Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

stunnel-doc-5.78-1.1 RPM for noarch

From OpenSuSE Tumbleweed for noarch

Name: stunnel-doc Distribution: openSUSE Tumbleweed
Version: 5.78 Vendor: openSUSE
Release: 1.1 Build date: Mon Apr 13 15:39:13 2026
Group: Documentation/Other Build host: reproducible
Size: 284093 Source RPM: stunnel-5.78-1.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://www.stunnel.org/
Summary: Documentation for the universal TLS Tunnel
 
This package contains additional documentation for the stunnel program.

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Mon Apr 13 2026 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.78:
    * Bugfixes
    - Fixed a memory leak introduced in version 5.73.
    - Build fix for systems without timegm()
      (thanks to Jose A. Diaz and Shubham Gupta).
    - Fixed a startup crash when both global (default)
      and service-level lists of values are configured
      for an option.
    * Features
    - Support for zstd and brotli compression with OpenSSL 3.2
      and TLS 1.2 or older.
    - Support for new "options" parameter values.
    - Less bloated errors on an invalid configuration file.
    - Documentation updated from Pod to Pandoc Markdown.
    - Removed support for OpenSSL versions older than 0.9.8.
      The final update for the OpenSSL 0.9.7 branch
      (0.9.7m) was issed on 23 Feb 2007.
* Thu Feb 26 2026 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.77:
    * Bugfixes
    - Avoid attempting to fetch OCSP stapling for PSK-only
      configuration sections.
    * Features
    - Merged applicable patches from Fedora and Debian:
    - Use SOURCE_DATE_EPOCH for reproducible builds.
    - Skip the OpenSSL version check when AUTOPKGTEST_TMP is set.
    - Enable PrivateTmp in the stunnel.service template.
    - Clarify the manual page for the "curves" option.
    - Log client IP addresses on TLS errors.
* Fri Jan 23 2026 Pedro Monreal <pmonreal@suse.com>
  - Adapt the .spec file for Immutable Mode [jsc#PED-14814]
* Thu Nov 06 2025 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.76:
    * Security bugfixes:
    - Service-level multivalued options now override (rather than
      append to) global defaults, preventing unintended configurations.
    * Bugfixes:
    - Fixed enabling/disabling of the default fips=yes property.
    - Missing OCSP stapling is no longer logged as an error.
    - Fixed a crash when a PIN was required due to the PKCS#11
      CKA_ALWAYS_AUTHENTICATE attribute.
    * Features:
    - Quantum-resistant hybrid key agreement X25519+ML-KEM-768
      (X25519MLKEM768) used by default with OpenSSL 3.5+ and TLS 1.3.
    - Multiple cert sources are supported, allowing a certificate to
      be fetched from a provider while loading the chain from a file.
    - Android build switched to a 16 KB page size.
    * Rebase stunnel-5.69-system-ciphers.patch
* Tue Jun 03 2025 Pedro Monreal <pmonreal@suse.com>
  - Update to version 5.75:
    * Security bugfixes
    - OpenSSL FIPS Provider updated to version 3.1.2.
    * Bugfixes
    - Fixed infinite loop triggered by OCSP URL parsing errors
    - Fixed OPENSSL_NO_OCSP build issues
    - Fixed default curve selection in FIPS mode with OpenSSL 3.4+.
    - Fixed tests with modern Python versions.
    - Fixed tests with multiple OpenSSL versions installed.
    * Features
    - Added provider URI support for "cert" and "key" options.
    - Added new "CAstore" service-level option (OpenSSL 3.0+).
    - Added "provider" (OpenSSL 3.0+), "providerParameter"
      (OpenSSL 3.5+), and "setEnv" global options.
    - Key file/URI path added to passphrase prompt on Unix.
* Tue Jan 07 2025 Pedro Monreal <pmonreal@suse.com>
  - Update to version 5.74:
    * Bugfixes
    - Fixed a stapling cache deallocation crash.
    - Fixed "redirect" with protocol negotiation.
    * Features
    - "protocolHost" support for "socks" protocol clients.
    - More detailed logs in OpenSSL 3.0 or later.
* Thu Oct 03 2024 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.73:
    * Security bugfixes:
    - OpenSSL FIPS Provider updated to version 3.0.9.
    * Bugfixes:
    - Fixed a memory leak while reloading stunnel.conf sections
      with "client=yes" and "delay=no".
    - Fixed TIMEOUTocsp with values greater than 4.
    - Fix the IPv6 test on a non-IPv6 machine.
    * Features:
    - HELO replaced with EHLO in the post-STARTTLS SMTP protocol
      negotiation (thx to Peter Pentchev).
    - OCSP stapling fetches moved away from server threads.
    - Improved client-side session resumption.
    - Added support for the mimalloc allocator.
    - Check for protocolHost moved to configuration file processing
      for the client-side CONNECT protocol.
    - Clarified some confusing OpenSSL's certificate verification
      error messages.
    - Improved NetBSD compatibility.
* Mon Feb 26 2024 Dominique Leuenberger <dimstar@opensuse.org>
  - Use %patch -P N instead of deprecated %patchN.
* Wed Feb 14 2024 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.72:
    * Security bugfixes:
    - OpenSSL DLLs updated to version 3.2.1.
    * Bugfixes:
    - Fixed SSL_CTX_new() errors handling.
    - Fixed OPENSSL_NO_PSK builds.
    - Android build updated for NDK r23c.
    - stunnel.nsi updated for Debian 12.
    - Fixed tests with OpenSSL older than 1.0.2.
    * Rebase stunnel-5.69-default-tls-version.patch
* Mon Feb 05 2024 Andreas Vetter <vetter@physik.uni-wuerzburg.de>
  - Provide user(stunnel) for rpm 4.19 change in Factory.
* Mon Sep 25 2023 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.71:
    * Security bugfixes:
    - OpenSSL DLLs updated to version 3.1.3.
    * Bugfixes:
    - Fixed the console output of tstunnel.exe.
    * Features sponsored by SAE IT-systems:
    - OCSP stapling is requested and verified in the client mode.
    - Using "verifyChain" automatically enables OCSP stapling in
      the client mode.
    - OCSP stapling is always available in the server mode.
    - An inconclusive OCSP verification breaks TLS negotiation.
      This can be disabled with "OCSPrequire = no".
    - Added the "TIMEOUTocsp" option to control the maximum time
      allowed for connecting an OCSP responder.
    * Features:
    - Added support for Red Hat OpenSSL 3.x patches.
* Thu Sep 07 2023 Pedro Monreal <pmonreal@suse.com>
  - Enable crypto-policies support: [bsc#1211301]
    * The system's crypto-policies are the best source to determine
      which cipher suites to accept in TLS. OpenSSL supports the
      PROFILE=SYSTEM setting to use those policies. Change stunnel
      to default to the system settings.
    * Add patches:
    - stunnel-5.69-system-ciphers.patch
    - stunnel-5.69-default-tls-version.patch
* Thu Sep 07 2023 Pedro Monreal <pmonreal@suse.com>
  - Enable bash completion support
* Fri Jul 21 2023 Andreas Vetter <vetter@physik.uni-wuerzburg.de>
  - Update to 5.70:
    - Security bugfixes
    * OpenSSL DLLs updated to version 3.0.9.
    * OpenSSL FIPS Provider updated to version 3.0.8.
    - Bugfixes
    * Fixed TLS socket EOF handling with OpenSSL 3.x. This bug caused major interoperability issues between stunnel built with OpenSSL 3.x and Microsoft's Schannel Security Support Provider (SSP).
    * Fixed reading certificate chains from PKCS#12 files.
    - Features
    * Added configurable delay for the "retry" option.
* Wed Apr 26 2023 Andreas Vetter <vetter@physik.uni-wuerzburg.de>
  - Fix build on SLE12:
    - add macro make_build
* Mon Apr 03 2023 Dirk Müller <dmueller@suse.com>
  - update to 5.69:
    * Improved logging performance with the "output" option.
    * Improved file read performance on the WIN32 platform.
    * DH and kDHEPSK ciphersuites removed from FIPS defaults.
    * Set the LimitNOFILE ulimit in stunnel.service to allow
    * for up to 10,000 concurrent clients.
    * Fixed the "CApath" option on the WIN32 platform by
    * applying https://github.com/openssl/openssl/pull/20312.
    * Fixed stunnel.spec used for building rpm packages.
    * Fixed tests on some OSes and architectures by merging
* Fri Feb 24 2023 Pedro Monreal <pmonreal@suse.com>
  - Update to 5.68:
    * Security bugfixes
    - OpenSSL DLLs updated to version 3.0.8.
    * New features
    - Added the new 'CAengine' service-level option
      to load a trusted CA certificate from an engine.
    - Added requesting client certificates in server
      mode with 'CApath' besides 'CAfile'.
    * Bugfixes
    - Fixed EWOULDBLOCK errors in protocol negotiation.
    - Fixed handling TLS errors in protocol negotiation.
    - Prevented following fatal TLS alerts with TCP resets.
    - Improved OpenSSL initialization on WIN32.
    - Improved testing suite stability.
    - Improved file read performance.
    - Improved logging performance.

Files

/usr/share/doc/packages/stunnel
/usr/share/doc/packages/stunnel/AUTHORS.md
/usr/share/doc/packages/stunnel/BUGS.md
/usr/share/doc/packages/stunnel/COPYING.md
/usr/share/doc/packages/stunnel/COPYRIGHT.md
/usr/share/doc/packages/stunnel/CREDITS.md
/usr/share/doc/packages/stunnel/INSTALL.FIPS.md
/usr/share/doc/packages/stunnel/NEWS.md
/usr/share/doc/packages/stunnel/PORTS.md
/usr/share/doc/packages/stunnel/README.md
/usr/share/doc/packages/stunnel/TODO.md
/usr/share/doc/packages/stunnel/examples
/usr/share/doc/packages/stunnel/examples/ca.html
/usr/share/doc/packages/stunnel/examples/ca.pl
/usr/share/doc/packages/stunnel/examples/importCA.html
/usr/share/doc/packages/stunnel/examples/importCA.sh
/usr/share/doc/packages/stunnel/examples/script.sh
/usr/share/doc/packages/stunnel/examples/stunnel.init
/usr/share/doc/packages/stunnel/examples/stunnel.logrotate
/usr/share/doc/packages/stunnel/examples/stunnel.rh.init
/usr/share/doc/packages/stunnel/examples/stunnel.service
/usr/share/doc/packages/stunnel/examples/stunnel.spec
/usr/share/doc/packages/stunnel/stunnel.html
/usr/share/doc/packages/stunnel/stunnel.pl.html
/usr/share/doc/packages/stunnel/tools
/usr/share/doc/packages/stunnel/tools/openssl.cnf

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Apr 21 22:23:10 2026