/plugins/eap-sim-file.conf
  334. @comment share/strongswan/templates/config/plugins/eap-sim.conf
  335. share/strongswan/templates/config/plugins/eap-tls.conf
  336. share/strongswan/templates/config/plugins/eap-ttls.conf
  337. @comment share/strongswan/templates/config/plugins/farp.conf
  338. share/strongswan/templates/config/plugins/fips-prf.conf
  339. @comment share/strongswan/templates/config/plugins/gcm.conf
  340. @comment share/strongswan/templates/config/plugins/gmp.conf
  341. share/strongswan/templates/config/plugins/hmac.conf
  342. share/strongswan/templates/config/plugins/kdf.conf
  343. @comment share/strongswan/templates/config/plugins/ipseckey.conf
  344. @comment share/strongswan/templates/config/plugins/kernel-libipsec.conf
  345. share/strongswan/templates/config/plugins/kernel-pfkey.conf
  346. share/strongswan/templates/config/plugins/kernel-pfroute.conf
  347. @comment share/strongswan/templates/config/plugins/ldap.conf
  348. @comment share/strongswan/templates/config/plugins/load-tester.conf
  349. share/strongswan/templates/config/plugins/md4.conf
  350. share/strongswan/templates/config/plugins/md5.conf
  351. @comment share/strongswan/templates/config/plugins/mgf1.conf
  352. @comment share/strongswan/templates/config/plugins/mysql.conf
  353. share/strongswan/templates/config/plugins/nonce.conf
  354. share/strongswan/templates/config/plugins/openssl.conf
  355. share/strongswan/templates/config/plugins/pem.conf
  356. share/strongswan/templates/config/plugins/pgp.conf
  357. share/strongswan/templates/config/plugins/pkcs1.conf
  358. @comment share/strongswan/templates/config/plugins/pkcs11.conf
  359. @comment share/strongswan/templates/config/plugins/ctr.conf
  360. share/strongswan/templates/config/plugins/pkcs12.conf
  361. share/strongswan/templates/config/plugins/pkcs7.conf
  362. share/strongswan/templates/config/plugins/pkcs8.conf
  363. share/strongswan/templates/config/plugins/pubkey.conf
  364. share/strongswan/templates/config/plugins/random.conf
  365. share/strongswan/templates/config/plugins/rc2.conf
  366. share/strongswan/templates/config/plugins/resolve.conf
  367. share/strongswan/templates/config/plugins/revocation.conf
  368. share/strongswan/templates/config/plugins/sha1.conf
  369. share/strongswan/templates/config/plugins/sha2.conf
  370. @comment share/strongswan/templates/config/plugins/smp.conf
  371. share/strongswan/templates/config/plugins/socket-default.conf
  372. @comment share/strongswan/templates/config/plugins/sql.conf
  373. @comment share/strongswan/templates/config/plugins/sqlite.conf
  374. share/strongswan/templates/config/plugins/sshkey.conf
  375. share/strongswan/templates/config/plugins/stroke.conf
  376. @comment share/strongswan/templates/config/plugins/test-vectors.conf
  377. @comment share/strongswan/templates/config/plugins/tpm.conf
  378. @comment share/strongswan/templates/config/plugins/unbound.conf
  379. @comment share/strongswan/templates/config/plugins/unity.conf
  380. share/strongswan/templates/config/plugins/updown.conf
  381. share/strongswan/templates/config/plugins/vici.conf
  382. share/strongswan/templates/config/plugins/whitelist.conf
  383. share/strongswan/templates/config/plugins/x509.conf
  384. @comment share/strongswan/templates/config/plugins/xauth-eap.conf
  385. share/strongswan/templates/config/plugins/xauth-generic.conf
  386. @comment share/strongswan/templates/config/plugins/xauth-pam.conf
  387. share/strongswan/templates/config/plugins/xcbc.conf
  388. share/strongswan/templates/config/strongswan.conf
  389. share/strongswan/templates/config/strongswan.d/charon-logging.conf
  390. share/strongswan/templates/config/strongswan.d/charon.conf
  391. share/strongswan/templates/config/strongswan.d/pki.conf
  392. @comment share/strongswan/templates/config/strongswan.d/pool.conf
  393. @comment share/strongswan/templates/config/strongswan.d/scepclient.conf
  394. share/strongswan/templates/config/strongswan.d/starter.conf
  395. share/strongswan/templates/config/strongswan.d/swanctl.conf
  396. @comment share/strongswan/templates/database/sql/mysql.sql
  397. @comment share/strongswan/templates/database/sql/sqlite.sql
  398. @dir etc/ipsec.d/aacerts
  399. @dir etc/ipsec.d/acerts
  400. @dir etc/ipsec.d/cacerts
  401. @dir etc/ipsec.d/certs
  402. @dir etc/ipsec.d/crls
  403. @dir etc/ipsec.d/ocspcerts
  404. @dir etc/ipsec.d/private
  405. @dir etc/ipsec.d/reqs
  406. @dir etc/swanctl/bliss
  407. @dir etc/swanctl/conf.d
  408. @dir etc/swanctl/ecdsa
  409. @dir etc/swanctl/pkcs12
  410. @dir etc/swanctl/pkcs8
  411. @dir etc/swanctl/private
  412. @dir etc/swanctl/pubkey
  413. @dir etc/swanctl/rsa
  414. @dir etc/swanctl/x509
  415. @dir etc/swanctl/x509aa
  416. @dir etc/swanctl/x509ac
  417. @dir etc/swanctl/x509ca
  418. @dir etc/swanctl/x509crl
  419. @dir etc/swanctl/x509ocsp
  420. @comment share/strongswan/templates/config/plugins/padlock.conf
  421. @comment lib/ipsec/plugins/libstrongswan-padlock.la
  422. @comment lib/ipsec/plugins/libstrongswan-padlock.so
  423. @comment @sample etc/strongswan.d/charon/padlock.conf.sample
  424. @owner
  425. @group
  426. @mode
Collapse this list.
Dependency lines:
  • strongswan>0:security/strongswan
To install the port:
cd /usr/ports/security/strongswan/ && make install clean
To add the package, run one of these commands:
  • pkg install security/strongswan
  • pkg install strongswan
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
PKGNAME: strongswan
Flavors: there is no flavor information for this port.
distinfo:
Packages (timestamps in pop-ups are UTC):
strongswan
ABIlatestquarterly
FreeBSD:11:aarch645.6.35.8.4_1
FreeBSD:11:amd645.9.35.9.2_2
FreeBSD:11:armv65.4.05.8.4_1
FreeBSD:11:i3865.9.35.9.2_2
FreeBSD:11:mips--
FreeBSD:11:mips645.4.0-
FreeBSD:12:aarch645.7.15.9.6_2
FreeBSD:12:amd645.9.6_25.9.6_2
FreeBSD:12:armv65.7.15.9.0
FreeBSD:12:armv75.7.15.9.0
FreeBSD:12:i3865.9.6_25.9.6_2
FreeBSD:12:mips--
FreeBSD:12:mips645.7.1-
FreeBSD:12:powerpc64-5.9.2_1
FreeBSD:13:aarch645.9.6_25.9.6_2
FreeBSD:13:amd645.9.6_25.9.6_2
FreeBSD:13:armv65.9.15.9.6_2
FreeBSD:13:armv75.9.6_25.9.6_2
FreeBSD:13:i3865.9.6_25.9.6_2
FreeBSD:13:mips--
FreeBSD:13:mips645.9.15.9.1
FreeBSD:13:powerpc645.9.15.9.2_2
FreeBSD:13:riscv64-5.9.6_2
FreeBSD:14:aarch645.9.6_2-
FreeBSD:14:amd645.9.6_2-
FreeBSD:14:armv65.9.6_2-
FreeBSD:14:armv75.9.6_2-
FreeBSD:14:i3865.9.6_2-
FreeBSD:14:mips--
FreeBSD:14:mips64--
FreeBSD:14:powerpc645.9.2_1-
FreeBSD:14:riscv645.9.4-
 

Dependencies
NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
Build dependencies:
  1. pkgconf>=1.3.0_1 : devel/pkgconf
Library dependencies:
  1. libcurl.so : ftp/curl
There are no ports dependent upon this port

Configuration Options:
Options name:

USES:

pkg-message:
For install:
If upgrading from > 5.9.2_1:
Master Sites:
Expand this list (2 items)
Collapse this list.
  1. https://download.strongswan.org/
  2. https://download2.strongswan.org/
Collapse this list.
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2021-03-17
    Affects: users of security/strongswan
    Author: driesm.michiels@gmail.com
    Reason: 
      The stroke starter interface has been deprecated by upstream
      for some time now.  The default interface for controlling the charon
      daemon has switched from stroke to vici. Users still using the
      legacy config files such as ipsec.conf and ipsec.secret (stroke, starter)
      can easily revert to the old behavior by:
    
      # sysrc strongswan_interface="stroke"
    
      It is recommended to use the vici interface which is configured by swanctl.conf.
      Check : https://wiki.strongswan.org/projects/strongswan/wiki/Fromipsecconf
      to ease the transition from ipsec.* to swanctl.conf
    
    

Number of commits found: 87

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
16 Jun 2022 14:41:07
 files touched by this commit commit hash:4e7ee356bbfdef75435f4fd3e395ebb806eb8790  5.9.6_2
Fernando Apesteguía (fernape) search for other commits by this committer
Author: Francois ten Krooden
security/strongswan: Fix key derivation

An issue in the upstream port causes key derivation to fail in version 5.9.6.
A work around is to enable the KDF pluging by default.

PR:	264667
Reported by:	strongswan@Nanoteq.com (maintainer)
01 Jun 2022 22:03:17
 files touched by this commit commit hash:b3a2477de75eeaac86240462bd3d76abef0c2c2c  5.9.6_1
Dries Michiels (driesm) search for other commits by this committer
Author: Björn König
security/strongswan: add CTR plugin option

PR:		264354
Approved by:	Francois ten Krooden (maintainer)
09 May 2022 22:28:02
 files touched by this commit commit hash:b591672ecc5b85f42c3f9ebaed2d7acb0120ca9d  5.9.6
Dries Michiels (driesm) search for other commits by this committer
Author: Dani I
security/strongswan: Update to 5.9.6

Changes:	https://github.com/strongswan/strongswan/releases/tag/5.9.6

PR:		263748
Approved by:	Francois ten Krooden (maintainer)
26 Jan 2022 18:38:42
 files touched by this commit commit hash:f64253580072d6239948fd1dbb7bf171f4ef0ce3  5.9.5
Dries Michiels (driesm) search for other commits by this committer
Author: Michael Glaus
security/strongswan: Update to 5.9.5

Changes:	https://github.com/strongswan/strongswan/releases/tag/5.9.5
PR:		261462
Approved by:	Francois ten Krooden <strongswan@Nanoteq.com> (maintainer)
MFH:		2022Q1
Security:	CVE-2021-45079
20 Oct 2021 07:19:32
 files touched by this commit commit hash:eead2ddf757a4e9f50eedd1680f3b62e6a16aaef  5.9.4 This port version is marked as vulnerable.
Li-Wen Hsu (lwhsu) search for other commits by this committer
Author: Dani
security/strongswan: Update to 5.9.4

Security & Bugfix Update to 5.9.4:
- Changelog: https://github.com/strongswan/strongswan/releases/tag/5.9.4
- While here change repos to https
- Fix CVE-2021-41990:
https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-(cve-2021-41990).html
- Fix CVE-2021-41991:
https://www.strongswan.org/blog/2021/10/18/strongswan-vulnerability-(cve-2021-41991).html

PR:		259267
Approved by:	strongswan@Nanoteq.com (maintainer)
MFH:		2021Q4
03 Aug 2021 06:38:33
 files touched by this commit commit hash:4a836720c73ef48f1afd3ba7d1abe960ea2c61ef  5.9.3 This port version is marked as vulnerable.
Guangyuan Yang (ygy) search for other commits by this committer
Author: Jose Luis Duran
security/strongswan: Update to 5.9.3

Changelog:	https://github.com/strongswan/strongswan/releases/tag/5.9.3

PR:		257564
Approved by:	strongswan@Nanoteq.com (maintainer)
19 May 2021 11:23:52
 files touched by this commit commit hash:0ca8849103d5838079aa6433722e5c335dcc955d  5.9.2_2 This port version is marked as vulnerable.
Juraj Lutter (otis) search for other commits by this committer
Author: Sergey Akhmatov
security/strongswan: Fix default control-interface

Fix default control-interface in rc.d script and also
make it user-selectable at build time, defaulting to VICI.

Also mention this change in pkg-message, as previously the
default was "stroke" and it was changed to "vici" with
only a short notice in UPDATING, that was not displayed
when using binary upgrades.

Committing a portfmt'd version.

PR:		255952
Approved by:	strongswan@Nanoteq.com (maintainer)
06 Apr 2021 14:31:13
 files touched by this commit commit hash:135fdeebb99c3569e42d8162b265e15d29bd937d  5.9.2_1 This port version is marked as vulnerable.
Mathieu Arnold (mat) search for other commits by this committer
all: Remove all other $FreeBSD keywords.
06 Apr 2021 14:31:07
 files touched by this commit commit hash:305f148f482daf30dcf728039d03d019f88344eb  5.9.2_1 This port version is marked as vulnerable.
Mathieu Arnold (mat) search for other commits by this committer
Remove # $FreeBSD$ from Makefiles.
17 Mar 2021 19:12:32
Original commit files touched by this commit Revision:568683  5.9.2_1 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
security/strongswan: use "vici" interface instead of deprecated "stroke" by
default

Add UPDATING entry with migration instruction.

PR:		249865
Submitted by:	driesm.michiels@gmail.com
Approved by:	strongswan@nanoteq.com (maintainer)
09 Mar 2021 06:45:55
Original commit files touched by this commit Revision:567895  5.9.2 This port version is marked as vulnerable.
fernape search for other commits by this committer
security/strongswan: Update to 5.9.2

ChangeLog: https://wiki.strongswan.org/versions/80

While here, pet linters

PR:	254047
Submitted by:	jlduran@gmail.com
Approved by:	strongswan@Nanoteq.com (maintainer)
29 Dec 2020 22:24:24
Original commit files touched by this commit Revision:559621  5.9.1 This port version is marked as vulnerable.
jrm search for other commits by this committer
security/strongswan: Update to version 5.9.1

Changelog: https://wiki.strongswan.org/versions/79

PR:		252202
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@nanoteq.com (maintainer)
25 Sep 2020 14:05:49
Original commit files touched by this commit Revision:550035  5.9.0 This port version is marked as vulnerable.
pi search for other commits by this committer
security/strongswan: update 5.8.4 -> 5.9.0

- Also link the tpm2-tss package for testing with the TPM plugin:
  https://wiki.strongswan.org/projects/strongswan/wiki/TpmPlugin

PR:		249470
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
Relnotes:	https://wiki.strongswan.org/versions/78
20 May 2020 18:50:26
Original commit files touched by this commit Revision:536014  5.8.4_1 This port version is marked as vulnerable.
fernape search for other commits by this committer
security/strongswan: Add TEST_TARGET

make test passes OK

PR:	246535
Submitted by:	jlduran@gmail.com
Reviewed by:	strongswan@Nanoteq.com (maintainer)
13 Apr 2020 18:02:16
Original commit files touched by this commit Revision:531624  5.8.4 This port version is marked as vulnerable.
garga search for other commits by this committer
security/strongswan: Update to 5.8.4

PR:		245199
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
Sponsored by:	Rubicon Communications, LLC (Netgate)
29 Mar 2020 06:26:59
Original commit files touched by this commit Revision:529774  5.8.3 This port version is marked as vulnerable.
joneum search for other commits by this committer
Update to 5.8.3

PR:		245087
Sponsored by:	Netzkommune GmbH
31 Jan 2020 16:39:19
Original commit files touched by this commit Revision:524730  5.8.2_1 This port version is marked as vulnerable.
0mp search for other commits by this committer
security/strongswan: Add PYTHON plugin option for a VICI protocol plugin

PR:		243254
Submitted by:	Dries Michiels <driesm.michiels@gmail.com>
Approved by:	maintainer
Event:		Brussels DevSummit 2020
11 Jan 2020 15:38:12
Original commit files touched by this commit Revision:522689  5.8.2_1 This port version is marked as vulnerable.
meta search for other commits by this committer
security/strongswan: load ipsec kernel module by rc script

From the following discussion: https://reviews.freebsd.org/D20163
It makes sense to add ipsec as required module for the rc script
of strongSwan.

PR:		243316
Submitted by:	Dries Michiels <driesm.michiels@gmail.com>
Approved by:	maintainer
30 Dec 2019 14:49:54
Original commit files touched by this commit Revision:521493  5.8.2 This port version is marked as vulnerable.
garga search for other commits by this committer
security/strongswan: Update to 5.8.2

PR:		242687
Approved by:	maintainer
Obtained from:	pfSense
Sponsored by:	Rubicon Communications, LLC (Netgate)
30 Sep 2019 17:06:23
Original commit files touched by this commit Revision:513403  5.8.1 This port version is marked as vulnerable.
garga search for other commits by this committer
Add a new option to enable PKCS11 plugin

PR:		240684
Approved by:	strongswan@Nanoteq.com (maintainer)
Obtained from:	pfSense
Sponsored by:	Rubicon Communications, LLC (Netgate)
24 Sep 2019 18:03:14
Original commit files touched by this commit Revision:512739  5.8.1 This port version is marked as vulnerable.
swills search for other commits by this committer
security/strongswan: update to 5.8.1

PR:		240316
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
21 Aug 2019 01:59:58
Original commit files touched by this commit Revision:509483  5.8.0 This port version is marked as vulnerable.
meta search for other commits by this committer
security/strongswan: Add support for the VIA Padlock plugin

PR:		239458
Submitted by:	Evgeny <mojolicious@yandex.com> (initial revision)
		strongswan@Nanoteq.com (maintainer, brushed-up revision)
Approved by:	strongswan@Nanoteq.com (maintainer)
14 Aug 2019 03:26:09
Original commit files touched by this commit Revision:508887  5.8.0 This port version is marked as vulnerable.
meta search for other commits by this committer
Implement new virtual category: net-vpn for VPN related ports

based on discussion at ports@ [1]. As VPN softwares are put in different
physical category net and security. This is a little bit confusing. Let's
give them new virtual category net-vpn.

[1] https://lists.freebsd.org/pipermail/freebsd-ports/2019-April/115915.html

PR:		239395
Submitted by:	myself
Approved by:	portmgr (mat)
Differential Revision:	https://reviews.freebsd.org/D21174
29 May 2019 12:12:50
Original commit files touched by this commit Revision:502953  5.8.0 This port version is marked as vulnerable.
garga search for other commits by this committer
security/strongswan: Update to 5.8.0

PR:		238173
Approved by:	maintainer
Obtained from:	pfSense
Sponsored by:	Rubicon Communications, LLC (Netgate)
09 Mar 2019 10:37:14
Original commit files touched by this commit Revision:495117  5.7.2_2 This port version is marked as vulnerable.
pi search for other commits by this committer
security/strongswan: add vici-based configuration for the rc script

The rc script is modified to allow both a legacy (ipsec.conf-based)
startup or a new (swanctl.conf-based) config. Default is the legacy.

The new setup is based on vici, the Versatile IKE Configuration Interface.

For more details, see:

https://wiki.strongswan.org/projects/strongswan/wiki/Vici

PR:		234648
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Reviewed by:	Sam Chen <sc.gear@one.caeon.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
Differential Revision:	D19367
09 Mar 2019 09:49:59
Original commit files touched by this commit Revision:495112  5.7.2_1 This port version is marked as vulnerable.
pi search for other commits by this committer
security/strongswan: add PAM to XAUTH

PR:		236218
Submitted by:	Franco Fichtner <franco@opnsense.org>
Approved by:	strongswan@Nanoteq.com (maintainer)
05 Mar 2019 20:14:17
Original commit files touched by this commit Revision:494736  5.7.2_1 This port version is marked as vulnerable.
swills search for other commits by this committer
security/strongswan: Minor port improvements

- Follow the same patching logic for swanctl.conf as the other config
  files.
- Silence warning: $strongswan_enable not properly set.

PR:		235340
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
14 Jan 2019 16:00:50
Original commit files touched by this commit Revision:490298  5.7.2 This port version is marked as vulnerable.
swills search for other commits by this committer
security/strongswan: update to version 5.7.2

PR:		234882
Submitted by:	Jose Luis Duran <jlduran@gmail.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
02 Oct 2018 11:00:10
Original commit files touched by this commit Revision:481111  5.7.1 This port version is marked as vulnerable.
garga search for other commits by this committer
security/strongswan: Update to 5.7.1

PR:		231862
Approved by:	maintainer
Obtained from:	pfSense
MFH:		2018Q4
Security:	CVE-2018-16151 CVE-2018-16152
Sponsored by:	Rubicon Communications, LLC (Netgate)
02 Oct 2018 10:58:37
Original commit files touched by this commit Revision:481110  5.7.0 This port version is marked as vulnerable.
garga search for other commits by this committer
security/strongswan: Fix rc startup script to support rc.conf settings like
_nice, _fib

Do not bump version since I'll commit the upgrade to 5.7.1 just after it

PR:		211108
Submitted by:	Dmitry Wagin <dmitry.wagin@ya.ru>
Approved by:	maintainer
Sponsored by:	Rubicon Communications, LLC (Netgate)
26 Sep 2018 13:03:49
Original commit files touched by this commit Revision:480733  5.7.0 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update security/strongswan to 5.7.0
- While here, silence portlint warning renaming option IKEv1 to IKEV1

PR:		231720
Approved by:	maintainer
Obtained from:	pfSense
Sponsored by:	Rubicon Communications, LLC (Netgate)
31 May 2018 12:39:52
Original commit files touched by this commit Revision:471205  5.6.3 This port version is marked as vulnerable.
krion search for other commits by this committer
Update to 5.6.3

Fixes:
 - Denial-of-Service Vulnerability in the IKEv2 key derivation
   (CVE-2018-10811)
 - Denial-of-Service Vulnerability in the stroke plugin
   (CVE-2018-5388)
 - Crash on FreeBSD that was present in 5.6.2
 - The kernel-pfkey plugin optionally installs routes via internal
   interface (one with an IP in the local traffic selector). On
   FreeBSD, enabling this selects the correct source IP when sending
   packets from the gateway itself.

PR:		228631
Submitted by:	maintainer
06 Mar 2018 21:56:48
Original commit files touched by this commit Revision:463768  5.6.2_1 This port version is marked as vulnerable.
yuri search for other commits by this committer
security/strongswan: Fix crash in public key authentication with 5.6.2

While here, added LICENSE_FILE.

PR:		226404
Submitted by:	strongswan@Nanoteq.com (maintainer)
Approved by:	tcberner (mentor, implicit)
01 Mar 2018 13:53:15
Original commit files touched by this commit Revision:463323  5.6.2 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update security/strongswan to 5.6.2 [1]
- Enable CURL option by default [2]

PR:		226043 [1], 220488 [2]
Submitted by:	strongswan@Nanoteq.com (maintainer) [1]
		karl@denninger.net [2]
Approved by:	maintainer [2]
MFH:		2018Q1
Security:	CVE-2018-6459
Sponsored by:	Rubicon Communications, LLC (Netgate)
22 Sep 2017 10:48:29
Original commit files touched by this commit Revision:450351  5.6.0 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove USES=execinfo.

PR:		220271
Submitted by:	mat (review), Yasuhiro KIMURA (PR)
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D11488
23 Aug 2017 06:10:20
Original commit files touched by this commit Revision:448590  5.6.0 This port version is marked as vulnerable.
pi search for other commits by this committer
security/strongswan: update 5.5.3 -> 5.6.0

- the gmp plugin responsible for CVE-2017-11185 is not enabled
  in the FreeBSD build

PR:		221716
Relnotes:	https://wiki.strongswan.org/versions/66
Reported by:	i.dani@outlook.com
Approved by:	strongswan@nanoteq.com (maintainer)
19 Jul 2017 10:29:38
Original commit files touched by this commit Revision:446193  5.5.3 This port version is marked as vulnerable.
olivier search for other commits by this committer
Update strongswan to 5.5.3

PR:		220823
Submitted by:	strongswan@Nanoteq.com (maintainer)
Reported by:	i.dani@outlook.com
10 May 2017 06:12:27
Original commit files touched by this commit Revision:440527  5.5.2_1 This port version is marked as vulnerable.
olivier search for other commits by this committer
Add option for enabling mediation feature (like STUN for IPSec peers)

Approved by:	strongswan@nanoteq.com (maintainer)
Sponsored by:	Orange
12 Apr 2017 17:25:34
Original commit files touched by this commit Revision:438397  5.5.2 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.5.2

PR:		218430
Approved by:	maintainer
Sponsored by:	Rubicon Communications (Netgate)
03 Mar 2017 04:12:21
Original commit files touched by this commit Revision:435306  5.5.1_1 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Chase ldns shlip bump

PR:		217495
21 Nov 2016 10:43:45
Original commit files touched by this commit Revision:426700  5.5.1 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.5.1

PR:		213844
Approved by:	strongswan@Nanoteq.com (maintainer)
Obtained from:	pfSense
Sponsored by:	Rubicon Communications (Netgate)
12 Sep 2016 18:28:20
Original commit files touched by this commit Revision:421949  5.5.0 This port version is marked as vulnerable.
marino search for other commits by this committer
security/strongswan: Fix build with LibreSSL

Approved by:	SSL blanket
19 Jul 2016 16:38:12
Original commit files touched by this commit Revision:418809  5.5.0 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.5.0

PR:		211095
Submitted by:	strongswan@Nanoteq.com (maintainer)
03 Apr 2016 14:59:51
Original commit files touched by this commit Revision:412481  5.4.0 This port version is marked as vulnerable.
junovitch search for other commits by this committer
security/strongswan: unbreak FreeBSD 9 builds

- Add patch to include sys/endian.h header

PR:		208446
Submitted by:	strongswan@Nanoteq.com (maintainer)
MFH:		2016Q2 (build fix blanket)
01 Apr 2016 14:25:18
Original commit files touched by this commit Revision:412349  5.4.0 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
23 Mar 2016 16:21:15
Original commit files touched by this commit Revision:411720  5.4.0 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.4.0

PR:		208219
Approved by:	swan@nanoteq.com (maintainer)
Obtained from:	pfSense
Sponsored by:	Rubicon Communications (Netgate)
15 Mar 2016 06:21:32
Original commit files touched by this commit Revision:411143  5.3.5_4 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- bump PORTREVISION on ports depending on unbound

PR:		207948
Submitted by:	jaap@NLnetLabs.nl (maintainer)
17 Feb 2016 02:34:06
Original commit files touched by this commit Revision:409026  5.3.5_3 This port version is marked as vulnerable.
junovitch search for other commits by this committer
security/strongswan: enable options to increase usefulness of default pkg

- Enable PKI, SWANCTL, and VICI options (no external dependencies)
- Document IMPLIES dependency on VICI for SWANCTL; mention in SWANCTL_DESC
- Bump PORTREVISION

PR:		205438
Reported by:	Nick B <nicblais@clkroot.net>
Submitted by:	strongswan@Nanoteq.com (maintainer)
04 Feb 2016 15:58:30
Original commit files touched by this commit Revision:408047  5.3.5_2 This port version is marked as vulnerable.
erwin search for other commits by this committer
- Update unbound to 1.5.7
- Bump PORTREVISIOn on dependent ports

Some Upgrade Notes:

This release fixes a validation failure for nodata with wildcards and
emptynonterminals. Fixes OpenSSL Library compability. Fixes correct
response for malformed EDNS queries. For crypto in libunbound there is
libnettle support.

Qname minimisation is implemented. Use qname-minimisation: yes to
enable it. This version sends the full query name when an error is
found for intermediate names. It should therefore not fail for names
on nonconformant servers. It combines well with
harden-below-nxdomain: yes because those nxdomains are probed by the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
03 Dec 2015 16:34:55
Original commit files touched by this commit Revision:402881  5.3.5_1 This port version is marked as vulnerable.
garga search for other commits by this committer
Bump PORTREVISION to help users with custom OPTIONS to get the fix
committed in r402880, as suggested by AMDmi3
03 Dec 2015 16:27:07
Original commit files touched by this commit Revision:402880  5.3.5 This port version is marked as vulnerable.
garga search for other commits by this committer
Add @sample to gcm.conf missed when I introduced it. No bump on PORTREVISION
since GCM is disabled by default

Submitted by:	Jose Luis Duran
Obtained from:	https://github.com/pfsense/FreeBSD-ports/pull/2
02 Dec 2015 10:58:16
Original commit files touched by this commit Revision:402817  5.3.5 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.3.5

PR:		204959
Approved by:	strongswan@Nanoteq.com (maintainer)
Obtained from:	pfSense
Sponsored by:	Rubicon Communications (Netgate)
16 Nov 2015 14:08:25
Original commit files touched by this commit Revision:401762  5.3.4 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.3.4

PR:		204597
Submitted by:	strongswan@nanoteq.com (maintainer)
MFH:		2015Q4
Security:	CVE 2015-8023
Security:	https://github.com/strongswan/strongswan/commit/453e204ac40dfff2e0978e8f84a5f8ff0cbc45e2
Sponsored by:	Rubicon Communications (Netgate)
09 Nov 2015 16:56:08
Original commit files touched by this commit Revision:401115  5.3.3_2 This port version is marked as vulnerable.
garga search for other commits by this committer
Backport a couple of commits from master, that will be present in 5.3.4:

- dff2d05bb9 [1]: kernel-pfKey: Enable AES-CTR
- 04f22cdabc [2]: VICI: add NAT information

Bump PORTREVISION

[1]
https://github.com/strongswan/strongswan/commit/dff2d05bb9bec684b3b2efdafc9a47219550bbe1
[2]
https://github.com/strongswan/strongswan/commit/04f22cdabc1c97d38692f95392429839f0fa90d1

PR:		204398
Approved by:	maintainer
Obtained from:	pfSense
Sponsored by:	Rubicon Communications (Netgate)
29 Oct 2015 12:42:30
Original commit files touched by this commit Revision:400455  5.3.3_1 This port version is marked as vulnerable.
garga search for other commits by this committer
- Add a new option, SWANCTL, to install swanctll utility
- When VICI option is selected, install libvici.h to include directory,
  it's useful when you need to build a custom code linked to libvici
- Pass path to USE_LDCONFIG otherwise libraries will not be visible

PR:		204098
Approved by:	maintainer
Obtained from:	pfSense
Sponsored by:	Rubicon Communications (Netgate)
28 Oct 2015 14:27:28
Original commit files touched by this commit Revision:400393  5.3.3_1 This port version is marked as vulnerable.
garga search for other commits by this committer
- Add a new option (VICI) to build VICI management protocol
- Change SMP option description to show users it's deprecated

PR:		204090
Approved by:	maintainer
27 Oct 2015 13:27:17
Original commit files touched by this commit Revision:400233  5.3.3_1 This port version is marked as vulnerable.
garga search for other commits by this committer
strongSwan can be beuit using 3 different printf hooks: builtin, glibc
(compatible with FreeBSD's libc) and vstr (devel/vstr). Since it's not
selected any of them on CONFIGURE_ARGS, it uses auto, and end up using
glibc.

pfSense users reported memory leaks on strongSwan [2] [3] and a it was
reported to upstream [1].

Add a single option and let user choose which printf hook to use, and
change default to use builtin. Bump PORTREVISION due to default change

[1] https://wiki.strongswan.org/issues/1106
[2] https://forum.pfsense.org/index.php?topic=96767.0
[3] https://redmine.pfsense.org/issues/5149

PR:		204051
Approved by:	maintainer
Obtained from:	pfSense
MFH:		2015Q4
Sponsored by:	Rubicon Communications (Netgate)
21 Sep 2015 11:28:46
Original commit files touched by this commit Revision:397487  5.3.3 This port version is marked as vulnerable.
garga search for other commits by this committer
Fix pkg-descr, Strongswan supports IKEv1 since version 5.0.0

Spotted by:	Jim Thompson <jim@netgate.com>
Approved by:	strongswan@Nanoteq.com (maintainer)
Sponsored by:	Rubicon Communications (Netgate)
21 Sep 2015 11:02:22
Original commit files touched by this commit Revision:397485  5.3.3 This port version is marked as vulnerable.
garga search for other commits by this committer
Update security/strongswan to 5.3.3

PR:		203178
Approved by:	strongswan@Nanoteq.com (maintainer)
Sponsored by:	Rubicon Communications (Netgate)
09 Jun 2015 09:51:07
Original commit files touched by this commit Revision:388905  5.3.2 This port version is marked as vulnerable.
garga search for other commits by this committer
Update to 5.3.2

PR:		200721
Approved by:	strongswan@Nanoteq.com (maintainer)
MFH:		2015Q2
Security:	CVE-2015-3991
Sponsored by:	Netgate
24 Apr 2015 10:57:02
Original commit files touched by this commit Revision:384631  5.3.0_1 This port version is marked as vulnerable.
garga search for other commits by this committer
Fix PLIST when EAPAKA3GPP2 is unset and EAPDYNAMIC is set

PR:		199652
Approved by:	stronswan@Nanoteq.com (maintainer)
Sponsored by:	Netgate
22 Apr 2015 22:53:43
Original commit files touched by this commit Revision:384528  5.3.0_1 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add CPE info

Approved by:	portmgr blanket
16 Apr 2015 12:55:39
Original commit files touched by this commit Revision:384108  5.3.0_1 This port version is marked as vulnerable.
feld search for other commits by this committer
Add patches to fix Strongswan Management Protocol

SMP is an XML control interface for Strongswan used by pfSense and
Opnsense. SMP has been deprecated by upstream since 5.2.0 in favor of a
newer IPC mechanism called VICI. As a result upstream is not motivated
to take patches for SMP, and this uses non-portable strlcpy anyway.

The code has not been deleted from the project and if we can bludgeon it
into a working state I see no harm.

PR:		199442
01 Apr 2015 10:28:10
Original commit files touched by this commit Revision:382902  5.3.0 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update to 5.3.0
- Add a new option UNITY, to enable Cisco unity extension plugin

PR:		199064
Approved by:	maintainer
Sponsored by:	Netgate
25 Feb 2015 10:03:53
Original commit files touched by this commit Revision:379892  5.2.2_1 This port version is marked as vulnerable.
garga search for other commits by this committer
- Add GCM and SMP options
- Add pkgconfig to the list of dependencies
- Enable IKEv1 OPTION by default
- Bump PORTREVISION

PR:		197824
Submitted by:	Franco Fichtner <franco@lastsummer.de> (based on)
Reworked by:	strongswan@Nanoteq.com (maintainer)
Approved by:	strongswan@Nanoteq.com (maintainer)
09 Jan 2015 17:15:42
Original commit files touched by this commit Revision:376625  5.2.2 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update to 5.2.2
- Add LICENSE

PR:		196615
Approved by:	strongswan@Nanoteq.com (maintainer)
Security:	CVE-2014-9221
14 Dec 2014 21:43:04
Original commit files touched by this commit Revision:374724  5.2.1 This port version is marked as vulnerable.
pawel search for other commits by this committer
- Update to version 5.2.1 [1]
- Convert to USES=execinfo
- Fix LDAP, MYSQL options

PR:		195580 [1]
Submitted by:	maintainer [1]
31 Oct 2014 15:46:34
Original commit files touched by this commit Revision:371863  5.2.0_1 This port version is marked as vulnerable.
bapt search for other commits by this committer
Remove useless %D

Notified by:	antoine
31 Oct 2014 15:43:47
Original commit files touched by this commit Revision:371861  5.2.0_1 This port version is marked as vulnerable.
bapt search for other commits by this committer
Simplify plist
22 Aug 2014 09:06:35
Original commit files touched by this commit Revision:365620  5.2.0_1 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Switch dns/unbound to USES=libtool, drop .la files
- Bump dependent ports as .so version has changed
- While here, add LICENSE_FILE to dns/getdns

Approved by:	portmgr blanket
19 Aug 2014 13:40:31
Original commit files touched by this commit Revision:365377  5.2.0 This port version is marked as vulnerable.
marino search for other commits by this committer
security/strongswan: Upgrade version 5.1.3 => 5.2.0

While here, including missing library files and use install-strip
target.  Maintainer added a crash fix patch while reviewing.

PR:		192366
Submitted by:	dewayne (heruristicssystems.com.au)
Approved by:	maintainer (strongswan nanoteq.com)
24 Jul 2014 18:34:16
Original commit files touched by this commit Revision:362835  5.1.3_2 This port version is marked as vulnerable.
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
27 Jun 2014 17:21:07
Original commit files touched by this commit Revision:359586  5.1.3_1 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Chase database/sqlite3 slib bump

Approved by:	portmgr (myself)
15 May 2014 12:47:20
Original commit files touched by this commit Revision:354114  5.1.3 This port version is marked as vulnerable.
pi search for other commits by this committer
security/strongswan: update 5.1.1 -> 5.1.3 with security update

- Update strongSwan port to 5.1.3 to resolve CVE 2014-2338
- Fixed rcvar issue with FreeBSD 10 (ports/186865)
- Added building of additional tools included in strongswan (ports/186867)
- libtool fix
- pkg-plist updated

PR:             ports/189132, ports/186865, ports/186867
Submitted by:   Robert Sevat, Dewayne Geraghty, Francois ten Krooden
(maintainer)
Approved by:    jadawin (mentor)
14 Feb 2014 14:37:36
Original commit files touched by this commit Revision:344214  5.1.1_1 This port version is marked as vulnerable.
decke search for other commits by this committer
- Use OPTIONS_SUB=yes
- Prefer ${INSTALL_DATA} over ${MV}
- Whitespace fix

Thanks to:	garga@
09 Feb 2014 18:15:13
Original commit files touched by this commit Revision:343534  5.1.1_1 This port version is marked as vulnerable.
antoine search for other commits by this committer
- Remove MANx, man pages are already moved to plist
- Use new LIB_DEPENDS syntax
07 Feb 2014 14:55:11
Original commit files touched by this commit Revision:343254  5.1.1_1 This port version is marked as vulnerable.
decke search for other commits by this committer
- Add missing manpages

PR:		ports/186264
Submitted by:	HASHI Hiroaki <hashiz@meridiani.jp>
Approved by:	strongswan <strongswan@Nanoteq.com> (maintainer)
27 Jan 2014 13:35:41
Original commit files touched by this commit Revision:341405  5.1.1 This port version is marked as vulnerable.
decke search for other commits by this committer
- Update to 5.1.1
- Added EAP dynamic proxy module
- Added EAP Radius proxy authentication
- Added DNSSEC/unbound support
- Added kernel libipsec plugin
- Changed configuration files to install to ${PREFIX}/etc/<filename>.conf.sample
- Convert to new options format

PR:		ports/185535
Submitted by:	Francois ten Krooden <strongswan@nanoteq.com> (maintainer)
Security:	CVE-2013-5018
Security:	CVE-2013-6075
Security:	CVE-2013-6076
20 Sep 2013 22:55:26
Original commit files touched by this commit Revision:327769  5.0.4_1 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
11 Jul 2013 16:26:27
Original commit files touched by this commit Revision:322783  5.0.4_1 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Update to 7.31.0
- Bump PORTREVISION for ftp/curl shlib change
- Add TEST_DEPENDS
- Convert to new options framework
- Adjust options:
  - Add COOKIES
  - Add CYASSL, NSS, POLARSSL, THREADED_RESOLVER, TLS_SRP [1]
  - Add GSSAPI and SPNEGO [2]
  - Remove KERBEROS4
  - Rename LIBIDN to IDN
  - Remove TRACKMEMORY [1]
- Sort option handler
- Add SLAVEDIRS: ftp/curl-hiphop
- Cosmetic change
- Cleanup Makefile header
- While I'm here, fix typo (PORTREVSION) in x11-wm/ede/Makefile

Changes:	http://curl.haxx.se/changes.html
PR:		ports/172325 (-exp run), ports/177369 (based on) [1]
Submitted by:	Hirohisa Yamaguchi <umq@ueo.co.jp> [1], hrs (via email) [2]
Exp run by:	miwi
03 May 2013 18:16:36
Original commit files touched by this commit Revision:317229  5.0.4 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- update to version 5.0.4 which fixes CVE-2013-2944.
- add entry to vuxml
- add CVE references to jankins vuxml entry

while I'm here remove .sh from rc script

PR:		ports/178266
Submitted by:	David Shane Holden <dpejesh@yahoo.com>
Approved by:	strongswan@nanoteq.com (maintainer)
07 Jan 2013 12:11:15
Original commit files touched by this commit Revision:310039  5.0.1 This port version is marked as vulnerable.
tota search for other commits by this committer
- Update to 5.0.1
- Change maintainer address
- Trim Makefile header
- Convert to new options framework
- Cleanup

PR:		ports/173860 (based on)
Submitted by:	Riaan Kruger (maintainer)
14 Jan 2012 08:57:23
Original commit files touched by this commit   4.5.3 This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
22 Sep 2011 21:37:55
Original commit files touched by this commit   4.5.3 This port version is marked as vulnerable.
flo search for other commits by this committer
update to 4.5.3

PR:             ports/160401
Submitted by:   Riaan Kruger <riaank@gmail.com> maintainer
29 Apr 2011 12:24:55
Original commit files touched by this commit   4.5.1 This port version is marked as vulnerable.
culot search for other commits by this committer
- Update to 4.5.1 [1]
- Pet portlint(1) (change spaces into tabs and reformat IGNORE message)

PR:             ports/156711 [1]
Submitted by:   Riaan Kruger <riaank@gmail.com> (maintainer)
04 Dec 2010 07:34:27
Original commit files touched by this commit   4.4.0 This port version is marked as vulnerable.
ade search for other commits by this committer
Sync to new bsd.autotools.mk
26 Aug 2010 13:40:11
Original commit files touched by this commit   4.4.0 This port version is marked as vulnerable.
pav search for other commits by this committer
Strongswan is an open source IPsec-based VPN solution.
Strongswan for FreeBSD supports IKEv2 but NOT IKEv1.

WWW: http://www.strongswan.org

PR:             ports/147431
Submitted by:   Riaan Kruger <riaank@gmail.com>

Number of commits found: 87