[perl-IO-Socket-SSL] Update to 1.967
Paul Howarth
pghmcfc at fedoraproject.org
Fri Feb 7 16:02:22 UTC 2014
commit 961f407eff217ef1ccdaf50a949215bccaa1cc85
Author: Paul Howarth <paul at city-fan.org>
Date: Fri Feb 7 15:58:48 2014 +0000
Update to 1.967
- New upstream release 1.967
- Verify the hostname inside a certificate by default with a superset of
common verification schemes instead of not verifying identity at all; for
now it will only complain if name verification failed but in the future it
will fail certificate verification, forcing you to set the expected
SSL_verifycn_name if you want to accept the certificate
- New option SSL_fingerprint and new methods get_fingerprint and
get_fingerprint_bin; together they can be used to selectively accept
specific certificates that would otherwise fail verification, like
self-signed, outdated or from unknown CAs
- Utils:
- Default RSA key length 2048
- Digest algorithm to sign certificate in CERT_create can be given;
defaults to SHA-256
- CERT_create can now issue non-CA self-signed certificate
- CERT_create add some more useful constraints to certificate
- Spelling fixes
perl-IO-Socket-SSL.spec | 22 +++++++++++++++++++++-
sources | 2 +-
2 files changed, 22 insertions(+), 2 deletions(-)
---
diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec
index e82f9a0..6f3f63f 100644
--- a/perl-IO-Socket-SSL.spec
+++ b/perl-IO-Socket-SSL.spec
@@ -1,5 +1,5 @@
Name: perl-IO-Socket-SSL
-Version: 1.966
+Version: 1.967
Release: 1%{?dist}
Summary: Perl library for transparent SSL
Group: Development/Libraries
@@ -23,6 +23,7 @@ BuildRequires: perl(Net::SSLeay) >= 1.46
BuildRequires: perl(Scalar::Util)
BuildRequires: perl(Socket)
BuildRequires: perl(Socket6)
+BuildRequires: perl(Test::More)
BuildRequires: procps
# Use IO::Socket::IP for IPv6 support where available, else IO::Socket::INET6
%if 0%{?fedora} > 15 || 0%{?rhel} > 6
@@ -71,6 +72,25 @@ rm -rf %{buildroot}
%{_mandir}/man3/IO::Socket::SSL::Utils.3pm*
%changelog
+* Fri Feb 7 2014 Paul Howarth <paul at city-fan.org> - 1.967-1
+- Update to 1.967
+ - Verify the hostname inside a certificate by default with a superset of
+ common verification schemes instead of not verifying identity at all; for
+ now it will only complain if name verification failed but in the future it
+ will fail certificate verification, forcing you to set the expected
+ SSL_verifycn_name if you want to accept the certificate
+ - New option SSL_fingerprint and new methods get_fingerprint and
+ get_fingerprint_bin; together they can be used to selectively accept
+ specific certificates that would otherwise fail verification, like
+ self-signed, outdated or from unknown CAs
+ - Utils:
+ - Default RSA key length 2048
+ - Digest algorithm to sign certificate in CERT_create can be given;
+ defaults to SHA-256
+ - CERT_create can now issue non-CA self-signed certificate
+ - CERT_create add some more useful constraints to certificate
+ - Spelling fixes
+
* Wed Jan 22 2014 Paul Howarth <paul at city-fan.org> - 1.966-1
- Update to 1.966
- Fixed bug introduced in 1.964 - disabling TLSv1_2 no longer worked by
diff --git a/sources b/sources
index e2cccd4..5e1dad4 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-af82b20feb6633f1a707d40dbbf7f590 IO-Socket-SSL-1.966.tar.gz
+78b84d50e5a04c19b1d3835514dece95 IO-Socket-SSL-1.967.tar.gz
More information about the scm-commits
mailing list