From 1e5d92fafe016d879da73af0c68a1742c95241f7 Mon Sep 17 00:00:00 2001
From: Paul Howarth <paul@city-fan.org>
Date: Wed, 22 Oct 2014 18:29:57 +0100
Subject: [PATCH] Update to 2.002

- New upstream release 2.002
  - Fix check for (invalid) IPv4 when validating hostname against certificate;
    do not use inet_aton any longer because it can cause DNS lookups for
    malformed IP (CPAN RT#99448)
  - Update PublicSuffix with latest version from publicsuffix.org - lots of new
    top level domains
  - Add exception to PublicSuffix for s3.amazonaws.com (CPAN RT#99702)
---
 ...t-SSL-2.002-use-system-default-SSL-version.patch |  2 +-
 perl-IO-Socket-SSL.spec                             | 13 +++++++++++--
 sources                                             |  2 +-
 3 files changed, 13 insertions(+), 4 deletions(-)
 rename IO-Socket-SSL-2.001-use-system-default-SSL-version.patch => IO-Socket-SSL-2.002-use-system-default-SSL-version.patch (98%)

diff --git a/IO-Socket-SSL-2.001-use-system-default-SSL-version.patch b/IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
similarity index 98%
rename from IO-Socket-SSL-2.001-use-system-default-SSL-version.patch
rename to IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
index ddcaae8..3ed26c4 100644
--- a/IO-Socket-SSL-2.001-use-system-default-SSL-version.patch
+++ b/IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
@@ -9,7 +9,7 @@
      SSL_verify_callback => undef,
      SSL_verifycn_scheme => undef,  # fallback cn verification
      SSL_verifycn_publicsuffix => undef,  # fallback default list verification
-@@ -2056,7 +2056,7 @@ WARN
+@@ -2058,7 +2058,7 @@ WARN
      $ssl_op |= &Net::SSLeay::OP_SINGLE_DH_USE;
      $ssl_op |= &Net::SSLeay::OP_SINGLE_ECDH_USE if $can_ecdh;
  
diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec
index dff1909..e014772 100644
--- a/perl-IO-Socket-SSL.spec
+++ b/perl-IO-Socket-SSL.spec
@@ -1,5 +1,5 @@
 Name:		perl-IO-Socket-SSL
-Version:	2.001
+Version:	2.002
 Release:	1%{?dist}
 Summary:	Perl library for transparent SSL
 Group:		Development/Libraries
@@ -7,7 +7,7 @@ License:	GPL+ or Artistic
 URL:		http://search.cpan.org/dist/IO-Socket-SSL/
 Source0:	http://search.cpan.org/CPAN/authors/id/S/SU/SULLR/IO-Socket-SSL-%{version}.tar.gz
 Patch0:		IO-Socket-SSL-2.000-use-system-default-cipher-list.patch
-Patch1:		IO-Socket-SSL-2.001-use-system-default-SSL-version.patch
+Patch1:		IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
 BuildRoot:	%{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu)
 BuildArch:	noarch
 BuildRequires:	openssl >= 0.9.8
@@ -100,6 +100,15 @@ rm -rf %{buildroot}
 %{_mandir}/man3/IO::Socket::SSL::Utils.3*
 
 %changelog
+* Wed Oct 22 2014 Paul Howarth <paul@city-fan.org> - 2.002-1
+- Update to 2.002
+  - Fix check for (invalid) IPv4 when validating hostname against certificate;
+    do not use inet_aton any longer because it can cause DNS lookups for
+    malformed IP (CPAN RT#99448)
+  - Update PublicSuffix with latest version from publicsuffix.org - lots of new
+    top level domains
+  - Add exception to PublicSuffix for s3.amazonaws.com (CPAN RT#99702)
+
 * Tue Oct 21 2014 Paul Howarth <paul@city-fan.org> - 2.001-1
 - Update to 2.001
   - Add SSL_OP_SINGLE_(DH|ECDH)_USE to default options to increase PFS security
diff --git a/sources b/sources
index 83b81f1..60aa972 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-9562d344f0b3962b95303fad54277999  IO-Socket-SSL-2.001.tar.gz
+3b0753495a1ff043bd782a6b876d990f  IO-Socket-SSL-2.002.tar.gz