aboutsummaryrefslogtreecommitdiff
path: root/net/stunnel
Commit message (Collapse)AuthorAge
* stunnel: Update init scriptJeffery To2019-01-29
| | | | | | | | | | | | | | | | | | | | | | The reworked init script: * Loads and validates options using uci_validate_section() (through uci_load_validate()) * Allows service options be specified in the globals section * Hard-codes less global options (debug, syslog), as their default values already work * Adds support for almost all options (up to the current package version, 5.49) * Moves the pid file into a subdirectory (/var/run/stunnel) so that it can be created successfully when setuid is used Certain options are omitted: * chroot - requires more setup than the init script can manage * fips, libwrap - disabled at compile-time * iconActive, iconError, iconIdle, taskbar - gui/win32 only * verify - obsolete, verifyChain and/or verifyPeer should be used instead Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* stunnel: add cpe idFlorian Eckert2019-01-18
| | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* stunnel: Update to 5.49Daniel Engberg2018-11-05
| | | | | Update stunnel to 5.49 Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: add archive mirrorFlorian Eckert2018-09-06
| | | | | | | The registered URLs only point to the latest version. After adding the archive URL we could now download older version again. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: Update to 5.48Daniel Engberg2018-08-16
| | | | | Update stunnel to 5.48 Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: Remove abdicate maintainerFlorian Eckert2018-01-23
| | | | | | | Update PKG_RELEASE version to 4. Remove Daniel Engberg from PGK_MAINTANER list. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: check if service section is configured to prevent crash loopFlorian Eckert2018-01-23
| | | | | | | | | | If a service section is not presented in the configuration then stunnel will always start anyway. This ends in a crash loop because the configuration is not valid. Checking in "uci" mode if a service section is presented and only then start the stunnel service will solve this issue. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: do always stop/start on config changeFlorian Eckert2018-01-23
| | | | | | | | | | Do not send a SIGHUP on reload configuration let procd restart the service with stop/start. This is saver. Add uci generated stunnel file to procd "file" attribute to reload/restart the stunnel service. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: add enabled config optionFlorian Eckert2017-12-15
| | | | | | | Add an enabled option for the service section, so you could keep your configuration in place without apply this section on startup or service reload. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: add uci config supportFlorian Eckert2017-12-10
| | | | | | Add uci config support. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* net/stunnel: Update to 5.44Daniel Engberg2017-12-09
| | | | | | | Update stunnel to 5.44 * Disable FIPS Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: Update to 5.41Daniel Engberg2017-04-02
| | | | | | Update stunnel to 5.41 Add main site as last resort mirror Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: Update to version 5.40Daniel Engberg2017-01-29
| | | | | Update stunnel to 5.40 Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: Update to 5.38Daniel Engberg2016-11-28
| | | | | Updates stunnel to version 5.38 Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* net/stunnel: Update to 5.37Daniel Engberg2016-11-20
| | | | | Updates stunnel to version 5.37 Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* stunnel: Update to 5.36, use pthreads and SSP.diizzyy2016-10-01
| | | | | | | | | | Updates stunnel to 5.36, changes it from using forking to pthreads and enables SSP linking. Also changes maintainer to myself. Regarding pthreads vs forking, http://blog.haproxy.com/2011/09/16/benchmarking_ssl_performance/ SSP is short for Stack Smashing Protector and you can read about it here: http://wiki.osdev.org/Stack_Smashing_Protector Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* stunnel: add missing zlib dependencyFelix Fietkau2016-07-24
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* stunnel: Update from 5.14 to 5.20Michael Haas2015-07-25
| | | | | | | | * 010_fix_getnameinfo.patch is no longer needed * 011-cron-without-pthread-fix.patch added, fixes incorrect ifdef when building without pthreads Signed-off-by: Michael Haas <haas@computerlinguist.org>
* stunnel: Bump from 5.10 to 5.14Michael Haas2015-04-03
| | | | | | Also refresh patches. Signed-Off-By: Michael Haas <haas@computerlinguist.org>
* stunnel: Bring it back at v5.10Michael Haas2015-03-17
From: Michael Haas <haas@computerlinguist.org> * init script no longer creates certificates (consider client mode as use case) * patches/010_fix_getnameinfo.patch: Fix getnameinfo signature * patches/011_disable_ssp_linking.patch: Disable -fstack-protector as it is not always available in OpenWRT * old patches (in oldpackages) no longer necessary * remove libwrap dependency * remove libpthread dependency * respect CONFIG_IPV6 * init script uses procd * sample stunnel.conf runs in client mode - prevents start failure, does not require cert Possible enhancement: automatically generate certificate as done in uhttpd. However, as client mode is a possible use case, I'd rather not. Additionally, stunnel may use several certs with user-defined locations and we can't easily set a cert location via command-line args. The package is based on https://sites.google.com/site/twisteroidambassador/openwrt/stunnel Signed-off-by: Michael Haas <haas@computerlinguist.org>
Powered by cgit, Themed by Ted Yin.