kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/security/stunnel/Makefile
jym a1ae535f4d Update stunnel to 4.55. Critical update that fixes CVE-2013-1762. 
Changelog:

Version 4.55, 2013.03.03, urgency: HIGH:

    Security bugfix
        OpenSSL updated to version 1.0.1e in Win32/Android builds.
        Buffer overflow vulnerability fixed in the NTLM authentication of the CONNECT protocol negotiation. See https://www.stunnel.org/CVE-2013-1762.html for details.
    New features
        SNI wildcard matching in server mode.
        Terminal version of stunnel (tstunnel.exe) build for Win32.
    Bugfixes
        Fixed write half-close handling in the transfer() function (thx to Dustin Lundquist).
        Fixed EAGAIN error handling in the transfer() function (thx to Jan Bee).
        Restored default signal handlers before execvp() (thx to Michael Weiser).
        Fixed memory leaks in protocol negotiation (thx to Arthur Mesh).
        Fixed a file descriptor leak during configuration file reload (thx to Arthur Mesh).
        Closed SSL sockets were removed from the the transfer() c->fds poll.
        Minor fix in handling exotic inetd-mode configurations.
        WCE compilation fixes.
        IPv6 compilation fix in protocol.c.
        Windows installer fixes.
2013-03-06 22:50:31 +00:00

59 lines
1.8 KiB
Makefile
Raw Blame History

# $NetBSD: Makefile,v 1.82 2013/03/06 22:50:31 jym Exp $
DISTNAME= stunnel-4.55
CATEGORIES= security
MASTER_SITES= http://www.stunnel.org/downloads/
MAINTAINER= jym@NetBSD.org
HOMEPAGE= http://www.stunnel.org/
COMMENT= Universal SSL tunnel
LICENSE= gnu-gpl-v2
BUILD_DEFS+= VARBASE
USE_LIBTOOL= yes
GNU_CONFIGURE= yes
CONFIGURE_ARGS+= --localstatedir=${VARBASE}
CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR}
CONFIGURE_ARGS+= --with-ssl=${SSLBASE:Q}
.include "../../mk/bsd.prefs.mk"
STUNNEL_USER?= stunnel
STUNNEL_GROUP?= stunnel
PKG_HOME?= ${VARBASE}/chroot/stunnel
PKG_USERS= ${STUNNEL_USER}:${STUNNEL_GROUP}::Stunnel:${PKG_HOME}
PKG_GROUPS= ${STUNNEL_GROUP}
USER_GROUP= ${STUNNEL_USER} ${STUNNEL_GROUP}
PKG_SYSCONFSUBDIR= stunnel
PKG_SYSCONFDIR_PERMS= ${ROOT_USER} ${STUNNEL_GROUP} 0750
OWN_DIRS= ${PKG_HOME}/certs ${PKG_HOME}/crls
OWN_DIRS_PERMS= ${PKG_HOME}/pid ${USER_GROUP} 0750
CONF_FILES+= ${PREFIX}/share/examples/stunnel/stunnel.conf-sample \
${PKG_SYSCONFDIR}/stunnel.conf
RCD_SCRIPTS= stunnel
REPLACE_PERL+= src/stunnel3.in
USE_TOOLS+= perl:run
SUBST_CLASSES+= chroot
SUBST_MESSAGE.chroot= Fix chroot path
SUBST_STAGE.chroot= pre-configure
SUBST_FILES.chroot= tools/stunnel.conf-sample.in
SUBST_SED.chroot+= -e 's|@prefix@/var/lib|@localstatedir@/chroot|'
SUBST_CLASSES+= stunnel
SUBST_MESSAGE.stunnel= Fix user, group and pid
SUBST_STAGE.stunnel= post-configure
SUBST_FILES.stunnel= tools/stunnel.conf-sample
SUBST_SED.stunnel= -e 's|setuid = nobody|setuid = ${STUNNEL_USER}|'
SUBST_SED.stunnel+= -e 's|setgid = nogroup|setgid = ${STUNNEL_GROUP}|'
SUBST_SED.stunnel+= -e 's|pid = /stunnel.pid|pid = /pid/stunnel.pid|'
.include "options.mk"
.include "../../devel/zlib/buildlink3.mk"
.include "../../security/openssl/buildlink3.mk"
.include "../../mk/bsd.pkg.mk"
Reference in a new issue View git blame Copy permalink