|
|
|
|
Changelog for perl-Net-SSLeay-1.71-1.fc23.i686.rpm :
* Fri Sep 18 2015 Paul Howarth - 1.71-1- Update to 1.71 - Conditionalize support for MD4, MD5 - Added support for linking libraries in /usr/local/lib64 for some flavours of Linux like RH Tikanga - Fixes to X509_check_host, X509_check_ip, SSL_CTX_set_alpn_protos, and SSL_set_alpn_protos so they will compile on MSVC and AIX cc - Fixed typos in documentation for X509_NAME_new and X509_NAME_hash - Version number in META.yml is now quoted- Explicitly BR: perl-devel, needed for EXTERN.h * Fri Jun 26 2015 Paul Howarth - 1.70-1- Update to 1.70 - The new OpenSSL 1.0.2 X509_check_ * functions are not available in current LibreSSL, so disable them in SSLeay.xs - Fixed a problem with building against OSX homebrew\'s openssl - Removed a test in t/local/33_x509_create_cert.t that fails due to changes in 1.0.1n and later * Thu Jun 18 2015 Fedora Release Engineering - 1.69-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Tue Jun 09 2015 Jitka Plesnikova - 1.69-2- Perl 5.22 rebuild * Sun Jun 07 2015 Paul Howarth - 1.69-1- Update to 1.69 - Testing with OpenSSL 1.0.2, 1.0.2a OK - Completed LibreSSL compatibility - Improved compatibility with OpenSSL 1.0.2a - Added the X509_check_ * functions introduced in OpenSSL 1.0.2 - Added support for X509_V_FLAG_TRUSTED_FIRST constant - Allow get_keyblock_size to work correctly with OpenSSL 1.0.1 onwards * Fri Jun 05 2015 Jitka Plesnikova - 1.68-3- Perl 5.22 rebuild * Mon May 18 2015 Paul Howarth - 1.68-2- SSLv3_method not dropped in OpenSSL 1.0.2, so revert that change (#1222521) * Fri Jan 30 2015 Paul Howarth - 1.68-1- Update to 1.68 - Improvements to inc/Module/Install/PRIVATE/Net/SSLeay.pm to handle the case where there are muliple OPENSSLs installed - Fixed a documentation error in get_peer_cert_chain - Fixed a problem with building on Windows that prevented correct OpenSSL directory detection with version 1.0.1j as delivered with Shining Light OpenSSL - Fixed a problem with building on Windows that prevented finding MT or MD versions of SSL libraries - Updated doc in README.Win32 to build with Microsoft Visual Studio 2010 Express - Added Windows crypt32 library to Windows linking as some compilers/platforms seem to require it and it is innocuous otherwise - Fixed a failure in t/external/20_cert_chain.t where some platforms do not have HTTPS in /etc/services - Recent 1.0.2 betas have dropped the SSLv3_method function; we leave out the function on newer versions, much the same as the SSLv2 deprecation is handled - Fix the ALPN test, which was incorrectly failing on OpenSSL due to the LibreSSL check (earlier versions bailed out before that line) - Fixed a problem on OSX when macports openssl 1.x is installed: headers from macport were found but older OSX openssl libraries were linked, resulting in \"Symbol not found: _EVP_MD_do_all_sorted\" - Added notes about runtime error \"no OPENSSL_Applink\", when calling Net::SSLeay::P_PKCS12_load_file- Don\'t change %{__perl_provides} unless we need to * Tue Sep 09 2014 Jitka Plesnikova - 1.66-2- Perl 5.20 mass * Mon Sep 08 2014 Paul Howarth - 1.66-1- Update to 1.66 - Fixed compile problem with perl prior to 5.8.8, similar to CPAN RT#76267 - Fixed a problem with Socket::IPPROTO_TCP on early perls - After discussions with the community and the original author Sampo Kellomaki, the license conditions have been changed to \"Perl Artistic License 2.0\"- License changed to Artistic 2.0- Use %license where possible * Thu Aug 28 2014 Jitka Plesnikova - 1.65-3- Perl 5.20 rebuild * Sun Aug 17 2014 Fedora Release Engineering - 1.65-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Jul 15 2014 Paul Howarth - 1.65-1- Update to 1.65 - Added note to docs to make it clear that X509_get_subjectAltNames returns a packed binary IP address for type 7 - GEN_IPADD - Improvements to SSL_OCSP_response_verify to compile under non-c99 compilers - Port to Android, includes Android-specific version of RSA_generate_key - Added LibreSSL support - Patch that fixes the support for SSL_set_info_callback and adds SSL_CTX_set_info_callback and SSL_set_state; support for these functions is necessary to either detect renegotiation or to enforce renegotiation - Fixed a problem with SSL_set_state not available on some early OpenSSLs - Removed arbitrary size limits from calls to tcp_read_all in tcpcat() and http_cat() - Removed unnecessary Debian_CPANTS.txt from MANIFEST - again * Wed Jun 11 2014 Paul Howarth - 1.64-1- Update to 1.64 - Test ocsp.t now does not fail if HTTP::Tiny is not installed - Fixed repository in META.yml - Fixed a problem with SSL_get_peer_cert_chain: if the SSL handshake results in an anonymous authentication, like ADH-DES-CBC3-SHA, get_peer_cert_chain will not return an empty list, but instead return the SSL object - Fixed a problem where patch https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3009244d caused a failed test in t/local/33_x509_create_cert.t * Sun Jun 08 2014 Paul Howarth - 1.63-3- Fix failing test with openssl-1.0.1h (upstream commit 414, CPAN RT#96256) * Sat Jun 07 2014 Fedora Release Engineering - 1.63-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon May 19 2014 Paul Howarth - 1.63-1- Update to 1.63 - Improvements to OCSP support: it turns out that some CAs (like Verisign) sign the OCSP response with the CA we have in the trust store and don\'t attach this certifcate in the response, but OpenSSL by itself only considers the certificates included in the response and SSL_OCSP_response_verify added the certificates in the chain too, so now we also add the trusted CA from the store which signed the lowest chain certificate, at least if we could not verify the OCSP response without doing it - Fixed some compiler warnings- BR: perl(HTTP::Tiny) for test suite * Mon May 12 2014 Paul Howarth - 1.61-1- Update to 1.61 - Fixed a typo in an error message - Fixed a problem with building with openssl that does not support OCSP - Fixed some newly introduced warnings if compiled with -Wall - Fixed format string issue causing build failures - Changed calloc to Newx and free to Safefree, otherwise there might be problems because calloc is done from a different memory pool than free (depends on the build options for perl, but seen on Windows) * Sat May 10 2014 Paul Howarth - 1.59-1- Update to 1.59 - Fixed local/30_error.t so that tests do not fail if diagnostics are enabled - Fixed error messages about undefined strings used with length or split - Improvements to configuration of OPTIMIZE flags, to prevent overriding of perl\'s expected optimization flags - SSL_peek() now returns openssl error code as second item when called in array context, same as SSL_read - Fixed some warnings - Added support for tlsv1.1 tlsv1.2 via $Net::SSLeay::ssl_version - Improve examples in \'Using other perl modules based on Net::SSLeay\' - Added support for OCSP - Added missing t/external/ocsp.t- Add patch to stop gcc complaining about format string usage * Wed Jan 15 2014 Paul Howarth - 1.58-1- Update to 1.58 - Always use size_t for strlen() return value - t/external/20_cert_chain.t was missing from dist - Version number in META.yml was incorrect - Improvements to test t/external/20_cert_chain.t to provoke following bug: fixed crash due to SSL_get_peer_cert_chain incorrectly free\'ing the chain after use - Fixed a problem when compiling against openssl where OPENSSL_NO_EC is set- Drop Fedora/EL ECC support patch, no longer needed * Sun Jan 12 2014 Paul Howarth - 1.57-1- Update to 1.57 - Fixed remaining problems with test suite: pod coverage and kwalitee tests are only enabled with RELEASE_TESTING=1 * Wed Jan 08 2014 Paul Howarth - 1.56-1- Update to 1.56 - Fixed a typo in documentation of BEAST Attack - Added LICENSE file copied from OpenSSL distribution to prevent complaints from various versions of kwalitee - Adjusted license: in META.yml to be \'openssl\' - Adds support for the basic operations necessary to support ECDH for PFS, e.g. EC_KEY_new_by_curve_name, EC_KEY_free and SSL_CTX_set_tmp_ecdh - Improvements to t/handle/external/50_external.t to handle the case when a test connection was not possible - Added support for ALPN TLS extension - Fixed a use-after-free error - Fixed a problem with invalid comparison on OBJ_cmp result in t/local/36_verify.t - Added support for get_peer_cert_chain() - Fixed a bug that could cause stack faults: mixed up PUTBACK with SPAGAIN in ssleay_RSA_generate_key_cb_invoke(); a final PUTBACK is needed here - Fixed cb->data checks and wrong refcounts on &PL_sv_undef - Deleted support for SSL_get_tlsa_record_byname: it is not included in OpenSSL git master- Drop upstreamed patch for CPAN RT#91215- Skip the Pod Coverage test, as there are naked subroutines in this release- ECC support not available in Fedora/EL until OpenSSL 1.0.1e, so patch the source accordingly to fix builds for F-12 .. F-17 * Fri Dec 06 2013 Paul Howarth - 1.55-6- Fix usage of OBJ_cmp in the test suite (CPAN RT#91215) * Sun Dec 01 2013 Paul Howarth - 1.55-5- Drop the kwalitee test for now as it\'s too fussy for the current code * Wed Aug 14 2013 Jitka Plesnikova - 1.55-4- Perl 5.18 re-rebuild of bootstrapped packages * Sat Aug 03 2013 Fedora Release Engineering - 1.55-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Mon Jul 22 2013 Petr Pisar - 1.55-2- Perl 5.18 rebuild * Sat Jun 08 2013 Paul Howarth - 1.55-1- update to 1.55 - added support for TLSV1_1 and TLSV1_2 methods with SSL_CTX_tlsv1_1_new(), SSL_CTX_tlsv1_2_new(), TLSv1_1_method() and TLSv1_2_method(), where available in the underlying openssl - added CRL support functions X509_CRL_get_ext(), X509_CRL_get_ext_by_NID(), X509_CRL_get_ext_count() - fixed a problem that could cause content with a value of \'0\' to be incorrectly encoded by do_httpx3 and friends (CPAN RT#85417) - added support for SSL_get_tlsa_record_byname() required for DANE support in openssl-1.0.2 and later - testing with openssl-1.0.2-stable-SNAP-20130521 - added X509_NAME_new and X509_NAME_hash * Sat Mar 23 2013 Paul Howarth - 1.54-1- update to 1.54 - added support for SSL_export_keying_material where present (i.e. in OpenSSL 1.0.1 and later) - changed t/handle/external/50_external.t to use www.airspayce.com instead of perldition.org, who no longer have an https server - patch to fix a crash: P_X509_get_crl_distribution_points on an X509 certificate with values in the CDP extension that do not have an ia5 string would cause a segmentation fault when accessed - change in t/local/32_x509_get_cert_info.t to not use Net::SSLeay::ASN1_INTEGER_get, since it works differently on 32 and 64 bit platforms - updated author and distribution location details to airspayce.com - improvement to test 07_sslecho.t so that if set_cert_and_key fails we can tell why * Thu Feb 14 2013 Fedora Release Engineering - 1.52-2- rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Wed Jan 09 2013 Paul Howarth - 1.52-1- update to 1.52 - rebuild package with gnu format tar, to prevent problems with unpacking on other systems such as old Solaris * Fri Dec 14 2012 Paul Howarth - 1.51-1- update to 1.51 - fixed a problem where SSL_set_SSL_CTX is not available with OpenSSL < 0.9.8f (CPAN RT#81940)- fix bogus date in spec changelog * Thu Dec 13 2012 Paul Howarth - 1.50-1- update to 1.50 - fixed a problem where t/handle/external/50_external.t would crash if any of the test sites were not contactable - now builds on VMS, added README.VMS - fixed a few compiler warnings in SSLeay.xs; most of them are just signed/unsigned pointer mismatches but there is one that actually fixes returning what would be an arbitrary value off the stack from get_my_thread_id if it happened to be called in a non-threaded build - added SSL_set_tlsext_host_name, SSL_get_servername, SSL_get_servername_type, SSL_CTX_set_tlsext_servername_callback for server side Server Name Indication (SNI) support - fixed a problem with C++ comments preventing builds on AIX and HPUX - perdition.org not available for tests, changed to www.open.com.au - added SSL_FIPS_mode_set - improvements to test suite so it succeeds with and without FIPS mode enabled - added documentation, warning not to pass UTF-8 data in the content argument to post_https * Tue Sep 25 2012 Paul Howarth - 1.49-1- update to 1.49 - fixed problem where on some platforms test t/local/07_tcpecho.t would bail out if it could not bind port 1212; it now tries a number of ports to bind to until successful - improvements to unsigned casting - improvements to Net::SSLeay::read to make it easier to use with non-blocking IO: it modifies Net::SSLeay::read() to return the result from SSL_read() as the second return value, if Net::SSLeay::read() is called in list context (its behavior should be unchanged if called in scalar or void context) - fixed a problem where t/local/kwalitee.t fails with Module::CPANTS::Analyse 0.86 - fixed a number of typos - fixed a compiler warning from Compiling with gcc-4.4 and -Wall - Fixed problems with get_https4: documentation was wrong, $header_ref was not correctly set and $server_cert was not returned - fixed a problem that could cause a Perl exception about no blength method on undef (CPAN RT#79309) - added documentation about how to mitigate various SSL/TLS vulnerabilities - SSL_MODE_ * are now available as constants- drop upstreamed pod encoding patch * Mon Aug 20 2012 Paul Howarth - 1.48-6- fix POD encoding (CPAN RT#78281)- classify buildreqs by usage- BR:/R: perl(XSLoader) * Mon Aug 13 2012 Petr Pisar - 1.48-5- specify all dependencies * Fri Jul 20 2012 Fedora Release Engineering - 1.48-4- rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Jul 10 2012 Petr Pisar - 1.48-3- perl 5.16 re-rebuild of bootstrapped packages * Wed Jun 13 2012 Petr Pisar - 1.48-2- perl 5.16 rebuild * Wed Apr 25 2012 Paul Howarth - 1.48-1- update to 1.48 - removed unneeded Debian_CPANTS.txt from MANIFEST - fixed incorrect documentation about the best way to call CTX_set_options - fixed problem that caused \"Undefined subroutine utf8::encode\" in t/local/33_x509_create_cert.t (on perl 5.6.2) - in examples and pod documentation, changed #!/usr/local/bin/perl to #!/usr/bin/perl - t/local/06_tcpecho.t now tries a number of ports to bind to until successful- no longer need to fix shellbangs in examples * Thu Apr 19 2012 Paul Howarth - 1.47-3- simplify Test::Kwalitee conditional * Thu Apr 19 2012 Marcela Mašláňová - 1.47-2- make module Kwalitee conditional * Wed Apr 04 2012 Paul Howarth - 1.47-1- update to 1.47 - fixed overlong lines and spelling errors in pod - fixed extra \"garbage\" files in 1.46 tarball - fixed incorrect fail reports on some 64 bit platforms - fix to avoid FAIL reports from cpantesters with missing openssl - use my_snprintf from ppport.h to prevent link failures with perl 5.8 and earlier when compiled with MSVC * Tue Apr 03 2012 Paul Howarth - 1.46-1- update to 1.46 (see Changes file for details)- BR: openssl as well as openssl-devel, needed for building- no longer need help to find openssl- upstream no longer shipping TODO- drop %defattr, redundant since rpm 4.4 * Sat Feb 25 2012 Paul Howarth - 1.45-1- update to 1.45 (see Changes file for full details) - added thread safety and dynamic locking, which should complete thread safety work, making Net::SSLeay completely thread-safe - lots of improved documentation- BR: perl(Test::Pod::Coverage)- install Net/SSLeay.pod as %doc * Thu Jan 12 2012 Paul Howarth - 1.42-2- use DESTDIR rather than PERL_INSTALL_ROOT- use %{_fixperms} macro rather than our own chmod incantation- BR: perl(AutoLoader), perl(Exporter), perl(Socket) * Mon Oct 03 2011 Paul Howarth - 1.42-1- update to 1.42 - fixed incorrect documentation of how to enable CRL checking - fixed incorrect letter in Sebastien in Credits - changed order of the Changes file to be reverse chronological - fixed a compile error when building on Windows with MSVC6- drop UTF8 patch, no longer needed * Sun Sep 25 2011 Paul Howarth - 1.41-1- update to 1.41 - fixed incorrect const signatures for 1.0 that were causing warnings; now have clean compile with 0.9.8a through 1.0.0- BR: perl(Carp) * Fri Sep 23 2011 Paul Howarth - 1.40-1- update to 1.40 - fixed incorrect argument type in call to SSL_set1_param - fixed a number of issues with pointer sizes; removed redundant pointer cast tests from t/ - added Perl version requirements to SSLeay.pm * Wed Sep 21 2011 Paul Howarth - 1.39-1- update to 1.39 - downgraded Module::Install to 0.93 since 1.01 was causing problems in the Makefile * Fri Sep 16 2011 Paul Howarth - 1.38-1- update to 1.38 - fixed a problem with various symbols that only became available in OpenSSL 0.9.8 such as X509_VERIFY_PARAM and X509_POLICY_NODE, causing build failures with older versions of OpenSSL (CPAN RT#71013) * Fri Sep 16 2011 Paul Howarth - 1.37-1- update to 1.37 - added X509_get_fingerprint - added support for SSL_CTX_set1_param, SSL_set1_param and selected X509_VERIFY_PARAM_ * OBJ_ * functions - fixed the prototype for randomize() - fixed an uninitialized value warning in $Net::SSLeay::proxyauth - allow net-ssleay to compile if SSLV2 is not present - fixed a problem where sslcat (and possibly other functions) expect RSA keys and will not load DSA keys for client certificates - removed SSL_CTX_v2_new and SSLv2_method() for OpenSSL 1.0 and later - added CTX_use_PKCS12_file- this release by MIKEM => update source URL * Tue Jul 19 2011 Petr Sabata - 1.36-7- Perl mass rebuild * Thu Jul 14 2011 Paul Howarth - 1.36-6- BR: perl(Test::Kwalitee) if we\'re not bootstrapping- explicitly BR: pkgconfig- use a patch rather than a scripted iconv to fix the character encoding- modernize provides filter- stop running the tests in verbose mode- nobody else likes macros for commands * Wed Jul 13 2011 Iain Arnell - 1.36-5- drop obsolete BRs Array::Compare, Sub::Uplevel, Tree::DAG_Node * Tue Feb 08 2011 Fedora Release Engineering - 1.36-4- rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Tue Dec 21 2010 Marcela Maslanova - 1.36-3- rebuild to fix problems with vendorarch/lib (#661697) * Tue May 04 2010 Marcela Maslanova - 1.36-2- mass rebuild with perl-5.12.0 * Sun Jan 31 2010 Paul Howarth - 1.36-1- update to 1.36 (see Changes for details)- drop svn patches * Mon Dec 07 2009 Stepan Kasal - 1.35-8- rebuild against perl 5.10.1 * Sat Aug 22 2009 Paul Howarth - 1.35-7- update to svn trunk (rev 252), needed due to omission of MD2 functionality from OpenSSL 1.0.0 (CPAN RT#48916) * Fri Aug 21 2009 Tomas Mraz - 1.35-6- rebuilt with new openssl * Sun Jul 26 2009 Fedora Release Engineering - 1.35-5- rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Sun Mar 08 2009 Paul Howarth - 1.35-4- filter out unwanted provides for perl shared objects- run tests in verbose mode * Thu Feb 26 2009 Fedora Release Engineering - 1.35-3- rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Jan 17 2009 Tomas Mraz - 1.35-2- rebuild with new openssl * Mon Jul 28 2008 Paul Howarth - 1.35-1- update to 1.35- drop flag and patch for enabling/disabling external tests - patch now upstream- external hosts patch no longer needed as we don\'t do external tests- filter out unversioned provide for perl(Net::SSLeay)- use the distro openssl flags rather than guessing them * Wed Feb 27 2008 Tom \"spot\" Callaway - 1.32-5- rebuild for perl 5.10 (again) * Tue Feb 19 2008 Fedora Release Engineering - 1.32-4- autorebuild for GCC 4.3 * Thu Jan 31 2008 Tom \"spot\" Callaway - 1.32-3- rebuild for new perl * Wed Dec 05 2007 Paul Howarth - 1.32-2- rebuild with new openssl * Wed Nov 28 2007 Paul Howarth - 1.32-1- update to 1.32, incorporate new upstream URLs- cosmetic spec changes suiting new maintainer\'s preferences- fix argument order for find with -depth- remove patch for CVE-2005-0106, fixed upstream in 1.30 (#191351) (http://rt.cpan.org/Public/Bug/Display.html?id=19218)- remove test patch, no longer needed- re-encode Credits as UTF-8- include TODO as %doc- add buildreqs perl(Array::Compare), perl(MIME::Base64), perl(Sub::Uplevel), perl(Test::Exception), perl(Test::NoWarnings), perl(Test::Pod), perl(Test::Warn), perl(Tree::DAG_Node)- add patch needed to disable testsuite non-interactively- run test suite but disable external tests by default; external tests can be enabled by using rpmbuild --with externaltests- add patch to change hosts connected to in external tests * Fri Nov 16 2007 Parag Nemade - 1.30-7- Merge Review (#226272) Spec cleanup * Tue Nov 06 2007 Stepan Kasal - 1.30-6- fix a typo in description (#231756, #231757) * Tue Oct 16 2007 Tom \"spot\" Callaway - 1.30-5.1- correct license tag- add BR: perl(ExtUtils::MakeMaker) * Tue Aug 21 2007 Warren Togami - 1.30-5- rebuild * Fri Jul 14 2006 Warren Togami - 1.30-4- import into FC6 * Tue Feb 28 2006 Jose Pedro Oliveira - 1.30-3- Rebuild for FC5 (perl 5.8.8). * Fri Jan 27 2006 Jose Pedro Oliveira - 1.30-2- CVE-2005-0106: patch from Mandriva http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:023 * Sun Jan 15 2006 Ville Skyttä - 1.30-1- 1.30.- Optionally run the test suite during build with \"--with tests\". * Wed Nov 09 2005 Ville Skyttä - 1.26-3- Rebuild for new OpenSSL.- Cosmetic cleanups. * Wed Apr 06 2005 Michael Schwendt - 1.26-2- rebuilt * Mon Dec 20 2004 Ville Skyttä - 0:1.26-1- Drop fedora.us release prefix and suffix. * Mon Oct 25 2004 Ville Skyttä - 0:1.26-0.fdr.2- Convert manual page to UTF-8. * Tue Oct 12 2004 Ville Skyttä - 0:1.26-0.fdr.1- Update to unofficial 1.26 from Peter Behroozi, adds get1_session(), enables session caching with IO::Socket::SSL (bug 1859, bug 1860).- Bring outdated test14 up to date (bug 1859, test suite still not enabled). * Sun Jul 11 2004 Ville Skyttä - 0:1.25-0.fdr.4- Rename to perl-Net-SSLeay, provide perl-Net_SSLeay for compatibility with the rest of the world. * Wed Jul 07 2004 Ville Skyttä - 0:1.25-0.fdr.3- Bring up to date with current fedora.us Perl spec template.- Include examples in docs. * Sun Feb 08 2004 Ville Skyttä - 0:1.25-0.fdr.2- Reduce directory ownership bloat. * Fri Oct 17 2003 Ville Skyttä - 0:1.25-0.fdr.1- First build.
|
|
|