Bug 25193 - strongswan for ipsec and eap: NEW PACKAGE REQUEST
Summary: strongswan for ipsec and eap: NEW PACKAGE REQUEST
Status: RESOLVED DUPLICATE of bug 23376
Alias: None
Product: Mageia
Classification: Unclassified
Component: New RPM package request (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal enhancement
Target Milestone: ---
Assignee: All Packagers
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-07-28 16:08 CEST by Nicolas Pomarède
Modified: 2019-10-18 20:50 CEST (History)
1 user (show)

See Also:
Source RPM: libreswan
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Nicolas Pomarède 2019-07-28 16:08:25 CEST 
Some vpn using ipsec requires EAP methods, such as eap-mschapv2 for example, which are not provided  by openswan nor libreswan (adding eap methods to libreswan is part of a GSOC 2019 project, but not available for now)

At the moment, only strongswan has support for eap-mschapv2.

Fedora already has an SRPM for strongswan since a few release.
Could the Fedora's SRPM be ported to Mageia ?

Thanks
Comment 1 Lewis Smith 2019-07-28 21:18:23 CEST 
Thank you Nicolas for this suggestion, and the information you provide with it.
> (adding eap methods to libreswan is part of a GSOC 2019 project, but not
> available for now)
But hopefully will be soon, at which time we should be able to take it on board with libreswan.

Assigning this package request to all packagers collectively. On a voluntary basis, one of them might, if there are no license or other legal issues, want to integrate it to the distribution and maintain it
for bug and security fixes.
CCing Stig because he does libreswan.

You might also want to join the packager team to maintain this piece of software: see https://wiki.mageia.org/en/Becoming_a_Mageia_Packager

Assignee: bugsquad => pkg-bugs
Summary: add strongswan for ipsec and eap => strongswan for ipsec and eap: NEW PACKAGE REQUEST
CC: (none) => smelror
Severity: normal => enhancement
Source RPM: (none) => libreswan

Comment 2 David Walser 2019-08-11 17:12:20 CEST 
Not needed, as we have libreswan.

*** This bug has been marked as a duplicate of bug 23376 ***

Status: NEW => RESOLVED
Resolution: (none) => DUPLICATE

Comment 3 Nicolas Pomarède 2019-08-11 20:15:33 CEST 
Except libreswan doesn't support EAP and will not do so until the GSOC project is completed (assuming the GSOC reaches all the goals that were assigned, which is not sure yet)
Comment 4 Nicolas Pomarède 2019-09-26 16:02:35 CEST 
Hi

GSOC 2019 is closed and one can see on libreswan page that EAP support was not added to libreswan (and no mention of ongoing work in libreswan mailing list)

For now, strongswan remains the only solution to connect to IPSEC in enterprise networks relying on EAP (which seems very common as a requirement).

In that case, could strongswan be added to mageia cauldron for next release ?

Thanks

Status: RESOLVED => REOPENED
Resolution: DUPLICATE => (none)

Comment 5 David Walser 2019-10-18 20:50:06 CEST 
Not without someone commit to track all of its vulnerabilities and support it in a stable release.

*** This bug has been marked as a duplicate of bug 23376 ***

Resolution: (none) => DUPLICATE
Status: REOPENED => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.