Bug 1808365
Summary: | [Rebase] Rebase stunnel to version 5.56 | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Sahana Prasad <sahana> |
Component: | stunnel | Assignee: | Sahana Prasad <sahana> |
Status: | CLOSED ERRATA | QA Contact: | Ivan Nikolchev <inikolch> |
Severity: | medium | Docs Contact: | Jan Fiala <jafiala> |
Priority: | medium | ||
Version: | 8.3 | CC: | inikolch, jafiala, lcervako, lmanasko, mjahoda, pasik, szidek |
Target Milestone: | rc | Keywords: | Rebase, Triaged |
Target Release: | 8.0 | ||
Hardware: | Unspecified | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | stunnel-5.56-1.el8 | Doc Type: | Enhancement |
Doc Text: |
.`stunnel` rebased to version 5.56
With this update, the `stunnel` encryption wrapper has been rebased to upstream version 5.56, which includes several new features and bug fixes. Notable features include:
* New `ticketKeySecret` and `ticketMacSecret` options that control confidentiality and integrity protection of the issued session tickets. These options enable you to resume sessions on other nodes in a cluster.
* New `curves` option to control the list of elliptic curves in OpenSSL 1.1.0 and later.
* New `ciphersuites` option to control the list of permitted TLS 1.3 ciphersuites.
* Added `sslVersion`, `sslVersionMin` and `sslVersionMax` for OpenSSL 1.1.0 and later.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2020-11-04 01:32:21 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Sahana Prasad
2020-02-28 10:51:20 UTC
Hi Jan, New features: 1. New "ticketKeySecret" and "ticketMacSecret" options to control confidentiality and integrity protection of the issued session tickets. These options allow for session resumption on other nodes in a cluster 2. New "curves" option to control the list of elliptic curves in OpenSSL 1.1.0 and later. 3. New "ciphersuites" option to control the list of permitted TLS 1.3 ciphersuites. 4. Added sslVersion, sslVersionMin and sslVersionMax for OpenSSL 1.1.0 and later. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (stunnel bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:4440 |