[pkgsrc/trunk]: pkgsrc/net/sslh net/sslh: update to 1.21

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/net/sslh net/sslh: update to 1.21
From: rhialto <rhialto%pkgsrc.org@localhost>
Date: Sun, 13 Jun 2021 12:55:26 +0000
details:   https://anonhg.NetBSD.org/pkgsrc/rev/9580b65c8966
branches:  trunk
changeset: 454575:9580b65c8966
user:      rhialto <rhialto%pkgsrc.org@localhost>
date:      Sun Jun 13 12:04:21 2021 +0000

description:
net/sslh: update to 1.21

v1.21

Added TCP_FASTOPEN support for client sockets (if tfo_ok is
specified in their configuration) and for listenint socket,
if all client protocols support it.  (Craig Andrews)

Added 'minlength' option to skip a probe if less
than that many bytes have been received (mostly for
regex)

Moved configuration and command-line management to
use conf2struct. Hopefully this should be transparent
to users.

Update Let's Encrypt entry in example.cfg for tls-alpn-01
challenges; tls-sni-* challenges are now deprecated.

Log to syslog even if in foreground (for people who
use fail2ban)

Use syslog_facility: "none" to disable syslog
output.

v1.21b

Added TCP_FASTOPEN support for client sockets (if tfo_ok is specified
in their configuration) and for listenint socket, if all client
protocols support it.  (Craig Andrews)

Added 'minlength' option to skip a probe if less than that many bytes
have been received (mostly for regex)

Moved configuration and command-line management to use conf2struct.
Changes are:
* command line option <-F|--config> no longer defaults to /etc/sslh.cfg,
so you have to specify it explicitly.
* command line option <-v|--verbose> takes a mandatory integer parameter

Update Let's Encrypt entry in example.cfg for tls-alpn-01 challenges;
tls-sni-* challenges are now deprecated.

Log to syslog even if in foreground (for people who use fail2ban)

Use syslog_facility: "none" to disable syslog output.

Changed exit code for illegal command line parameter from 1 to 6 (for
testing purposes)

v1.21c

Removed support for 'ssl' and fix a related segfault bug.
(use tls instead of ssl)

diffstat:

 net/sslh/Makefile                  |   7 ++--
 net/sslh/PLIST                     |   3 +-
 net/sslh/distinfo                  |  18 +++++++-----
 net/sslh/patches/patch-common.c    |  16 +++++-----
 net/sslh/patches/patch-common.h    |  18 ++++++------
 net/sslh/patches/patch-sslh-main.c |  53 --------------------------------------
 6 files changed, 31 insertions(+), 84 deletions(-)

diffs (232 lines):

diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/Makefile
--- a/net/sslh/Makefile Sun Jun 13 11:55:36 2021 +0000
+++ b/net/sslh/Makefile Sun Jun 13 12:04:21 2021 +0000
@@ -1,12 +1,12 @@
-# $NetBSD: Makefile,v 1.14 2020/01/26 17:31:55 rillig Exp $
+# $NetBSD: Makefile,v 1.15 2021/06/13 12:04:21 rhialto Exp $
 
-DISTNAME=      sslh-1.20
+DISTNAME=      sslh-1.21c
 CATEGORIES=    net
 MASTER_SITES=  ${MASTER_SITE_GITHUB:=yrutschle/}
 GITHUB_TAG=    v${PKGVERSION_NOREV}
 
 MAINTAINER=    nils%NetBSD.org@localhost
-HOMEPAGE=      https://www.rutschle.net/tech/sslh.shtml
+HOMEPAGE=      https://www.rutschle.net/tech/sslh/README.html
 COMMENT=       Multiplex ssl, ssh, and other connections on the same port
 LICENSE=       gnu-gpl-v2
 
@@ -36,7 +36,6 @@
        ${INSTALL_DATA} ${WRKSRC}/example.cfg ${DESTDIR}${EGDIR}
        ${INSTALL_DATA} ${WRKSRC}/basic.cfg ${DESTDIR}${EGDIR}
        ${INSTALL_DATA} ${WRKSRC}/README.md ${DESTDIR}${PREFIX}/${DOCDIR}
-       ${INSTALL_DATA} ${WRKSRC}/README.MacOSX ${DESTDIR}${PREFIX}/${DOCDIR}
        ${INSTALL_DATA} ${WRKSRC}/ChangeLog ${DESTDIR}${PREFIX}/${DOCDIR}
 
 .include "../../devel/libconfig/buildlink3.mk"
diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/PLIST
--- a/net/sslh/PLIST    Sun Jun 13 11:55:36 2021 +0000
+++ b/net/sslh/PLIST    Sun Jun 13 12:04:21 2021 +0000
@@ -1,9 +1,8 @@
-@comment $NetBSD: PLIST,v 1.5 2015/05/11 10:39:26 wiz Exp $
+@comment $NetBSD: PLIST,v 1.6 2021/06/13 12:04:21 rhialto Exp $
 man/man8/sslh.8
 sbin/sslh
 sbin/sslh-select
 share/doc/sslh/ChangeLog
-share/doc/sslh/README.MacOSX
 share/doc/sslh/README.md
 share/examples/sslh/basic.cfg
 share/examples/sslh/example.cfg
diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/distinfo
--- a/net/sslh/distinfo Sun Jun 13 11:55:36 2021 +0000
+++ b/net/sslh/distinfo Sun Jun 13 12:04:21 2021 +0000
@@ -1,11 +1,13 @@
-$NetBSD: distinfo,v 1.10 2018/12/05 21:20:32 wiz Exp $
+$NetBSD: distinfo,v 1.11 2021/06/13 12:04:21 rhialto Exp $
 
-SHA1 (sslh-1.20.tar.gz) = d39b68a537ed1385f1c801a1e10ccdb7b31e555a
-RMD160 (sslh-1.20.tar.gz) = 3745768e1de8c5a154cfd98ea6f215ac349a3b17
-SHA512 (sslh-1.20.tar.gz) = 403b8b59565e6835418c39bc5db6567a593dbdda86197186b1cd4f441009a52a039047254e674e6264492c02816c1cffdd3155e161837e3b78230d5f37ac7883
-Size (sslh-1.20.tar.gz) = 60466 bytes
-SHA1 (patch-common.c) = d889ef166776ff6d6808733d668636bd3a8fb239
-SHA1 (patch-common.h) = 376a7d4d9ef28707d3dfc3df763a2a577f020772
+SHA1 (sslh-1.21c.tar.gz) = f9d190b07fa9b72ab7d750bdfc1adaf23917649e
+RMD160 (sslh-1.21c.tar.gz) = dca5001a1bde50c08c6bfe40ff9cdb923cd1682c
+SHA512 (sslh-1.21c.tar.gz) = 9446c6afe965684c5d6406ac8917338f57d95f8fbfacd7a51193dd5dbac77e1ed5e39eb8e2575e7025a8612b25e9fba7e64832a48c999f366875217b9328da22
+Size (sslh-1.21c.tar.gz) = 111895 bytes
+SHA1 (patch-argtable3.c) = da39a3ee5e6b4b0d3255bfef95601890afd80709
+SHA1 (patch-common.c) = e5aa0cc38e9c62a765400b08ed700e9d2f08f2db
+SHA1 (patch-common.h) = 3e4cc77aeedf9fa4e94329dcf1c1c65099d3ae68
 SHA1 (patch-echosrv.c) = 611044fd7ed1fd52c44e2d8ff393091c35478e17
-SHA1 (patch-sslh-main.c) = 0f790b0fb93104d6e963c29aee41dc5c11d6fa45
+SHA1 (patch-sslh-conf.c) = da39a3ee5e6b4b0d3255bfef95601890afd80709
+SHA1 (patch-sslh-main.c) = 059fd93a7412fc2ca38b29ae0c65783f4213e77c
 SHA1 (patch-sslh-select.c) = d470e6dc803164fbdfa77ddc189cdb4dd7672bd4
diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/patches/patch-common.c
--- a/net/sslh/patches/patch-common.c   Sun Jun 13 11:55:36 2021 +0000
+++ b/net/sslh/patches/patch-common.c   Sun Jun 13 12:04:21 2021 +0000
@@ -1,10 +1,10 @@
-$NetBSD: patch-common.c,v 1.2 2018/04/29 09:41:16 wiz Exp $
+$NetBSD: patch-common.c,v 1.3 2021/06/13 12:04:21 rhialto Exp $
 
 Avoid queue variable conflict.
 
---- common.c.orig      2018-02-11 17:42:21.000000000 +0000
+--- common.c.orig      2020-07-30 07:45:50.000000000 +0000
 +++ common.c
-@@ -287,7 +287,7 @@ int connect_addr(struct connection *cnx,
+@@ -338,7 +338,7 @@ int connect_addr(struct connection *cnx,
  }
  
  /* Store some data to write to the queue later */
@@ -13,7 +13,7 @@
  {
      char *p;
      ptrdiff_t data_offset = q->deferred_data - q->begin_deferred_data;
-@@ -313,7 +313,7 @@ int defer_write(struct queue *q, void* d
+@@ -361,7 +361,7 @@ int defer_write(struct queue *q, void* d
   * Upon success, the number of bytes written is returned.
   * Upon failure, -1 returned (e.g. connexion closed)
   * */
@@ -22,7 +22,7 @@
  {
      int n;
  
-@@ -365,7 +365,7 @@ void dump_connection(struct connection *
+@@ -413,7 +413,7 @@ void dump_connection(struct connection *
   * returns FD_STALLED if data was read, could not be written, and has been
   * stored in temporary buffer.
   */
@@ -31,8 +31,8 @@
  {
     char buffer[BUFSIZ];
     int target, from, size_r, size_w;
-@@ -658,7 +658,7 @@ void setup_syslog(const char* bin_name) 
-     int res, fn;
+@@ -738,7 +738,7 @@ void setup_syslog(const char* bin_name) 
+     }
  
      name1 = strdup(bin_name);
 -    res = asprintf(&name2, "%s[%d]", basename(name1), getpid());
@@ -40,7 +40,7 @@
      CHECK_RES_DIE(res, "asprintf");
  
      for (fn = 0; facilitynames[fn].c_val != -1; fn++)
-@@ -781,7 +781,7 @@ void write_pid_file(const char* pidfile)
+@@ -861,7 +861,7 @@ void write_pid_file(const char* pidfile)
          exit(3);
      }
  
diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/patches/patch-common.h
--- a/net/sslh/patches/patch-common.h   Sun Jun 13 11:55:36 2021 +0000
+++ b/net/sslh/patches/patch-common.h   Sun Jun 13 12:04:21 2021 +0000
@@ -1,10 +1,10 @@
-$NetBSD: patch-common.h,v 1.1 2017/08/15 13:13:36 jperkin Exp $
+$NetBSD: patch-common.h,v 1.2 2021/06/13 12:04:21 rhialto Exp $
 
 Avoid queue variable conflict.
 
---- common.h.orig      2016-03-29 19:19:05.000000000 +0000
+--- common.h.orig      2020-07-30 07:45:50.000000000 +0000
 +++ common.h
-@@ -69,7 +69,7 @@ enum connection_state {
+@@ -85,7 +85,7 @@ enum connection_state {
  
  /* A 'queue' is composed of a file descriptor (which can be read from or
   * written to), and a queue for deferred write data */
@@ -13,7 +13,7 @@
      int fd;
      void *begin_deferred_data;
      void *deferred_data;
-@@ -84,7 +84,7 @@ struct connection {
+@@ -100,7 +100,7 @@ struct connection {
      /* q[0]: queue for external connection (client);
       * q[1]: queue for internal connection (httpd or sshd);
       * */
@@ -22,7 +22,7 @@
  };
  
  #define FD_CNXCLOSED    0
-@@ -95,7 +95,7 @@ struct connection {
+@@ -118,7 +118,7 @@ struct connection_desc {
  /* common.c */
  void init_cnx(struct connection *cnx);
  int connect_addr(struct connection *cnx, int fd_from);
@@ -30,8 +30,8 @@
 +int fd2fd(struct sslhqueue *target, struct sslhqueue *from);
  char* sprintaddr(char* buf, size_t size, struct addrinfo *a);
  void resolve_name(struct addrinfo **out, char* fullname);
- void log_connection(struct connection *cnx);
-@@ -110,8 +110,8 @@ int resolve_split_name(struct addrinfo *
+ int get_connection_desc(struct connection_desc* desc, const struct connection *cnx);
+@@ -135,8 +135,8 @@ int resolve_split_name(struct addrinfo *
  
  int start_listen_sockets(int *sockfd[], struct addrinfo *addr_list);
  
@@ -40,5 +40,5 @@
 +int defer_write(struct sslhqueue *q, void* data, int data_size);
 +int flush_deferred(struct sslhqueue *q);
  
- extern int probing_timeout, verbose, inetd, foreground, 
-        background, transparent, numeric;
+ extern struct sslhcfg_item cfg;
+ extern struct addrinfo *addr_listen;
diff -r ad1c82d3fbb2 -r 9580b65c8966 net/sslh/patches/patch-sslh-main.c
--- a/net/sslh/patches/patch-sslh-main.c        Sun Jun 13 11:55:36 2021 +0000
+++ /dev/null   Thu Jan 01 00:00:00 1970 +0000
@@ -1,53 +0,0 @@
-$NetBSD: patch-sslh-main.c,v 1.6 2018/04/29 09:41:16 wiz Exp $
-
-* getopt_long_only does not exist on NetBSD getopt.
-* Support documented command line options.
-
---- sslh-main.c.orig   2018-02-11 17:42:21.000000000 +0000
-+++ sslh-main.c
-@@ -80,7 +80,7 @@ static struct option const_options[] = {
- };
- static struct option* all_options;
- static struct proto* builtins;
--static const char *optstr = "vt:T:p:VP:C:F::";
-+static const char *optstr = "finvt:T:p:VP:C:F::";
- 
- 
- 
-@@ -460,7 +460,7 @@ static void cmdline_config(int argc, cha
- #ifdef LIBCONFIG
-     optind = 1;
-     opterr = 0; /* we're missing protocol options at this stage so don't output errors */
--    while ((c = getopt_long_only(argc, argv, optstr, all_options, NULL)) != -1) {
-+    while ((c = getopt_long(argc, argv, optstr, all_options, NULL)) != -1) {
-         if (c == 'v') {
-             verbose++;
-         }
-@@ -497,7 +497,7 @@ static void parse_cmdline(int argc, char
-     optind = 1;
-     opterr = 1;
- next_arg:
--    while ((c = getopt_long_only(argc, argv, optstr, all_options, NULL)) != -1) {
-+    while ((c = getopt_long(argc, argv, optstr, all_options, NULL)) != -1) {
-         if (c == 0) continue;
- 
-         if (c >= PROT_SHIFT) {
-@@ -527,6 +527,18 @@ next_arg:
- 
-         switch (c) {
- 
-+        case 'f':
-+            foreground = 1;
-+            break;
-+
-+        case 'i':
-+            inetd = 1;
-+            break;
-+
-+        case 'n':
-+            numeric = 1;
-+            break;
-+
-         case 'F':
-             /* Legal option, but do nothing, it was already processed in
-              * cmdline_config() */
Prev by Date: [pkgsrc/trunk]: pkgsrc/parallel/ocl-icd ocl-icd: set explicit path to ruby ex...
Next by Date: [pkgsrc/trunk]: pkgsrc/doc doc: Updated net/sslh to 1.21c
Previous by Thread: [pkgsrc/trunk]: pkgsrc/parallel/ocl-icd ocl-icd: set explicit path to ruby ex...
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc doc: Updated net/sslh to 1.21c
Indexes:
Home | Main Index | Thread Index | Old Index