Navigation:
Browse pkgsrc
(this page) 2024-12-10 17:07:25 by Amitai Schleier | Files touched by this commit (1) |  |
Log message: ucspi-ssl: update default ciphers. Bump PKGREVISION. Fixes 'sslserver: error: (111) unable to set cipher list' on startup. |
| 2024-11-16 13:08:07 by Thomas Klausner | Files touched by this commit (2504) |
Log message: *: recursive bump for perl 5.40 |
| 2024-09-29 02:42:50 by Amitai Schleier | Files touched by this commit (2) |
Log message: ucspi-ssl: Fix newly introduced non-C99. |
| 2024-09-24 15:42:31 by Amitai Schleier | Files touched by this commit (2) | |
Log message: ucspi-ssl: update to 0.13.03. Changes: - Added capability for sslclient to read the password for a protected keyfile alternatively from a file instead of FD 3. - Removed obsolete ssl_params_ecdh() function. Updating during the freeze for the workaround to a bug on some platforms. |
| 2024-09-22 20:29:04 by Amitai Schleier | Files touched by this commit (2) | |
Log message: ucspi-ssl: update to 0.13.02. Changes: - Small fix for GCC 14.2 compiler. rts tests don't use encrypted keyfiles for sslclient. |
| 2024-09-17 17:35:38 by Amitai Schleier | Files touched by this commit (3) | |
Log message: ucspi-ssl: update to 0.13.01. Changes: - More verbose information for sslserver for (missing) key material. - Removed pre OpenSSL 1.1.1 API calls. Adjusted sig handler signature. - Still need testing on different environments (OpenSSL/LibreSSL). - fehQlibs-25 required. getoptb() used instead getopt(). - Re-issued ECC certificates. RTS is working now fine. - Changed error code display; ssl_error.c not used/working anymore. - The SSL client certificate verification is happening during handshake. - Using package/rts, sslclient can not be fed with a client keyfile password under OmniOS. - Added SAN Email and FQDN as MOD_SSL variables for client and server. - Regression tested against OpenSSL and LibreSSL (providing TLS 1.3 and ECC support). |
| 2024-09-10 21:56:06 by Amitai Schleier | Files touched by this commit (1) |
Log message: ucspi-ssl: depend explicitly on fehqlibs>=19. NFCI. |
| 2024-08-01 13:48:16 by Amitai Schleier | Files touched by this commit (3) |
Log message: ucspi-ssl: install library and header file. From George Matsumura in PR pkg/58460. |
| 2023-12-09 20:10:12 by Amitai Schleier | Files touched by this commit (3) | |
Log message: ucspi-ssl: update to 0.12.10. Changes: 0.12.8: - Added new x509 certs and key material; all ECC now. - Fixed wrong evaluation of peer cert in ssl_verify (none-critical). 0.12.9: - Included IP info in sslserver's TLS error messages for a quick lookup. - Fixed sslhandle's wrong if nesting. - sslserver return FATAL (and not ERROR) in case TLS is requested but missing. - Enhanced compatibility with OpenSSL 3.x.y. 0.12.10: - Added argument '-y cdb' to sslserver in order to allow a rule checking for IP addresses prior of the DNS/IDENT lookup (to cope with DDos attacks). |
| 2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298) |
Log message: *: bump for openssl 3 |
New packages: