diff --git a/Net-SSLeay-1.58.tar.gz b/Net-SSLeay-1.58.tar.gz deleted file mode 100644 index bed51b4..0000000 --- a/Net-SSLeay-1.58.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:0bdc50c19df545eb2f9e434458ee2b54e97b109315dafb476044b9039e783f56 -size 399353 diff --git a/Net-SSLeay-1.63.tar.gz b/Net-SSLeay-1.63.tar.gz new file mode 100644 index 0000000..73091fd --- /dev/null +++ b/Net-SSLeay-1.63.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:8d127c37264bfd76bcd1e2a5dc745b9459c315380eda64c606cda2f4e2bc1b9d +size 411524 diff --git a/perl-Net-SSLeay.changes b/perl-Net-SSLeay.changes index e3f696e..6438e50 100644 --- a/perl-Net-SSLeay.changes +++ b/perl-Net-SSLeay.changes @@ -1,3 +1,57 @@ +------------------------------------------------------------------- +Fri Jun 6 13:44:06 UTC 2014 - coolo@suse.com + +- updated to 1.63 + 1.63 2014-05-19 + Fixed error in version number in META.yml + + 1.62 2014-05-19 + Improvements to OCSP support: It turns out that some CA (like Verisign) + sign the OCSP response with the CA we have in the trust store and don't + attach this certifcate in the response. But OpenSSL by itself only + considers the certificates included in the response and + SSL_OCSP_response_verify added the certificates in the chain too. + Now, we also add the trusted CA from the store which + signed the lowest chain certificate, at least if we could not verify the + OCSP response without doing it. Patch from Steffen + Ullrich. Thanks. + Fixed some compiler warnings. + + 1.61 2014-05-12 + Changes calloc to Newx and free to Safefree, otherwise there might be + problems because calloc is done from a different memory pool than free (depends + on the build options for perl, but seen on Windows). Patch from Steffen + Ullrich. Thanks. + + + 1.60 2014-05-10 + Fixed a typo in an error message. Patch from gregor herrmann. Thanks. + Fixed a problem with building with openssl that does not support + OCSP. Also fixed some newly introduced warnings + if compiled with -Wall. Patch from Steffen Ullrich. Thanks. + fix build-failure on most Debian architectures: + SSLeay.xs: In function 'XS_Net__SSLeay_OCSP_response_results': + SSLeay.xs:5602:3: error: format not a string literal and no format + arguments. Patch from gregor herrmann. + + + 1.59 2014-05-10 + Fixed local/30_error.t, so that tests do not fail if diagnostics are + enabled. + Fixed error messages about undefined strings used with length or + split. Reported and patched by Peter Heuchert. + Improvements to configuration of OPTIMIZE flags, to prevent overriding + of perls expected optimization flags. Caution: HPUX aCC optimize options are special. + SSL_peek() now returns openssl error code as second item when called in + array context, same as SSL_read. Patch from Andreas Mohr. + Fixed some warnings. + Added support for tlsv1.1 tlsv1.2 via $Net::SSLeay::ssl_version. Patch + from Andreas Mohr. + Improve examples in 'Using other perl modules based on + Net::SSLeay'. Patched by Andreas Mohr. + Added support for OCSP. Patched by Steffen Ullrich. Thanks! + Added missing t/external/ocsp.t + ------------------------------------------------------------------- Sun Feb 9 13:34:34 UTC 2014 - coolo@suse.com @@ -9,11 +63,11 @@ Sun Feb 9 13:34:34 UTC 2014 - coolo@suse.com Fixed crash due to SSL_get_peer_cert_chain incorrectly free'ing the chain after use. Fixed a problem when compiling against openssl where OPENSSL_NO_EC is set. - + 1.57 2014-01-09 Fixed remaining problems with test suite: pod coverage and kwalitee tests are only enabled with RELEASE_TESTING=1 - + 1.56 2014-01-08 Fixed a typo in documentation of BEAST Attack, patched by gregor herrmann. @@ -33,16 +87,16 @@ Sun Feb 9 13:34:34 UTC 2014 - coolo@suse.com Fixed a bug that could cause stack faults: mixed up PUTBACK with SPAGAIN in ssleay_RSA_generate_key_cb_invoke() a final PUTBACK is needed here. A second issue is also fixed: cb->data defaults to &PL_sv_undef but throught the code you do not check - against &PL_sv_undef, just NULL. - To avoid passing the 3rd optional arg at all, do not create it. This fixes all the + against &PL_sv_undef, just NULL. + To avoid passing the 3rd optional arg at all, do not create it. This fixes all the cb->data checks and wrong refcounts on &PL_sv_undef. Patched by Reini Urban. Deleted support for SSL_get_tlsa_record_byname: it is not included in - OpenSSL git master. + OpenSSL git master. ------------------------------------------------------------------- Wed Oct 2 20:26:56 UTC 2013 - dmueller@suse.com -- disable checks on qemu user build (hangs) +- disable checks on qemu user build (hangs) ------------------------------------------------------------------- Wed Jul 3 09:13:30 UTC 2013 - lnussel@suse.de @@ -74,7 +128,7 @@ Wed Jul 3 09:13:30 UTC 2013 - lnussel@suse.de * Improvements to Net::SSLeay::read to make it easier to use with non*blocking IO Added documentation about how to mitigatxe various SSL/TLS vulnerabilities. - * initializes the SSL library at most once. + * initializes the SSL library at most once. * Patch from kmx to protect SSLeay_add_ssl_algorithms from multiple loads and reentrancy in multi*threaded perls. - remove perl-Net-SSLeay-1.36.diff: no obvious nor documented justification @@ -98,7 +152,7 @@ Wed Feb 8 15:53:50 UTC 2012 - vcizek@suse.com Fixed a a compile error when building on Windows with MSVC6. reported and patched by "Andrew J. Savige via RT". 1.41 2011-09-25 - Fixed incorrect const signatures for 1.0 that were causing warnings. + Fixed incorrect const signatures for 1.0 that were causing warnings. Patches provided by "Douglas Christopher Wilson via RT". Now have clean compile with 0.9.8a through 1.0.0. 1.40 2011-09-23 @@ -162,7 +216,7 @@ Sun Dec 20 16:40:19 CET 2009 - jengelh@medozas.de ------------------------------------------------------------------- Fri Jul 25 16:12:21 CEST 2008 - anicka@suse.cz -- update to 1.35 +- update to 1.35 * Added optional support for SSL_set_hello_extension, * Added SSL_SESSION_set_master_key and SSL_get_keyblock_size. * Added all SSL_OP_* options flags present in 0.9.9 @@ -185,12 +239,12 @@ Wed May 14 15:21:19 CEST 2008 - adrian@suse.de ------------------------------------------------------------------- Wed Mar 12 15:14:57 CET 2008 - anicka@suse.cz -- update to 1.32 - * Removed %Filenum_Objects from Net::SSLeay::Handle so +- update to 1.32 + * Removed %Filenum_Objects from Net::SSLeay::Handle so unused handles will be freed. * Use ppport.h. * improved openssl path guessing, forcing openssl path now - * Fixed a problem with X509_get_subjectAltNames not working + * Fixed a problem with X509_get_subjectAltNames not working when the subjectAltNAmes are the first extension. * Fixed incorrect test failure reports in 08_external. * Add parens to function calls in Makefile.PL to prevent @@ -199,12 +253,12 @@ Wed Mar 12 15:14:57 CET 2008 - anicka@suse.cz * Removed build_requires('Test::NoWarnings') from Makefile.PL * Don't let the tests die when something unexpected happens. - fix undefined operation in SSLeay.xs -- add perl-Test-Warn to BuildRequires +- add perl-Test-Warn to BuildRequires ------------------------------------------------------------------- Mon May 7 11:55:28 CEST 2007 - anicka@suse.cz -- add openssl to BuildRequires +- add openssl to BuildRequires ------------------------------------------------------------------- Wed Jan 25 21:39:52 CET 2006 - mls@suse.de @@ -214,7 +268,7 @@ Wed Jan 25 21:39:52 CET 2006 - mls@suse.de ------------------------------------------------------------------- Tue Jan 3 20:46:06 CET 2006 - anicka@suse.cz -- update to 1.30 +- update to 1.30 - remove X509_STORE_CTX_set_flags patch (not neccessary any more) ------------------------------------------------------------------- diff --git a/perl-Net-SSLeay.spec b/perl-Net-SSLeay.spec index 8ae5933..7c69625 100644 --- a/perl-Net-SSLeay.spec +++ b/perl-Net-SSLeay.spec @@ -19,7 +19,7 @@ %bcond_with test Name: perl-Net-SSLeay -Version: 1.58 +Version: 1.63 Release: 0 %define cpan_name Net-SSLeay Summary: Perl extension for using OpenSSL