- updated to 1.63

1.63 2014-05-19 Fixed error in version number in META.yml 1.62 2014-05-19 Improvements to OCSP support: It turns out that some CA (like Verisign) sign the OCSP response with the CA we have in the trust store and don't attach this certifcate in the response. But OpenSSL by itself only considers the certificates included in the response and SSL_OCSP_response_verify added the certificates in the chain too. Now, we also add the trusted CA from the store which signed the lowest chain certificate, at least if we could not verify the OCSP response without doing it. Patch from Steffen Ullrich. Thanks. Fixed some compiler warnings. 1.61 2014-05-12 Changes calloc to Newx and free to Safefree, otherwise there might be problems because calloc is done from a different memory pool than free (depends on the build options for perl, but seen on Windows). Patch from Steffen Ullrich. Thanks. 1.60 2014-05-10 Fixed a typo in an error message. Patch from gregor herrmann. Thanks. Fixed a problem with building with openssl that does not support OCSP. Also fixed some newly introduced warnings if compiled with -Wall. Patch from Steffen Ullrich. Thanks. fix build-failure on most Debian architectures: SSLeay.xs: In function 'XS_Net__SSLeay_OCSP_response_results': SSLeay.xs:5602:3: error: format not a string literal and no format arguments. Patch from gregor herrmann. 1.59 2014-05-10 Fixed local/30_error.t, so that tests do not fail if diagnostics are OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/perl-Net-SSLeay?expand=0&rev=25
2014-06-06 13:48:24 +00:00 · 2014-06-06 13:48:24 +00:00 · 363cb16689
commit 363cb16689
parent 9487789420
4 changed files with 73 additions and 19 deletions
--- a/Net-SSLeay-1.58.tar.gz
+++ b/Net-SSLeay-1.58.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:0bdc50c19df545eb2f9e434458ee2b54e97b109315dafb476044b9039e783f56
-size 399353
--- a/Net-SSLeay-1.63.tar.gz
+++ b/Net-SSLeay-1.63.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:8d127c37264bfd76bcd1e2a5dc745b9459c315380eda64c606cda2f4e2bc1b9d
+size 411524
--- a/perl-Net-SSLeay.changes
+++ b/perl-Net-SSLeay.changes
@ -1,3 +1,57 @@
+-------------------------------------------------------------------
+Fri Jun  6 13:44:06 UTC 2014 - coolo@suse.com
+
+- updated to 1.63
+ 1.63 2014-05-19
+      Fixed error in version number in META.yml
+
+ 1.62 2014-05-19
+      Improvements to OCSP support: It turns out that some CA (like Verisign)
+      sign the OCSP response with the CA we have in the trust store and don't
+      attach this certifcate in the response.  But OpenSSL by itself only
+      considers the certificates included in the response and
+      SSL_OCSP_response_verify added the certificates in the chain too.
+      Now, we also add the trusted CA from the store which
+      signed the lowest chain certificate, at least if we could not verify the
+      OCSP response without doing it. Patch from Steffen
+      Ullrich. Thanks.
+      Fixed some compiler warnings.
+
+ 1.61 2014-05-12
+      Changes calloc to Newx and free to Safefree, otherwise there might be
+      problems because calloc is done from a different memory pool than free (depends
+      on the build options for perl, but seen on Windows). Patch from Steffen
+      Ullrich. Thanks.
+
+
+ 1.60 2014-05-10
+      Fixed a typo in an error message. Patch from gregor herrmann. Thanks.
+      Fixed a problem with building with openssl that does not support
+      OCSP. Also fixed some newly introduced warnings
+      if compiled with -Wall. Patch from Steffen Ullrich. Thanks.
+      fix build-failure on most Debian architectures:
+      SSLeay.xs: In function 'XS_Net__SSLeay_OCSP_response_results':
+      SSLeay.xs:5602:3: error: format not a string literal and no format
+      arguments. Patch from  gregor herrmann.
+
+
+ 1.59 2014-05-10
+      Fixed local/30_error.t, so that tests do not fail if diagnostics are
+      enabled.
+      Fixed error messages about undefined strings used with length or
+      split. Reported and patched by Peter Heuchert.
+      Improvements to configuration of OPTIMIZE flags, to prevent overriding
+      of perls expected optimization flags. Caution: HPUX aCC optimize options are special.
+      SSL_peek() now returns openssl error code as second item when called in
+      array context, same as SSL_read. Patch from Andreas Mohr.
+      Fixed some warnings.
+      Added support for tlsv1.1 tlsv1.2 via $Net::SSLeay::ssl_version. Patch
+      from Andreas Mohr.
+      Improve examples in 'Using other perl modules based on
+      Net::SSLeay'. Patched by Andreas Mohr.
+      Added support for OCSP. Patched by Steffen Ullrich. Thanks!
+      Added missing t/external/ocsp.t
+
 -------------------------------------------------------------------
 Sun Feb  9 13:34:34 UTC 2014 - coolo@suse.com

@ -9,11 +63,11 @@ Sun Feb  9 13:34:34 UTC 2014 - coolo@suse.com
      Fixed crash due to SSL_get_peer_cert_chain incorrectly free'ing the chain
      after use.
      Fixed a problem when compiling against openssl where OPENSSL_NO_EC is set.
- 
+
 1.57 2014-01-09
      Fixed remaining problems with test suite: pod coverage and kwalitee tests
      are only enabled with RELEASE_TESTING=1
- 
+
 1.56 2014-01-08
      Fixed a typo in documentation of BEAST Attack, patched by gregor
      herrmann.
@ -33,16 +87,16 @@ Sun Feb  9 13:34:34 UTC 2014 - coolo@suse.com
      Fixed a bug that could cause stack faults: mixed up PUTBACK with SPAGAIN in ssleay_RSA_generate_key_cb_invoke()
      a final PUTBACK is needed here. A second issue is also fixed:
      cb->data defaults to &PL_sv_undef but throught the code you do not check
-      against &PL_sv_undef, just NULL. 
-      To avoid passing the 3rd optional arg at all, do not create it. This fixes all the 
+      against &PL_sv_undef, just NULL.
+      To avoid passing the 3rd optional arg at all, do not create it. This fixes all the
      cb->data checks and wrong refcounts on &PL_sv_undef. Patched by Reini Urban.
      Deleted support for SSL_get_tlsa_record_byname: it is not included in
-      OpenSSL git master. 
+      OpenSSL git master.

 -------------------------------------------------------------------
 Wed Oct  2 20:26:56 UTC 2013 - dmueller@suse.com

- disable checks on qemu user build (hangs) 
+- disable checks on qemu user build (hangs)

 -------------------------------------------------------------------
 Wed Jul  3 09:13:30 UTC 2013 - lnussel@suse.de
@ -74,7 +128,7 @@ Wed Jul  3 09:13:30 UTC 2013 - lnussel@suse.de
  * Improvements to Net::SSLeay::read to make it easier to use with
    non*blocking IO Added documentation about how to mitigatxe various
    SSL/TLS vulnerabilities.
-  * initializes the SSL library at most once. 
+  * initializes the SSL library at most once.
  * Patch from kmx to protect SSLeay_add_ssl_algorithms from multiple
    loads and reentrancy in multi*threaded perls.
 - remove perl-Net-SSLeay-1.36.diff: no obvious nor documented justification
@ -98,7 +152,7 @@ Wed Feb  8 15:53:50 UTC 2012 - vcizek@suse.com
    Fixed a a compile error when building on Windows with MSVC6. reported and
    patched by "Andrew J. Savige via RT".
 1.41    2011-09-25
-    Fixed incorrect const signatures for 1.0 that were causing warnings. 
+    Fixed incorrect const signatures for 1.0 that were causing warnings.
    Patches provided by "Douglas
    Christopher Wilson via RT". Now have clean compile with 0.9.8a through 1.0.0.
 1.40    2011-09-23
@ -162,7 +216,7 @@ Sun Dec 20 16:40:19 CET 2009 - jengelh@medozas.de
 -------------------------------------------------------------------
 Fri Jul 25 16:12:21 CEST 2008 - anicka@suse.cz

- update to 1.35 
+- update to 1.35
 * Added optional support for SSL_set_hello_extension,
 * Added SSL_SESSION_set_master_key and SSL_get_keyblock_size.
 * Added all SSL_OP_* options flags present in 0.9.9
@ -185,12 +239,12 @@ Wed May 14 15:21:19 CEST 2008 - adrian@suse.de
 -------------------------------------------------------------------
 Wed Mar 12 15:14:57 CET 2008 - anicka@suse.cz

- update to 1.32 
- * Removed %Filenum_Objects from Net::SSLeay::Handle so 
+- update to 1.32
+ * Removed %Filenum_Objects from Net::SSLeay::Handle so
   unused handles will be freed.
 * Use ppport.h.
 * improved openssl path guessing, forcing openssl path now
- * Fixed a problem with X509_get_subjectAltNames not working 
+ * Fixed a problem with X509_get_subjectAltNames not working
   when the subjectAltNAmes are the first extension.
 * Fixed incorrect test failure reports in 08_external.
 * Add parens to function calls in Makefile.PL to prevent
@ -199,12 +253,12 @@ Wed Mar 12 15:14:57 CET 2008 - anicka@suse.cz
 * Removed build_requires('Test::NoWarnings') from Makefile.PL
 * Don't let the tests die when something unexpected happens.
 - fix undefined operation in SSLeay.xs
- add perl-Test-Warn to BuildRequires 
+- add perl-Test-Warn to BuildRequires

 -------------------------------------------------------------------
 Mon May  7 11:55:28 CEST 2007 - anicka@suse.cz

- add openssl to BuildRequires 
+- add openssl to BuildRequires

 -------------------------------------------------------------------
 Wed Jan 25 21:39:52 CET 2006 - mls@suse.de
@ -214,7 +268,7 @@ Wed Jan 25 21:39:52 CET 2006 - mls@suse.de
 -------------------------------------------------------------------
 Tue Jan  3 20:46:06 CET 2006 - anicka@suse.cz

- update to 1.30 
+- update to 1.30
 - remove X509_STORE_CTX_set_flags patch (not neccessary any more)

 -------------------------------------------------------------------
--- a/perl-Net-SSLeay.spec
+++ b/perl-Net-SSLeay.spec
@ -19,7 +19,7 @@
 %bcond_with test

 Name:           perl-Net-SSLeay
-Version:        1.58
+Version:        1.63
 Release:        0
 %define cpan_name Net-SSLeay
 Summary:        Perl extension for using OpenSSL