Update stunnel idle timeout.

The default stunnel idle timeout is many hours. By setting it to a value based on the NFS lease length we can recover from network partitions sooner.

Update stunnel idle timeout.
The default stunnel idle timeout is many hours. By setting it to a value based on the NFS lease length we can recover from network partitions sooner.
46286ce0 · Max Beckett · 94e667c5 · 46286ce0 · 46286ce0 · 46286ce0
Commit 46286ce0 authored Jul 31, 2019 by Max Beckett
--- a/README.md
+++ b/README.md
@@ -113,7 +113,7 @@ For more information on mounting with the mount helper, see the [documentation](

 ## Upgrading stunnel for RHEL/CentOS

-By default, when using the EFS mount helper with TLS, it enforces certificate hostname checking. The EFS mount helper uses the `stunnel` program for its TLS functionality. Please note that some versions of Linux do not include a version of `stunnel` that supports TLS features by default. When using such a Linux version, mounting an EFS file system using TLS will fail.
+By default, when using the EFS mount helper with TLS, it enforces certificate hostname checking. The EFS mount helper uses the `stunnel` program for its TLS functionality. Please note that some versions of Linux do not include a version of `stunnel` that supports TLS features by default. When using such a Linux version, mounting an EFS file system using TLS will fail. 

 Once you’ve installed the `amazon-efs-utils` package, to upgrade your system’s version of `stunnel`, see [Upgrading Stunnel](https://docs.aws.amazon.com/efs/latest/ug/using-amazon-efs-utils.html#upgrading-stunnel).


--- a/build-deb.sh
+++ b/build-deb.sh
@@ -11,7 +11,7 @@ set -ex

 BASE_DIR=$(pwd)
 BUILD_ROOT=${BASE_DIR}/build/debbuild
-VERSION=1.11
+VERSION=1.12

 echo 'Cleaning deb build workspace'
 rm -rf ${BUILD_ROOT}

--- a/dist/amazon-efs-utils.control
+++ b/dist/amazon-efs-utils.control
 Package: amazon-efs-utils
 Architecture: all
-Version: 1.11
+Version: 1.12
 Section: utils
 Depends: python|python2, nfs-common, stunnel4 (>= 4.56)
 Priority: optional

--- a/dist/amazon-efs-utils.spec
+++ b/dist/amazon-efs-utils.spec
@@ -20,7 +20,7 @@
 %endif

 Name      : amazon-efs-utils
-Version   : 1.11
+Version   : 1.12
 Release   : 1%{?dist}
 Summary   : This package provides utilities for simplifying the use of EFS file systems


--- a/src/mount_efs/__init__.py
+++ b/src/mount_efs/__init__.py
@@ -54,7 +54,7 @@ except ImportError:
    from urllib.error import URLError
    from urllib.request import urlopen

-VERSION = '1.11'
+VERSION = '1.12'

 CONFIG_FILE = '/etc/amazon/efs/efs-utils.conf'
 CONFIG_SECTION = 'mount'
@@ -102,6 +102,7 @@ STUNNEL_EFS_CONFIG = {
    'renegotiation': 'no',
    'TIMEOUTbusy': '20',
    'TIMEOUTclose': '0',
+    'TIMEOUTidle': '70',
    'delay': 'yes',
 }


--- a/src/watchdog/__init__.py
+++ b/src/watchdog/__init__.py
@@ -25,7 +25,7 @@ try:
 except ImportError:
    from configparser import ConfigParser

-VERSION = '1.11'
+VERSION = '1.12'

 CONFIG_FILE = '/etc/amazon/efs/efs-utils.conf'
 CONFIG_SECTION = 'mount-watchdog'