Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66])
	by www.NetBSD.org (Postfix) with ESMTP id ED94363BC0E
	for <mhonarc+pkgsrc-changes@mail-index.netbsd.org>; Tue,  8 Jan 2013 23:45:44 +0000 (UTC)
Received: by mail.netbsd.org (Postfix, from userid 605)
	id AAFAD14A155; Tue,  8 Jan 2013 23:45:44 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id E393914A0C9
	for <pkgsrc-changes@NetBSD.org>; Tue,  8 Jan 2013 23:45:41 +0000 (UTC)
X-Virus-Scanned: amavisd-new at NetBSD.org
Received: from mail.netbsd.org ([127.0.0.1])
	by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025)
	with ESMTP id silPgb9Ydd20 for <pkgsrc-changes@NetBSD.org>;
	Tue,  8 Jan 2013 23:45:40 +0000 (UTC)
Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd])
	by mail.netbsd.org (Postfix) with ESMTP id B19D414A155
	for <pkgsrc-changes@NetBSD.org>; Tue,  8 Jan 2013 23:45:40 +0000 (UTC)
Received: by cvs.netbsd.org (Postfix, from userid 500)
	id 3DC70175DD; Tue,  8 Jan 2013 23:45:40 +0000 (UTC)
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"
MIME-Version: 1.0
Date: Tue, 8 Jan 2013 23:45:40 +0000
From: "Jean-Yves Migeon" <jym@netbsd.org>
Subject: CVS commit: pkgsrc/security/stunnel
To: pkgsrc-changes@NetBSD.org
Reply-To: jym@netbsd.org
X-Mailer: log_accum
Message-Id: <20130108234540.3DC70175DD@cvs.netbsd.org>
Sender: pkgsrc-changes-owner@NetBSD.org
List-Id: pkgsrc-changes.NetBSD.org
Precedence: bulk

Module Name:	pkgsrc
Committed By:	jym
Date:		Tue Jan  8 23:45:40 UTC 2013

Modified Files:
	pkgsrc/security/stunnel: Makefile distinfo

Log Message:
Update to 4.54. Changelog:

New Win32 features
        FIPS module updated to version 2.0.
        OpenSSL DLLs updated to version 1.0.1c.
        zlib DLL updated to version 1.2.7.
        Engine DLLs added: 4758cca, aep, atalla, capi, chil, cswift, gmp, gost, nuron, padlock, sureware, ubsec.

Other new features
        "session" option renamed to more readable "sessionCacheTimeout". The old name remains accepted for backward compatibility.
        New service-level "sessionCacheSize" option to control session cache size.
        New service-level option "reset" to control whether TCP RST flag is used to indicate errors. The default value is "reset = yes".
        New service-level option "renegotiation" to disable SSL renegotiation. This feature is based on a public-domain patch by Janusz Dziemidowicz.
        New FreeBSD socket options: IP_FREEBIND, IP_BINDANY, IPV6_BINDANY (thx to Janusz Dziemidowicz).
        New parameters to configure TLS v1.1/v1.2 with OpenSSL version 1.0.1 or higher (thx to Henrik Riomar).

Bugfixes
        Fixed "Application Failed to Initialize Properly (0xc0150002)" error.
        Fixed missing SSL state debug log entries.
        Fixed a race condition in libwrap code resulting in random stalls (thx to Andrew Skalski).
        Session cache purged at configuration file reload to reduce memory leak. Remaining leak of a few kilobytes per section is yet to be fixed.
        Fixed regression bug in "transparent = destination" functionality (thx to Stefan Lauterbach). This bug was introduced in stunnel 4.51.
        "transparent = destination" is now a valid endpoint in inetd mode.
        "delay = yes" fixed to work even if specified *after* "connect" option.
        Multiple "connect" targets fixed to also work with delayed resolver.
        The number of resolver retries of EAI_AGAIN error has been limited to 3 in order to prevent infinite loops.

Fix some directory owner/group rights and take over maintainership as I
use it almost daily.


To generate a diff of this commit:
cvs rdiff -u -r1.79 -r1.80 pkgsrc/security/stunnel/Makefile
cvs rdiff -u -r1.35 -r1.36 pkgsrc/security/stunnel/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.