From 7839c644479a8dad94323ae14cc16e94672884b23c533bc8c8be26dce3b8d2d0 Mon Sep 17 00:00:00 2001
From: Martin Hauke <mardnh@gmx.de>
Date: Thu, 18 Mar 2021 15:27:14 +0000
Subject: [PATCH] Accepting request 878570 from home:mnhauke

- Build with support for tcp-wrapper (-DUSE_LIBWRAP=ON)
- Update to version 2.0.9
  Security:
  * If an empty or invalid CA file was provided to the client
    library for verifying the remote broker, then the initialx
    connection would fail but subsequent connections would succeed
     without verifying the remote broker certificate.
  * If an empty or invalid CA file was provided to the broker for
    verifying the remote broker for an outgoing bridge connection
    then the initial connection would fail but subsequent
    connections would succeed without verifying the
    remote broker certificate.
  Broker:
  * Fix encrypted bridge connections incorrectly connecting when
    `bridge_cafile` is empty or invalid.
  * Fix `tls_version` behaviour not matching documentation. It was
    setting the exact TLS version to use, not the minimium TLS
    version to use.
  * Fix messages to `$` prefixed topics being rejected.
  * Fix QoS 0 messages not being delivered when max_queued_bytes
    was configured.
  * Fix bridge increasing backoff calculation.
  * Improve handling of invalid combinations of listener address
    and bind interface configurations.
  * Fix `max_keepalive` option not applying to clients connecting
    with keepalive set to 0.
  Client library:
  * Fix encrypted connections incorrectly connecting when the CA
    file passed to `mosquitto_tls_set()` is empty or invalid.
  * Fix connections retrying very rapidly in some situations.

OBS-URL: https://build.opensuse.org/request/show/878570
OBS-URL: https://build.opensuse.org/package/show/network:messaging:mqtt/mosquitto?expand=0&rev=51
---
 mosquitto-2.0.8.tar.gz     |  3 ---
 mosquitto-2.0.8.tar.gz.sig | 16 ----------------
 mosquitto-2.0.9.tar.gz     |  3 +++
 mosquitto-2.0.9.tar.gz.sig | 16 ++++++++++++++++
 mosquitto.changes          | 36 ++++++++++++++++++++++++++++++++++++
 mosquitto.spec             |  4 ++--
 6 files changed, 57 insertions(+), 21 deletions(-)
 delete mode 100644 mosquitto-2.0.8.tar.gz
 delete mode 100644 mosquitto-2.0.8.tar.gz.sig
 create mode 100644 mosquitto-2.0.9.tar.gz
 create mode 100644 mosquitto-2.0.9.tar.gz.sig

diff --git a/mosquitto-2.0.8.tar.gz b/mosquitto-2.0.8.tar.gz
deleted file mode 100644
index afaf6a3..0000000
--- a/mosquitto-2.0.8.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b15da8fc4edcb91d554e1259e220ea0173ef639ceaa4b465e06feb7e125b84bf
-size 756636
diff --git a/mosquitto-2.0.8.tar.gz.sig b/mosquitto-2.0.8.tar.gz.sig
deleted file mode 100644
index 7ffbcaf..0000000
--- a/mosquitto-2.0.8.tar.gz.sig
+++ /dev/null
@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEoNbuodyuSaY1o7Lwd5si37PnF7cFAmA33jMACgkQd5si37Pn
-F7eACxAAruozs3XCNjAXIGDWvnnxD13qbgmft5XVD6RVKINvmp18/zsIooJ/eqUE
-s/H9wqHC6SNqThWh+2s7TdBC9Nrdv1AgeMEVAgL/PTdnMATQTfz7Wcg6XwObNa8e
-wXRFntsX8KwBIow6slDw5kepqMgL/ByHFtEWvvGKElnZ0FRAqNyfzrL/4njvPet0
-sh/CB0BYYIuL8hVZ/NWJHWpoTbE02pBY6ZmDGCjI4+EsP6xZNPoRsIKWUBastz4M
-uA2KCursxn3pKviZnMLrlT8vfogESUh/33+AhiubRuyg8IgOkJgxTV0xmBKXEq7s
-ZLqacFHKVYXB6iwTbSPi90cmHHI4eivibq1peV6SfyTyQUPv+J2wN4rHTfGjFFCO
-+vcRZPgGa4yO1Iv18PzScoVznOtsfQBuBDQ3CqoEDF74zvSfo7Nkda8gEfdbcIBI
-WyLycbNzDDBmu8sJyx/2mGht2KSnkNi9sB+AOBGtNAZfsXzLzGPwEYpI7TSUKgKB
-cTZKsBt2osfpB/Kpx7BpWVhq+wloexfhZanX59DHGqrI0hv0sISUmg63a+m86yH2
-UhNDNQGBCW5H3Xrcs5UdcagUVQtjTYe8SM1YbpFGYkm1ZRi0gFqL7nzvkd8TFMOc
-XYWfjQ7YCZtwdlD3iuK0I9ASfFZNrXh6CTebrhw497O2O03UjUA=
-=D++5
------END PGP SIGNATURE-----
diff --git a/mosquitto-2.0.9.tar.gz b/mosquitto-2.0.9.tar.gz
new file mode 100644
index 0000000..b1f8871
--- /dev/null
+++ b/mosquitto-2.0.9.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1b8553ef64a1cf5e4f4cfbe098330ae612adccd3d37f35b2db6f6fab501b01d4
+size 757878
diff --git a/mosquitto-2.0.9.tar.gz.sig b/mosquitto-2.0.9.tar.gz.sig
new file mode 100644
index 0000000..2979bd5
--- /dev/null
+++ b/mosquitto-2.0.9.tar.gz.sig
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=aRYG
+-----END PGP SIGNATURE-----
diff --git a/mosquitto.changes b/mosquitto.changes
index 5ec84b3..443871c 100644
--- a/mosquitto.changes
+++ b/mosquitto.changes
@@ -1,3 +1,39 @@
+-------------------------------------------------------------------
+Fri Mar 12 14:13:54 UTC 2021 - Martin Hauke <mardnh@gmx.de>
+
+- Build with support for tcp-wrapper (-DUSE_LIBWRAP=ON)
+- Update to version 2.0.9
+  Security:
+  * If an empty or invalid CA file was provided to the client
+    library for verifying the remote broker, then the initialx
+    connection would fail but subsequent connections would succeed
+     without verifying the remote broker certificate.
+  * If an empty or invalid CA file was provided to the broker for
+    verifying the remote broker for an outgoing bridge connection
+    then the initial connection would fail but subsequent
+    connections would succeed without verifying the
+    remote broker certificate.
+  Broker:
+  * Fix encrypted bridge connections incorrectly connecting when
+    `bridge_cafile` is empty or invalid.
+  * Fix `tls_version` behaviour not matching documentation. It was
+    setting the exact TLS version to use, not the minimium TLS
+    version to use.
+  * Fix messages to `$` prefixed topics being rejected.
+  * Fix QoS 0 messages not being delivered when max_queued_bytes
+    was configured.
+  * Fix bridge increasing backoff calculation.
+  * Improve handling of invalid combinations of listener address
+    and bind interface configurations.
+  * Fix `max_keepalive` option not applying to clients connecting
+    with keepalive set to 0.
+  Client library:
+  * Fix encrypted connections incorrectly connecting when the CA
+    file passed to `mosquitto_tls_set()` is empty or invalid.
+  * Fix connections retrying very rapidly in some situations.
+  Build:
+  * Fix cmake epoll detection.
+
 -------------------------------------------------------------------
 Thu Mar 11 12:27:06 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
 
diff --git a/mosquitto.spec b/mosquitto.spec
index 37aa75b..b28a54c 100644
--- a/mosquitto.spec
+++ b/mosquitto.spec
@@ -20,7 +20,7 @@
 %define c_lib   libmosquitto1
 %define cpp_lib libmosquittopp1
 Name:           mosquitto
-Version:        2.0.8
+Version:        2.0.9
 Release:        0
 Summary:        A MQTT v3.1/v3.1.1 Broker
 License:        EPL-1.0
@@ -123,7 +123,7 @@ find misc -type f -exec chmod a-x "{}" "+"
 %cmake \
   -DCMAKE_INSTALL_SYSCONFDIR=%{_sysconfdir} \
   -DWITH_WEBSOCKETS=ON \
-  -DUSE_LIBWRAP=OFF
+  -DUSE_LIBWRAP=ON
 %make_build
 
 %install