CVS commit: pkgsrc/security/stunnel

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/stunnel
From: "Jean-Yves Migeon" <jym%netbsd.org@localhost>
Date: Tue, 8 Jan 2013 23:45:40 +0000

Module Name:    pkgsrc
Committed By:   jym
Date:           Tue Jan  8 23:45:40 UTC 2013

Modified Files:
        pkgsrc/security/stunnel: Makefile distinfo

Log Message:
Update to 4.54. Changelog:

New Win32 features
        FIPS module updated to version 2.0.
        OpenSSL DLLs updated to version 1.0.1c.
        zlib DLL updated to version 1.2.7.
        Engine DLLs added: 4758cca, aep, atalla, capi, chil, cswift, gmp, gost, 
nuron, padlock, sureware, ubsec.

Other new features
        "session" option renamed to more readable "sessionCacheTimeout". The 
old name remains accepted for backward compatibility.
        New service-level "sessionCacheSize" option to control session cache 
size.
        New service-level option "reset" to control whether TCP RST flag is 
used to indicate errors. The default value is "reset = yes".
        New service-level option "renegotiation" to disable SSL renegotiation. 
This feature is based on a public-domain patch by Janusz Dziemidowicz.
        New FreeBSD socket options: IP_FREEBIND, IP_BINDANY, IPV6_BINDANY (thx 
to Janusz Dziemidowicz).
        New parameters to configure TLS v1.1/v1.2 with OpenSSL version 1.0.1 or 
higher (thx to Henrik Riomar).

Bugfixes
        Fixed "Application Failed to Initialize Properly (0xc0150002)" error.
        Fixed missing SSL state debug log entries.
        Fixed a race condition in libwrap code resulting in random stalls (thx 
to Andrew Skalski).
        Session cache purged at configuration file reload to reduce memory 
leak. Remaining leak of a few kilobytes per section is yet to be fixed.
        Fixed regression bug in "transparent = destination" functionality (thx 
to Stefan Lauterbach). This bug was introduced in stunnel 4.51.
        "transparent = destination" is now a valid endpoint in inetd mode.
        "delay = yes" fixed to work even if specified *after* "connect" option.
        Multiple "connect" targets fixed to also work with delayed resolver.
        The number of resolver retries of EAI_AGAIN error has been limited to 3 
in order to prevent infinite loops.

Fix some directory owner/group rights and take over maintainership as I
use it almost daily.


To generate a diff of this commit:
cvs rdiff -u -r1.79 -r1.80 pkgsrc/security/stunnel/Makefile
cvs rdiff -u -r1.35 -r1.36 pkgsrc/security/stunnel/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/mail/roundcube/files
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/mail/roundcube/files
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index