pool/stunnel
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
181 Commits 2 Branches 0 Tags
Commit Graph

181 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Ana Guerrero
6b0ea047d5 Accepting request 1235570 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1235570
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=45
 2025-01-07 19:54:33 +00:00
Andreas Vetter
dfcdb1687f - Update to version 5.74: 
* Bugfixes
    - Fixed a stapling cache deallocation crash.
    - Fixed "redirect" with protocol negotiation.
  * Features
    - "protocolHost" support for "socks" protocol clients.
    - More detailed logs in OpenSSL 3.0 or later.

OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=178
 2025-01-07 10:53:04 +00:00
Ana Guerrero
8860a6c622 Accepting request 1205362 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1205362
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=44
 2024-10-03 15:40:19 +00:00
Pedro Monreal Gonzalez
2b09ee132a - Update to 5.73: 
* Security bugfixes:
    - OpenSSL FIPS Provider updated to version 3.0.9.
  * Bugfixes:
    - Fixed a memory leak while reloading stunnel.conf sections
      with "client=yes" and "delay=no".
    - Fixed TIMEOUTocsp with values greater than 4.
    - Fix the IPv6 test on a non-IPv6 machine.
  * Features:
    - HELO replaced with EHLO in the post-STARTTLS SMTP protocol
      negotiation (thx to Peter Pentchev).
    - OCSP stapling fetches moved away from server threads.
    - Improved client-side session resumption.
    - Added support for the mimalloc allocator.
    - Check for protocolHost moved to configuration file processing
      for the client-side CONNECT protocol.
    - Clarified some confusing OpenSSL's certificate verification
      error messages.
    - Improved NetBSD compatibility.

OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=176
 2024-10-03 06:46:53 +00:00
Ana Guerrero
3c0ed45941 Accepting request 1151769 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1151769
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=43
 2024-02-26 18:49:19 +00:00
Pedro Monreal Gonzalez
941c8b5369 Accepting request 1151552 from home:dimstar:rpm4.20:s 
Prepare for RPM 4.20

OBS-URL: https://build.opensuse.org/request/show/1151552
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=174
 2024-02-26 14:29:57 +00:00
Ana Guerrero
400cafdb41 Accepting request 1146715 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1146715
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=42
 2024-02-15 20:00:54 +00:00
Andreas Vetter
7c3ee1940b Accepting request 1146659 from home:pmonrealgonzalez:branches:security:Stunnel 
- Update to 5.72:
  * Security bugfixes:
    - OpenSSL DLLs updated to version 3.2.1.
  * Bugfixes:
    - Fixed SSL_CTX_new() errors handling.
    - Fixed OPENSSL_NO_PSK builds.
    - Android build updated for NDK r23c.
    - stunnel.nsi updated for Debian 12.
    - Fixed tests with OpenSSL older than 1.0.2.
  * Rebase stunnel-5.69-default-tls-version.patch

OBS-URL: https://build.opensuse.org/request/show/1146659
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=172
 2024-02-15 06:40:34 +00:00
Ana Guerrero
66a6763988 Accepting request 1144152 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1144152
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=41
 2024-02-05 21:01:41 +00:00
Andreas Vetter
73491ba647 Accepting request 1144151 from home:asvetter:branches:security:Stunnel 
- Provide user(stunnel) for rpm 4.19 change in Factory.

OBS-URL: https://build.opensuse.org/request/show/1144151
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=170
 2024-02-05 09:23:21 +00:00
Ana Guerrero
79d07ad06c Accepting request 1113412 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1113412
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=40
 2023-09-25 18:04:06 +00:00
Andreas Vetter
8d6b8eebd1 Accepting request 1113392 from home:pmonrealgonzalez:branches:security:Stunnel 
- Update to 5.71:
  * Security bugfixes:
    - OpenSSL DLLs updated to version 3.1.3.
  * Bugfixes:
    - Fixed the console output of tstunnel.exe.
  * Features sponsored by SAE IT-systems:
    - OCSP stapling is requested and verified in the client mode.
    - Using "verifyChain" automatically enables OCSP stapling in
      the client mode.
    - OCSP stapling is always available in the server mode.
    - An inconclusive OCSP verification breaks TLS negotiation.
      This can be disabled with "OCSPrequire = no".
    - Added the "TIMEOUTocsp" option to control the maximum time
      allowed for connecting an OCSP responder.
  * Features:
    - Added support for Red Hat OpenSSL 3.x patches.

OBS-URL: https://build.opensuse.org/request/show/1113392
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=168
 2023-09-25 09:35:17 +00:00
Ana Guerrero
67c24ef7f6 Accepting request 1109601 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1109601
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=39
 2023-09-08 19:15:34 +00:00
Andreas Vetter
63b64b2323 Accepting request 1109525 from home:pmonrealgonzalez:branches:security:Stunnel 
- Enable crypto-policies support: [bsc#1211301]
  * The system's crypto-policies are the best source to determine
    which cipher suites to accept in TLS. OpenSSL supports the
    PROFILE=SYSTEM setting to use those policies. Change stunnel
    to default to the system settings.
  * Add patches:
    - stunnel-5.69-system-ciphers.patch
    - stunnel-5.69-default-tls-version.patch

- Enable bash completion support

OBS-URL: https://build.opensuse.org/request/show/1109525
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=166
 2023-09-07 18:44:15 +00:00
Ana Guerrero
90b6978122 Accepting request 1099866 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1099866
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=38
 2023-07-24 16:25:56 +00:00
Pedro Monreal Gonzalez
9c536d619a Accepting request 1099863 from home:asvetter:branches:security:Stunnel 
- Update to 5.70:
  - Security bugfixes
    *   OpenSSL DLLs updated to version 3.0.9.
    *   OpenSSL FIPS Provider updated to version 3.0.8.
  - Bugfixes
    *   Fixed TLS socket EOF handling with OpenSSL 3.x. This bug caused major interoperability issues between stunnel built with OpenSSL 3.x and Microsoft's Schannel Security Support Provider (SSP).
    *   Fixed reading certificate chains from PKCS#12 files.
  - Features
    *   Added configurable delay for the "retry" option.

OBS-URL: https://build.opensuse.org/request/show/1099863
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=164
 2023-07-21 08:37:04 +00:00
Dominique Leuenberger
28725ac15c Accepting request 1083929 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1083929
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=37
 2023-05-02 14:19:02 +00:00
Pedro Monreal Gonzalez
789892340c Accepting request 1082945 from home:asvetter:branches:security:Stunnel 
- Fix build on SLE12:
  - add macro make_build

OBS-URL: https://build.opensuse.org/request/show/1082945
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=162
 2023-05-02 06:11:04 +00:00
Dominique Leuenberger
2c4b5c0463 Accepting request 1077113 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1077113
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=36
 2023-04-04 19:26:15 +00:00
Andreas Vetter
ebd9d0dd8a Accepting request 1077065 from home:dirkmueller:Factory 
- update to 5.69:
  * Improved logging performance with the "output" option.
  * Improved file read performance on the WIN32 platform.
  * DH and kDHEPSK ciphersuites removed from FIPS defaults.
  * Set the LimitNOFILE ulimit in stunnel.service to allow
  * for up to 10,000 concurrent clients.
  * Fixed the "CApath" option on the WIN32 platform by
  * applying https://github.com/openssl/openssl/pull/20312.
  * Fixed stunnel.spec used for building rpm packages.
  * Fixed tests on some OSes and architectures by merging

OBS-URL: https://build.opensuse.org/request/show/1077065
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=160
 2023-04-04 06:00:01 +00:00
Dominique Leuenberger
00cc6928e0 Accepting request 1067906 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1067906
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=35
 2023-02-27 11:55:53 +00:00
Andreas Vetter
9c249ddad7 Accepting request 1067560 from home:pmonrealgonzalez:branches:security:Stunnel 
- Update to 5.68:
  * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.8.
  * New features
    - Added the new 'CAengine' service-level option
      to load a trusted CA certificate from an engine.
    - Added requesting client certificates in server
      mode with 'CApath' besides 'CAfile'.
  * Bugfixes
    - Fixed EWOULDBLOCK errors in protocol negotiation.
    - Fixed handling TLS errors in protocol negotiation.
    - Prevented following fatal TLS alerts with TCP resets.
    - Improved OpenSSL initialization on WIN32.
    - Improved testing suite stability.
    - Improved file read performance.
    - Improved logging performance.

OBS-URL: https://build.opensuse.org/request/show/1067560
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=158
 2023-02-27 08:51:42 +00:00
Dominique Leuenberger
a8582c3325 Accepting request 1032746 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1032746
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=34
 2022-11-02 11:47:06 +00:00
Pedro Monreal Gonzalez
6c40090d47 Accepting request 1032740 from home:stroeder:network 
Update to 5.67

OBS-URL: https://build.opensuse.org/request/show/1032740
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=156
 2022-11-01 20:11:23 +00:00
Dominique Leuenberger
3f73eb248c Accepting request 1003856 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/1003856
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=33
 2022-09-15 21:00:04 +00:00
Andreas Vetter
bb2d5ed485 Accepting request 1002951 from home:dirkmueller:Factory 
- update to 5.66:
  * Fixed building on machines without pkg-config.
  * Added the missing "environ" declaration for BSD-based operating systems.
  * Fixed the passphrase dialog with OpenSSL 3.0.
- package license
- remove non-systemd case from spec file

OBS-URL: https://build.opensuse.org/request/show/1002951
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=154
 2022-09-15 12:59:43 +00:00
Richard Brown
992b42b66b Accepting request 989995 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/989995
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=32
 2022-07-18 16:34:43 +00:00
Andreas Vetter
e684eccda4 Accepting request 989975 from home:pmonrealgonzalez:branches:security:Stunnel 
- Update to 5.65:
  * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.5.
  * Bugfixes
    - Fixed handling globally enabled FIPS.
    - Fixed openssl.cnf processing in WIN32 GUI.
    - Fixed a number of compiler warnings.
    - Fixed tests on older versions of OpenSSL.

OBS-URL: https://build.opensuse.org/request/show/989975
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=152
 2022-07-18 14:55:21 +00:00
Pedro Monreal Gonzalez
db73b74fa3 Accepting request 980639 from home:pgajdos 
- adding missing bug, CVE and fate references:
  * CVE-2015-3644 [bsc#931517], one of previous version updates
    (https://bugzilla.suse.com/show_bug.cgi?id=931517#c0)
  * [bsc#990797], see stunnel.service.in
  * [bsc#862294], README.SUSE not shipped
  * CVE-2013-1762 [bsc#807440], one of previous version updates
    (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1762)
  * [bsc#776756] and [bsc#775262] not applicable (openssl versions)
  * [fate#307180], adding to 11sp1
  * [fate#311400], updating to new version
  * [fate#314256], updating to new version

OBS-URL: https://build.opensuse.org/request/show/980639
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=151
 2022-07-18 13:56:35 +00:00
Dominique Leuenberger
bb9ebc4873 Accepting request 975724 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/975724
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=31
 2022-05-09 16:44:13 +00:00
Andreas Vetter
e2f3f37f34 Accepting request 975537 from home:dirkmueller:Factory 
- update to 5.64:
  * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.3.
  * New features
    - Updated the pkcs11 engine for Windows.
  * Bugfixes
    - Removed the SERVICE_INTERACTIVE_PROCESS flag in
      "stunnel -install".

OBS-URL: https://build.opensuse.org/request/show/975537
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=149
 2022-05-09 07:32:17 +00:00
Dominique Leuenberger
b0945e2670 Accepting request 964297 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/964297
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=30
 2022-03-23 19:19:10 +00:00
Pedro Monreal Gonzalez
e24e820cc6 Accepting request 963345 from home:dirkmueller:Factory 
- update to 5.63:
  * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.2.
  * New features
    - Updated stunnel.spec to support bash completion
  * Bugfixes
    - Fixed possible PRNG initialization crash (thx to Gleydson Soares).

OBS-URL: https://build.opensuse.org/request/show/963345
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=147
 2022-03-23 12:57:43 +00:00
Dominique Leuenberger
4c46ba6694 Accepting request 957112 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/957112
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=29
 2022-02-24 17:20:48 +00:00
Andreas Vetter
77877cdc95 Accepting request 957109 from home:pmonrealgonzalez:branches:security:Stunnel 
- Update to 5.62:
  * New features
    - Added a bash completion script.
  * Bugfixes
    - Fixed a transfer() loop bug.
- Update to 5.61:
  * New features
    - Added new "protocol = capwin" and "protocol = capwinctrl"
      configuration file options.
    - Rewritten the testing framework in python.
    - Added support for missing SSL_set_options() values.
    - Updated stunnel.spec to support RHEL8.
  * Bugfixes
    - Fixed OpenSSL 3.0 build.
    - Fixed reloading configuration with "systemctl reload stunnel.service".
    - Fixed incorrect messages logged for OpenSSL errors.
    - Fixed printing IPv6 socket option defaults on FreeBSD.
- Rebase harden_stunnel.service.patch
- Remove FIPS-related regression tests
- Remove obsolete version checks

OBS-URL: https://build.opensuse.org/request/show/957109
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=146
 2022-02-23 15:15:52 +00:00
Dominique Leuenberger
cfe491e169 Accepting request 940847 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/940847
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=28
 2021-12-16 20:19:37 +00:00
Andreas Vetter
c9cc2b83f1 Accepting request 933485 from home:jsegitz:branches:systemdhardening:security:Stunnel 
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort

OBS-URL: https://build.opensuse.org/request/show/933485
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=145
 2021-12-16 10:19:47 +00:00
Richard Brown
42a77f97eb Accepting request 912850 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/912850
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=27
 2021-08-19 08:01:04 +00:00
Andreas Vetter
0e1f4f9ea1 Accepting request 912662 from home:asvetter:branches:security:Stunnel 
- Update to 5.60:
  * New features
    - New 'sessionResume' service-level option to allow
      or disallow session resumption
    - Added support for the new SSL_set_options() values.
    - Download fresh ca-certs.pem for each new release.
  * Bugfixes
    - Fixed 'redirect' with 'protocol'.  This combination is
      not supported by 'smtp', 'pop3' and 'imap' protocols.

OBS-URL: https://build.opensuse.org/request/show/912662
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=144
 2021-08-18 08:28:04 +00:00
Dominique Leuenberger
3d87ccae1f Accepting request 887332 from security:Stunnel 
OBS-URL: https://build.opensuse.org/request/show/887332
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=26
 2021-04-21 19:00:34 +00:00
Andreas Vetter
536b741d30 Accepting request 885049 from home:dstoecker:branches:security:Stunnel 
Submitted to author by e-mail.

P.S. The change in the comment line removes a rpm warning.

OBS-URL: https://build.opensuse.org/request/show/885049
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=142
 2021-04-21 15:02:39 +00:00
Dominique Leuenberger
c06668890c Accepting request 884991 from security:Stunnel 
- Disable testsuite for everything except Tumbleweed since it does not work on Leap/SLE
- update to 5.59:
  * new feature: Client-side "protocol = ldap" support
  * Fix configuration reload when compression is used
  * Fix paths in generated manuals
  * Fix test suite fixed not to require external connectivity
- run testsuite during package build

OBS-URL: https://build.opensuse.org/request/show/884991
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/stunnel?expand=0&rev=25
 2021-04-14 08:10:33 +00:00
Andreas Vetter
6365ab1daf keyring 
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=140
 2021-04-13 13:26:36 +00:00
Andreas Vetter
3cad4a3038 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=139 2021-04-13 13:22:02 +00:00
Andreas Vetter
581473cb2c OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=138 2021-04-13 13:21:22 +00:00
Andreas Vetter
70744188b9 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=137 2021-04-12 15:29:00 +00:00
Andreas Vetter
027231b2c3 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=136 2021-04-12 15:28:45 +00:00
Andreas Vetter
67c0317787 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=135 2021-04-12 15:28:00 +00:00
Andreas Vetter
7f4c088529 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=134 2021-04-12 15:27:49 +00:00
Andreas Vetter
e52e884b9e Modified via webui 
OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=132
 2021-04-12 15:24:17 +00:00