Overview Repositories Revisions Requests Users Attributes Meta

Revisions of stunnel

buildservice-autocommit accepted request 1205362 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 177) 
baserev update by copy to link target
Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) accepted request 1205361 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 176) 
- Update to 5.73:
  * Security bugfixes:
    - OpenSSL FIPS Provider updated to version 3.0.9.
  * Bugfixes:
    - Fixed a memory leak while reloading stunnel.conf sections
      with "client=yes" and "delay=no".
    - Fixed TIMEOUTocsp with values greater than 4.
    - Fix the IPv6 test on a non-IPv6 machine.
  * Features:
    - HELO replaced with EHLO in the post-STARTTLS SMTP protocol
      negotiation (thx to Peter Pentchev).
    - OCSP stapling fetches moved away from server threads.
    - Improved client-side session resumption.
    - Added support for the mimalloc allocator.
    - Check for protocolHost moved to configuration file processing
      for the client-side CONNECT protocol.
    - Clarified some confusing OpenSSL's certificate verification
      error messages.
    - Improved NetBSD compatibility.
buildservice-autocommit accepted request 1151769 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 175) 
baserev update by copy to link target
buildservice-autocommit accepted request 1146715 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 173) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1146659 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 172) 
- Update to 5.72:
  * Security bugfixes:
    - OpenSSL DLLs updated to version 3.2.1.
  * Bugfixes:
    - Fixed SSL_CTX_new() errors handling.
    - Fixed OPENSSL_NO_PSK builds.
    - Android build updated for NDK r23c.
    - stunnel.nsi updated for Debian 12.
    - Fixed tests with OpenSSL older than 1.0.2.
  * Rebase stunnel-5.69-default-tls-version.patch
buildservice-autocommit accepted request 1144152 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 171) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1144151 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 170) 
- Provide user(stunnel) for rpm 4.19 change in Factory.
buildservice-autocommit accepted request 1113412 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 169) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1113392 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 168) 
- Update to 5.71:
  * Security bugfixes:
    - OpenSSL DLLs updated to version 3.1.3.
  * Bugfixes:
    - Fixed the console output of tstunnel.exe.
  * Features sponsored by SAE IT-systems:
    - OCSP stapling is requested and verified in the client mode.
    - Using "verifyChain" automatically enables OCSP stapling in
      the client mode.
    - OCSP stapling is always available in the server mode.
    - An inconclusive OCSP verification breaks TLS negotiation.
      This can be disabled with "OCSPrequire = no".
    - Added the "TIMEOUTocsp" option to control the maximum time
      allowed for connecting an OCSP responder.
  * Features:
    - Added support for Red Hat OpenSSL 3.x patches.
buildservice-autocommit accepted request 1109601 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 167) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1109525 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 166) 
- Enable crypto-policies support: [bsc#1211301]
  * The system's crypto-policies are the best source to determine
    which cipher suites to accept in TLS. OpenSSL supports the
    PROFILE=SYSTEM setting to use those policies. Change stunnel
    to default to the system settings.
  * Add patches:
    - stunnel-5.69-system-ciphers.patch
    - stunnel-5.69-default-tls-version.patch

- Enable bash completion support
buildservice-autocommit accepted request 1099866 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 165) 
baserev update by copy to link target
Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) accepted request 1099863 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 164) 
- Update to 5.70:
  - Security bugfixes
    *   OpenSSL DLLs updated to version 3.0.9.
    *   OpenSSL FIPS Provider updated to version 3.0.8.
  - Bugfixes
    *   Fixed TLS socket EOF handling with OpenSSL 3.x. This bug caused major interoperability issues between stunnel built with OpenSSL 3.x and Microsoft's Schannel Security Support Provider (SSP).
    *   Fixed reading certificate chains from PKCS#12 files.
  - Features
    *   Added configurable delay for the "retry" option.
buildservice-autocommit accepted request 1083929 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 163) 
baserev update by copy to link target
Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) accepted request 1082945 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 162) 
- Fix build on SLE12:
  - add macro make_build
buildservice-autocommit accepted request 1077113 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 161) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1077065 from Dirk Mueller's avatar Dirk Mueller (dirkmueller) (revision 160) 
- update to 5.69:
  * Improved logging performance with the "output" option.
  * Improved file read performance on the WIN32 platform.
  * DH and kDHEPSK ciphersuites removed from FIPS defaults.
  * Set the LimitNOFILE ulimit in stunnel.service to allow
  * for up to 10,000 concurrent clients.
  * Fixed the "CApath" option on the WIN32 platform by
  * applying https://github.com/openssl/openssl/pull/20312.
  * Fixed stunnel.spec used for building rpm packages.
  * Fixed tests on some OSes and architectures by merging
buildservice-autocommit accepted request 1067906 from Andreas Vetter's avatar Andreas Vetter (asvetter) (revision 159) 
baserev update by copy to link target
Andreas Vetter's avatar Andreas Vetter (asvetter) accepted request 1067560 from Pedro Monreal Gonzalez's avatar Pedro Monreal Gonzalez (pmonrealgonzalez) (revision 158) 
- Update to 5.68:
  * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.8.
  * New features
    - Added the new 'CAengine' service-level option
      to load a trusted CA certificate from an engine.
    - Added requesting client certificates in server
      mode with 'CApath' besides 'CAfile'.
  * Bugfixes
    - Fixed EWOULDBLOCK errors in protocol negotiation.
    - Fixed handling TLS errors in protocol negotiation.
    - Prevented following fatal TLS alerts with TCP resets.
    - Improved OpenSSL initialization on WIN32.
    - Improved testing suite stability.
    - Improved file read performance.
    - Improved logging performance.
Displaying revisions 1 - 20 of 177
openSUSE Build Service is sponsored by
Places