[perl-IO-Socket-SSL] Update to 1.967

Paul Howarth pghmcfc at fedoraproject.org
Fri Feb 7 16:02:22 UTC 2014 

commit 961f407eff217ef1ccdaf50a949215bccaa1cc85
Author: Paul Howarth <paul at city-fan.org>
Date:   Fri Feb 7 15:58:48 2014 +0000

    Update to 1.967
    
    - New upstream release 1.967
      - Verify the hostname inside a certificate by default with a superset of
        common verification schemes instead of not verifying identity at all; for
        now it will only complain if name verification failed but in the future it
        will fail certificate verification, forcing you to set the expected
        SSL_verifycn_name if you want to accept the certificate
      - New option SSL_fingerprint and new methods get_fingerprint and
        get_fingerprint_bin; together they can be used to selectively accept
        specific certificates that would otherwise fail verification, like
        self-signed, outdated or from unknown CAs
      - Utils:
        - Default RSA key length 2048
        - Digest algorithm to sign certificate in CERT_create can be given;
          defaults to SHA-256
        - CERT_create can now issue non-CA self-signed certificate
        - CERT_create add some more useful constraints to certificate
      - Spelling fixes

 perl-IO-Socket-SSL.spec |   22 +++++++++++++++++++++-
 sources                 |    2 +-
 2 files changed, 22 insertions(+), 2 deletions(-)
---
diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec
index e82f9a0..6f3f63f 100644
--- a/perl-IO-Socket-SSL.spec
+++ b/perl-IO-Socket-SSL.spec
@@ -1,5 +1,5 @@
 Name:		perl-IO-Socket-SSL
-Version:	1.966
+Version:	1.967
 Release:	1%{?dist}
 Summary:	Perl library for transparent SSL
 Group:		Development/Libraries
@@ -23,6 +23,7 @@ BuildRequires:	perl(Net::SSLeay) >= 1.46
 BuildRequires:	perl(Scalar::Util)
 BuildRequires:	perl(Socket)
 BuildRequires:	perl(Socket6)
+BuildRequires:	perl(Test::More)
 BuildRequires:	procps
 # Use IO::Socket::IP for IPv6 support where available, else IO::Socket::INET6
 %if 0%{?fedora} > 15 || 0%{?rhel} > 6
@@ -71,6 +72,25 @@ rm -rf %{buildroot}
 %{_mandir}/man3/IO::Socket::SSL::Utils.3pm*
 
 %changelog
+* Fri Feb  7 2014 Paul Howarth <paul at city-fan.org> - 1.967-1
+- Update to 1.967
+  - Verify the hostname inside a certificate by default with a superset of
+    common verification schemes instead of not verifying identity at all; for
+    now it will only complain if name verification failed but in the future it
+    will fail certificate verification, forcing you to set the expected
+    SSL_verifycn_name if you want to accept the certificate
+  - New option SSL_fingerprint and new methods get_fingerprint and
+    get_fingerprint_bin; together they can be used to selectively accept
+    specific certificates that would otherwise fail verification, like
+    self-signed, outdated or from unknown CAs
+  - Utils:
+    - Default RSA key length 2048
+    - Digest algorithm to sign certificate in CERT_create can be given;
+      defaults to SHA-256
+    - CERT_create can now issue non-CA self-signed certificate
+    - CERT_create add some more useful constraints to certificate
+  - Spelling fixes
+
 * Wed Jan 22 2014 Paul Howarth <paul at city-fan.org> - 1.966-1
 - Update to 1.966
   - Fixed bug introduced in 1.964 - disabling TLSv1_2 no longer worked by
diff --git a/sources b/sources
index e2cccd4..5e1dad4 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-af82b20feb6633f1a707d40dbbf7f590  IO-Socket-SSL-1.966.tar.gz
+78b84d50e5a04c19b1d3835514dece95  IO-Socket-SSL-1.967.tar.gz

More information about the scm-commits mailing list