From 8bc9a92e3af919b6bcbc12303ccfa00c4a4e4896 Mon Sep 17 00:00:00 2001 From: Avesh Agarwal Date: Mon, 22 Jun 2015 11:42:07 -0400 Subject: [PATCH] New upstream release 5.18. - Finally deleted the patch stunnel-5-sample.patch as upstream has merged those changes. - Fixes patches as per new code changes. - Fixed systemd service file related changes. --- .gitignore | 3 ++ sources | 6 ++-- stunnel-5-authpriv.patch | 32 ++++++++++----------- stunnel-5-sample.patch | 53 ----------------------------------- stunnel-configure-ac.patch | 8 +++--- stunnel-systemd-service.patch | 8 +++--- stunnel.spec | 19 ++++++++----- 7 files changed, 42 insertions(+), 87 deletions(-) delete mode 100644 stunnel-5-sample.patch diff --git a/.gitignore b/.gitignore index 606ff26..42171d8 100644 --- a/.gitignore +++ b/.gitignore @@ -87,3 +87,6 @@ stunnel-4.33.tar.gz.asc /stunnel-5.17.tar.gz /stunnel-5.17.tar.gz.asc /stunnel-5.17.tar.gz.sha256 +/stunnel-5.18.tar.gz +/stunnel-5.18.tar.gz.asc +/stunnel-5.18.tar.gz.sha256 diff --git a/sources b/sources index 1095861..32b8fb8 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -e70f001ee190105c5a10a74f4bd54901 stunnel-5.17.tar.gz -8a493fe8e5652ab4fb253ab52a4d5b6b stunnel-5.17.tar.gz.asc -196f2ef36e10eb6c578d119bcf6c47c2 stunnel-5.17.tar.gz.sha256 +04f90ffbb65ffa289a5b1db2c52950f5 stunnel-5.18.tar.gz +e30445a50b06763cb17e3c2c1a578850 stunnel-5.18.tar.gz.asc +6c4b983ca3a2927ae3d9eb9e2f0b8a90 stunnel-5.18.tar.gz.sha256 diff --git a/stunnel-5-authpriv.patch b/stunnel-5-authpriv.patch index 2aa62b1..1bdd42a 100644 --- a/stunnel-5-authpriv.patch +++ b/stunnel-5-authpriv.patch @@ -1,7 +1,7 @@ -diff -urNp stunnel-5.15/doc/stunnel.8 stunnel-5.15-patched/doc/stunnel.8 ---- stunnel-5.15/doc/stunnel.8 2015-04-16 05:49:52.000000000 -0400 -+++ stunnel-5.15-patched/doc/stunnel.8 2015-04-27 10:34:34.504034442 -0400 -@@ -209,7 +209,7 @@ info (6), or debug (7). All logs for th +diff -urNp stunnel-5.18/doc/stunnel.8 stunnel-5.18-patch/doc/stunnel.8 +--- stunnel-5.18/doc/stunnel.8 2015-06-11 05:22:15.000000000 -0400 ++++ stunnel-5.18-patch/doc/stunnel.8 2015-06-22 11:20:26.816469375 -0400 +@@ -207,7 +207,7 @@ info (6), or debug (7). All logs for th all levels numerically less than it will be shown. Use \fIdebug = debug\fR or \&\fIdebug = 7\fR for greatest debugging output. The default is notice (5). .Sp @@ -10,10 +10,10 @@ diff -urNp stunnel-5.15/doc/stunnel.8 stunnel-5.15-patched/doc/stunnel.8 (Facilities are not supported on Win32.) .Sp Case is ignored for both facilities and levels. -diff -urNp stunnel-5.15/doc/stunnel.html stunnel-5.15-patched/doc/stunnel.html ---- stunnel-5.15/doc/stunnel.html 2015-04-16 05:49:52.000000000 -0400 -+++ stunnel-5.15-patched/doc/stunnel.html 2015-04-27 10:34:34.504034442 -0400 -@@ -214,7 +214,7 @@ +diff -urNp stunnel-5.18/doc/stunnel.html stunnel-5.18-patch/doc/stunnel.html +--- stunnel-5.18/doc/stunnel.html 2015-06-08 08:48:58.000000000 -0400 ++++ stunnel-5.18-patch/doc/stunnel.html 2015-06-22 11:20:45.868248769 -0400 +@@ -212,7 +212,7 @@

Level is a one of the syslog level names or numbers emerg (0), alert (1), crit (2), err (3), warning (4), notice (5), info (6), or debug (7). All logs for the specified level and all levels numerically less than it will be shown. Use debug = debug or debug = 7 for greatest debugging output. The default is notice (5).

@@ -22,10 +22,10 @@ diff -urNp stunnel-5.15/doc/stunnel.html stunnel-5.15-patched/doc/stunnel.html

Case is ignored for both facilities and levels.

-diff -urNp stunnel-5.15/doc/stunnel.pod stunnel-5.15-patched/doc/stunnel.pod ---- stunnel-5.15/doc/stunnel.pod 2015-04-16 05:49:52.000000000 -0400 -+++ stunnel-5.15-patched/doc/stunnel.pod 2015-04-27 10:34:34.505034430 -0400 -@@ -197,7 +197,7 @@ info (6), or debug (7). All logs for th +diff -urNp stunnel-5.18/doc/stunnel.pod stunnel-5.18-patch/doc/stunnel.pod +--- stunnel-5.18/doc/stunnel.pod 2015-06-08 08:48:57.000000000 -0400 ++++ stunnel-5.18-patch/doc/stunnel.pod 2015-06-22 11:21:12.353942083 -0400 +@@ -195,7 +195,7 @@ info (6), or debug (7). All logs for th all levels numerically less than it will be shown. Use I or I for greatest debugging output. The default is notice (5). @@ -34,10 +34,10 @@ diff -urNp stunnel-5.15/doc/stunnel.pod stunnel-5.15-patched/doc/stunnel.pod (Facilities are not supported on Win32.) Case is ignored for both facilities and levels. -diff -urNp stunnel-5.15/src/options.c stunnel-5.15-patched/src/options.c ---- stunnel-5.15/src/options.c 2015-04-16 05:49:52.000000000 -0400 -+++ stunnel-5.15-patched/src/options.c 2015-04-27 10:34:34.505034430 -0400 -@@ -470,8 +470,12 @@ NOEXPORT char *parse_global_option(CMD c +diff -urNp stunnel-5.18/src/options.c stunnel-5.18-patch/src/options.c +--- stunnel-5.18/src/options.c 2015-06-01 10:25:32.000000000 -0400 ++++ stunnel-5.18-patch/src/options.c 2015-06-22 11:22:28.066065390 -0400 +@@ -587,8 +587,12 @@ NOEXPORT char *parse_global_option(CMD c case CMD_BEGIN: new_service_options.log_level=LOG_NOTICE; #if !defined (USE_WIN32) && !defined (__vms) diff --git a/stunnel-5-sample.patch b/stunnel-5-sample.patch deleted file mode 100644 index f697a68..0000000 --- a/stunnel-5-sample.patch +++ /dev/null @@ -1,53 +0,0 @@ -diff -urNp stunnel-5.15/tools/stunnel.conf-sample.in stunnel-5.15-patched/tools/stunnel.conf-sample.in ---- stunnel-5.15/tools/stunnel.conf-sample.in 2015-04-16 08:22:14.000000000 -0400 -+++ stunnel-5.15-patched/tools/stunnel.conf-sample.in 2015-04-27 11:23:41.958154436 -0400 -@@ -12,7 +12,7 @@ - ;setgid = @DEFAULT_GROUP@ - - ; PID file is created inside the chroot jail (if enabled) --;pid = @prefix@/var/run/stunnel.pid -+;pid = @localstatedir@/run/stunnel.pid - - ; Debugging stuff (may be useful for troubleshooting) - ;foreground = yes -@@ -68,34 +68,34 @@ checkHost = smtp.gmail.com - ;[pop3s] - ;accept = 995 - ;connect = 110 --;cert = @prefix@/etc/stunnel/stunnel.pem -+;cert = @sysconfdir@/stunnel/stunnel.pem - - ;[imaps] - ;accept = 993 - ;connect = 143 --;cert = @prefix@/etc/stunnel/stunnel.pem -+;cert = @sysconfdir@/stunnel/stunnel.pem - - ;[ssmtp] - ;accept = 465 - ;connect = 25 --;cert = @prefix@/etc/stunnel/stunnel.pem -+;cert = @sysconfdir@/stunnel/stunnel.pem - - ; TLS front-end to a web server - ;[https] - ;accept = 443 - ;connect = 80 --;cert = @prefix@/etc/stunnel/stunnel.pem -+;cert = @sysconfdir@/stunnel/stunnel.pem - ; "TIMEOUTclose = 0" is a workaround for a design flaw in Microsoft SChannel - ; Microsoft implementations do not use TLS close-notify alert and thus they - ; are vulnerable to truncation attacks - ;TIMEOUTclose = 0 - - ; Remote shell protected with PSK-authenticated TLS --; Create "@prefix@/etc/stunnel/secrets.txt" containing IDENTITY:KEY pairs -+; Create "@sysconfdir@/stunnel/secrets.txt" containing IDENTITY:KEY pairs - ;[shell] - ;accept = 1337 - ;exec = /bin/sh - ;execArgs = sh -i --;PSKsecrets = @prefix@/etc/stunnel/secrets.txt -+;PSKsecrets = @sysconfdir@/stunnel/secrets.txt - - ; vim:ft=dosini diff --git a/stunnel-configure-ac.patch b/stunnel-configure-ac.patch index ac5d44a..2f62f4f 100644 --- a/stunnel-configure-ac.patch +++ b/stunnel-configure-ac.patch @@ -1,7 +1,7 @@ -diff -urNp stunnel-5.10/configure.ac stunnel-5.10-patch/configure.ac ---- stunnel-5.10/configure.ac 2015-01-20 09:30:22.000000000 -0500 -+++ stunnel-5.10-patch/configure.ac 2015-01-28 13:50:46.282363420 -0500 -@@ -273,7 +273,7 @@ AC_ARG_ENABLE(fips, +diff -urNp stunnel-5.18/configure.ac stunnel-5.18-patch/configure.ac +--- stunnel-5.18/configure.ac 2015-06-01 10:25:32.000000000 -0400 ++++ stunnel-5.18-patch/configure.ac 2015-06-22 11:34:50.244471487 -0400 +@@ -274,7 +274,7 @@ AC_ARG_ENABLE(fips, [ --disable-fips disable OpenSSL FIPS support], [ case "$enableval" in diff --git a/stunnel-systemd-service.patch b/stunnel-systemd-service.patch index edd918f..f5df2ab 100644 --- a/stunnel-systemd-service.patch +++ b/stunnel-systemd-service.patch @@ -1,6 +1,6 @@ -diff -urNp stunnel-5.10/tools/stunnel.service.in stunnel-5.10-patch/tools/stunnel.service.in ---- stunnel-5.10/tools/stunnel.service.in 2011-05-02 18:07:34.000000000 -0400 -+++ stunnel-5.10-patch/tools/stunnel.service.in 2015-01-28 13:50:29.051578380 -0500 +diff -urNp stunnel-5.18/tools/stunnel.service.in stunnel-5.18-patch/tools/stunnel.service.in +--- stunnel-5.18/tools/stunnel.service.in 2015-06-01 10:25:32.000000000 -0400 ++++ stunnel-5.18-patch/tools/stunnel.service.in 2015-06-22 11:30:49.156263119 -0400 @@ -1,10 +1,11 @@ [Unit] Description=SSL tunnel for network daemons @@ -8,7 +8,7 @@ diff -urNp stunnel-5.10/tools/stunnel.service.in stunnel-5.10-patch/tools/stunne +After=syslog.target network.target [Service] - ExecStart=@prefix@/bin/stunnel + ExecStart=@bindir@/stunnel Type=forking +PrivateTmp=true diff --git a/stunnel.spec b/stunnel.spec index dbc33b3..f244e88 100644 --- a/stunnel.spec +++ b/stunnel.spec @@ -1,7 +1,7 @@ Summary: An SSL-encrypting socket wrapper Name: stunnel -Version: 5.17 -Release: 2%{?dist} +Version: 5.18 +Release: 1%{?dist} License: GPLv2 Group: Applications/Internet URL: http://www.stunnel.org/ @@ -14,9 +14,8 @@ Source4: stunnel-sfinger.conf Source5: pop3-redirect.xinetd Source6: stunnel-pop3s-client.conf Patch0: stunnel-5-authpriv.patch -Patch1: stunnel-5-sample.patch -Patch2: stunnel-systemd-service.patch -Patch3: stunnel-configure-ac.patch +Patch1: stunnel-systemd-service.patch +Patch2: stunnel-configure-ac.patch # util-linux is needed for rename BuildRequires: openssl-devel, pkgconfig, tcp_wrappers-devel, util-linux BuildRequires: autoconf automake @@ -39,9 +38,8 @@ in conjunction with imapd to create an SSL secure IMAP server. %prep %setup -q %patch0 -p1 -b .authpriv -%patch1 -p1 -b .sample +%patch1 -p1 %patch2 -p1 -%patch3 -p1 %build autoreconf @@ -111,6 +109,13 @@ cp $RPM_BUILD_ROOT%{_datadir}/doc/stunnel/examples/%{name}.service $RPM_BUILD_RO %endif %changelog +* Mon Jun 22 2015 Avesh Agarwal - 5.18-1 +- New upstream release 5.18. +- Finally deleted the patch stunnel-5-sample.patch as upstream + has merged those changes. +- Fixes patches as per new code changes. +- Fixed systemd service file related changes. + * Fri Jun 19 2015 Fedora Release Engineering - 5.17-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild