forked from erlang/erlang
Accepting request 1229774 from home:matwey:branches:devel:languages:erlang:Factory
- Changes for 27.1.3:
* public_key: If both ext-key-usage and key-usage are defined for
a certificate it should be checked that these usages are
consistent with each other. This will have the affect that such
certificates where the ext-key-usages is marked as critical and
the usages is consistent with the key-use it can be considered
valid without mandatory application specific checks for the
ext-key-useage extension.
* public_key: Handle decoding of EDDSA key properly, when
decoding a PEM file that contains only the public EDDSA key.
* erts: gen_udp:send on domain local can leak inet_reply
messages.
* erts: net:getifaddrs does not properly report the running flag
on windows.
* compiler: In rare circumstances, the destructive tuple update
optimization could be applied when it was unsafe.
* compiler: In rare circumstances involving appending to multiple
binaries, the compile could emit unsafe code that would crash
the runtime system.
* ssh: With this change, ssh connection does not crash upon
receiving exit-signal message for an already terminated
channel.
* kernel: On windows the socket:recv could return with success
({ok, Data}) even though not all data had been read.
* kernel: gen_udp:send on domain local can leak inet_reply
messages.
* kernel: Failure to create an UDP IPv6 socket when inet_backend
= socket with certain IPv6 socket options.
* kernel: net:getifaddrs does not properly report the running
flag on windows.
OBS-URL: https://build.opensuse.org/request/show/1229774
OBS-URL: https://build.opensuse.org/package/show/devel:languages:erlang:Factory/erlang?expand=0&rev=141
This commit is contained in:
Git OBS Bridge
BIN
OTP-27.1.2.tar.gz
(Stored with Git LFS)
BIN
OTP-27.1.2.tar.gz
(Stored with Git LFS)
Binary file not shown.
BIN
OTP-27.1.3.tar.gz
(Stored with Git LFS)
Normal file
BIN
OTP-27.1.3.tar.gz
(Stored with Git LFS)
Normal file
Binary file not shown.
@@ -1,3 +1,58 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Dec 10 12:33:11 UTC 2024 - matwey.kornilov@gmail.com
|
||||
|
||||
- Changes for 27.1.3:
|
||||
* public_key: If both ext-key-usage and key-usage are defined for
|
||||
a certificate it should be checked that these usages are
|
||||
consistent with each other. This will have the affect that such
|
||||
certificates where the ext-key-usages is marked as critical and
|
||||
the usages is consistent with the key-use it can be considered
|
||||
valid without mandatory application specific checks for the
|
||||
ext-key-useage extension.
|
||||
* public_key: Handle decoding of EDDSA key properly, when
|
||||
decoding a PEM file that contains only the public EDDSA key.
|
||||
* erts: gen_udp:send on domain local can leak inet_reply
|
||||
messages.
|
||||
* erts: net:getifaddrs does not properly report the running flag
|
||||
on windows.
|
||||
* compiler: In rare circumstances, the destructive tuple update
|
||||
optimization could be applied when it was unsafe.
|
||||
* compiler: In rare circumstances involving appending to multiple
|
||||
binaries, the compile could emit unsafe code that would crash
|
||||
the runtime system.
|
||||
* ssh: With this change, ssh connection does not crash upon
|
||||
receiving exit-signal message for an already terminated
|
||||
channel.
|
||||
* kernel: On windows the socket:recv could return with success
|
||||
({ok, Data}) even though not all data had been read.
|
||||
* kernel: gen_udp:send on domain local can leak inet_reply
|
||||
messages.
|
||||
* kernel: Failure to create an UDP IPv6 socket when inet_backend
|
||||
= socket with certain IPv6 socket options.
|
||||
* kernel: net:getifaddrs does not properly report the running
|
||||
flag on windows.
|
||||
* ssl: Avoid generating an internal alert for case that should
|
||||
have been an orderly shutdown by the supervisor.
|
||||
* ssl: If present, extended key-usage TLS (SSL) role check (pk-
|
||||
clientAuth, pk-serverAuth) should always be performed for peer-
|
||||
cert. An intermediate CA cert may relax the requirement if
|
||||
AnyExtendedKeyUsage purpose is present.
|
||||
* ssl: Back port certificate_authorities option for TLS-1.3
|
||||
servers to pre TLS-1.3 servers to enable them to disable the
|
||||
sending of certificate authorities in their certificate
|
||||
request. This will have same affect as the the TLS-1.3 server
|
||||
option although it is handled by a different mechanism in these
|
||||
versions, where the functionality is described to be more of a
|
||||
guidance, although some pre TLS clients have proven to make it
|
||||
mandatory as in TLS-1.3 extension handling.
|
||||
* common_test: With this change, cth_surefire hook module handles
|
||||
group path reduction for a skipped group. This fixes a bug
|
||||
manifesting with improper group path for a group executed after
|
||||
a group which was skipped.
|
||||
* common_test: With this change, prefix option can be specified
|
||||
in cth_conn_log option list. Option allows to specify how much
|
||||
of additional information is added in raw log output.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Dec 5 14:37:40 UTC 2024 - Dirk Müller <dmueller@suse.com>
|
||||
|
||||
|
||||
@@ -23,7 +23,7 @@
|
||||
%define _fillupdir %{_localstatedir}/adm/fillup-templates
|
||||
%endif
|
||||
Name: erlang
|
||||
Version: 27.1.2
|
||||
Version: 27.1.3
|
||||
Release: 0
|
||||
Summary: General-purpose programming language and runtime environment
|
||||
License: Apache-2.0
|
||||
|
||||
Reference in New Issue
Block a user