diff --git a/IO-Socket-SSL-1.967.tar.gz b/IO-Socket-SSL-1.967.tar.gz deleted file mode 100644 index df5f1f1..0000000 --- a/IO-Socket-SSL-1.967.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:d9ee42bf667ac92732e8c35d3930757fad6b8996d24a5e5b8eeb6250ba411299 -size 97036 diff --git a/IO-Socket-SSL-1.970.tar.gz b/IO-Socket-SSL-1.970.tar.gz new file mode 100644 index 0000000..89c5478 --- /dev/null +++ b/IO-Socket-SSL-1.970.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:050d9ad4668dec38a627938e9aa7e5dd94613f629a53ef812d10514fb206c88a +size 100385 diff --git a/perl-IO-Socket-SSL.changes b/perl-IO-Socket-SSL.changes index 8dd25f3..7a29724 100644 --- a/perl-IO-Socket-SSL.changes +++ b/perl-IO-Socket-SSL.changes @@ -1,3 +1,30 @@ +------------------------------------------------------------------- +Sat Mar 22 19:05:20 UTC 2014 - coolo@suse.com + +- updated to 1.970 + - fix rt#93987 by making sure sub default_ca does use a local $_ and not a + version of an outer scope which might be read-only. Thanks to gshank + 1.969 2014/03/13 + - fix set_defaults to match documentation regarding short names + - new function set_args_filter_hack to make it possible to override bad SSL + settings from other code at the last moment. + - determine default_ca on module load (and not on first use in each thread) + - don't try default hostname verification if verify_mode 0 + - fix hostname verification when reusing context + 1.968 2014/03/13 + - BEHAVIOR CHANGE: removed implicit defaults of certs/server-{cert,key}.pem + for SSL_{cert,key}_file and ca/,certs/my-ca.pem for SSL_ca_file. + These defaults were depreceated since 1.951 (2013/7/3). + - Usable CA verification path on Windows etc: + Do not use Net::SSLeay::CTX_set_default_verify_paths any longer to set + system/build dependended default verification path, because there was no + way to retrieve these default values and check if they contained usable + CA. Instead re-implement the same algorithm and export the results with + public function default_ca() and make it possible to overwrite it. + Also check for usable verification path during build. + If no usable path are detected require Mozilla::CA at build and try to + use it at runtime. + ------------------------------------------------------------------- Sun Feb 9 13:30:59 UTC 2014 - coolo@suse.com diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec index 3f48040..8fc7ede 100644 --- a/perl-IO-Socket-SSL.spec +++ b/perl-IO-Socket-SSL.spec @@ -17,7 +17,7 @@ Name: perl-IO-Socket-SSL -Version: 1.967 +Version: 1.970 Release: 0 %define cpan_name IO-Socket-SSL Summary: Nearly transparent SSL encapsulation for IO::Socket::INET.