forked from pool/perl-IO-Socket-SSL
Accepting request 1187503 from devel:languages:perl
OBS-URL: https://build.opensuse.org/request/show/1187503 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/perl-IO-Socket-SSL?expand=0&rev=102
This commit is contained in:
commit
f55ef9cf7a
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:a547617395f508669916064abb0aa61a7acba8f950dbb1924f83c9f0be31dd11
|
||||
size 266036
|
3
IO-Socket-SSL-2.088.tar.gz
Normal file
3
IO-Socket-SSL-2.088.tar.gz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:9d27a31f0b617022180a1d1c45664beb76f51f3b8caede1404072a87dab74536
|
||||
size 270154
|
@ -1,5 +1,4 @@
|
||||
patches:
|
||||
perl-IO-Socket-SSL-use-system-default-cipher-list.patch: -p1 PATCH-FIX-UPSTREAM (bsc1200295) perl-IO-Socket-SSL doesn't follow system "PROFILE=SYSTEM" openSSL ciphers - https://git.centos.org/rpms/perl-IO-Socket-SSL/blob/e0b0ae04f5cdb41b1f29cb7d76c23abba7ac35e9/f/SOURCES/IO-Socket-SSL-2.066-use-system-default-cipher-list.patch
|
||||
#patches:
|
||||
ignore_requires: Mozilla::CA
|
||||
prep: |-
|
||||
rm README.Win32
|
||||
|
@ -1,34 +0,0 @@
|
||||
Index: IO-Socket-SSL-2.074/lib/IO/Socket/SSL.pm
|
||||
===================================================================
|
||||
--- IO-Socket-SSL-2.074.orig/lib/IO/Socket/SSL.pm
|
||||
+++ IO-Socket-SSL-2.074/lib/IO/Socket/SSL.pm
|
||||
@@ -205,8 +205,10 @@ my %DEFAULT_SSL_ARGS = (
|
||||
SSL_npn_protocols => undef, # meaning depends whether on server or client side
|
||||
SSL_alpn_protocols => undef, # list of protocols we'll accept/send, for example ['http/1.1','spdy/3.1']
|
||||
|
||||
- # rely on system default but be sure to disable some definitely bad ones
|
||||
- SSL_cipher_list => 'DEFAULT !EXP !MEDIUM !LOW !eNULL !aNULL !RC4 !DES !MD5 !PSK !SRP',
|
||||
+ # Use system-wide default cipher list to support use of system-wide
|
||||
+ # crypto policy (#1076390, #1127577, CPAN RT#97816)
|
||||
+ # https://fedoraproject.org/wiki/Changes/CryptoPolicy
|
||||
+ SSL_cipher_list => 'PROFILE=SYSTEM',
|
||||
);
|
||||
|
||||
my %DEFAULT_SSL_CLIENT_ARGS = (
|
||||
Index: IO-Socket-SSL-2.074/lib/IO/Socket/SSL.pod
|
||||
===================================================================
|
||||
--- IO-Socket-SSL-2.074.orig/lib/IO/Socket/SSL.pod
|
||||
+++ IO-Socket-SSL-2.074/lib/IO/Socket/SSL.pod
|
||||
@@ -1070,9 +1070,8 @@ ciphers for TLS 1.2 and lower. See the O
|
||||
for more details.
|
||||
|
||||
Unless you fail to contact your peer because of no shared ciphers it is
|
||||
-recommended to leave this option at the default setting, which uses the system
|
||||
-default but disables some insecure ciphers which might still be enabled on older
|
||||
-systems.
|
||||
+recommended to leave this option at the default setting, which honors the
|
||||
+system-wide PROFILE=SYSTEM cipher list.
|
||||
|
||||
In case different cipher lists are needed for different SNI hosts a hash can be
|
||||
given with the host as key and the cipher suite as value, similar to
|
||||
|
@ -1,3 +1,34 @@
|
||||
-------------------------------------------------------------------
|
||||
Sun Jul 14 16:02:28 UTC 2024 - Tina Müller <tina.mueller@suse.com>
|
||||
|
||||
- Remove patches 80315ed1a6a0b7968ce26284ed81b56c0ab288d9.patch,
|
||||
perl-IO-Socket-SSL-use-system-default-cipher-list.patch (fixed upstream)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Jul 14 05:31:32 UTC 2024 - Tina Müller <timueller+perl@suse.de>
|
||||
|
||||
- updated to 2.88.0 (2.088)
|
||||
see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes
|
||||
|
||||
2.088 2024/07/14
|
||||
- minor fixes for use on ancient versions of perl and for building with
|
||||
newer versions of openssl
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jul 11 14:38:31 UTC 2024 - Dirk Stoecker <opensuse@dstoecker.de>
|
||||
|
||||
- add 80315ed1a6a0b7968ce26284ed81b56c0ab288d9.patch to fix a error
|
||||
introduced in version 2.087
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Jul 9 05:30:33 UTC 2024 - Tina Müller <timueller+perl@suse.de>
|
||||
|
||||
- updated to 2.87.0 (2.087)
|
||||
see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes
|
||||
|
||||
2.087 2024/07/08
|
||||
- support for PSK, see SSL_psk in documentation
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jul 3 16:49:59 UTC 2024 - Tina Müller <tina.mueller@suse.com>
|
||||
|
||||
|
@ -18,17 +18,15 @@
|
||||
|
||||
%define cpan_name IO-Socket-SSL
|
||||
Name: perl-IO-Socket-SSL
|
||||
Version: 2.86.0
|
||||
Version: 2.88.0
|
||||
Release: 0
|
||||
# 2.086 -> normalize -> 2.86.0
|
||||
%define cpan_version 2.086
|
||||
# 2.088 -> normalize -> 2.88.0
|
||||
%define cpan_version 2.088
|
||||
License: Artistic-1.0 OR GPL-1.0-or-later
|
||||
Summary: Nearly transparent SSL encapsulation for IO::Socket::INET
|
||||
URL: https://metacpan.org/release/%{cpan_name}
|
||||
Source0: https://cpan.metacpan.org/authors/id/S/SU/SULLR/%{cpan_name}-%{cpan_version}.tar.gz
|
||||
Source1: cpanspec.yml
|
||||
# PATCH-FIX-UPSTREAM (bsc1200295) perl-IO-Socket-SSL doesn't follow system "PROFILE=SYSTEM" openSSL ciphers - https://git.centos.org/rpms/perl-IO-Socket-SSL/blob/e0b0ae04f5cdb41b1f29cb7d76c23abba7ac35e9/f/SOURCES/IO-Socket-SSL-2.066-use-system-default-cipher-list.patch
|
||||
Patch0: perl-IO-Socket-SSL-use-system-default-cipher-list.patch
|
||||
BuildArch: noarch
|
||||
BuildRequires: perl
|
||||
BuildRequires: perl-macros
|
||||
@ -89,7 +87,7 @@ Additional documentation can be found in
|
||||
* * IO::Socket::SSL::Utils - Useful functions for certificates etc
|
||||
|
||||
%prep
|
||||
%autosetup -n %{cpan_name}-%{cpan_version} -p1
|
||||
%autosetup -n %{cpan_name}-%{cpan_version}
|
||||
|
||||
find . -type f ! -path "*/t/*" ! -name "*.pl" ! -path "*/bin/*" ! -path "*/script/*" ! -path "*/scripts/*" ! -name "configure" -print0 | xargs -0 chmod 644
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user