Update to 2.002

- New upstream release 2.002 - Fix check for (invalid) IPv4 when validating hostname against certificate; do not use inet_aton any longer because it can cause DNS lookups for malformed IP (CPAN RT#99448) - Update PublicSuffix with latest version from publicsuffix.org - lots of new top level domains - Add exception to PublicSuffix for s3.amazonaws.com (CPAN RT#99702)
2014-10-22 18:29:57 +01:00 · 2014-10-22 18:29:57 +01:00 · 1e5d92fafe
commit 1e5d92fafe
parent 3c5f052538
3 changed files with 13 additions and 4 deletions
--- a/IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
+++ b/IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
@ -9,7 +9,7 @@
     SSL_verify_callback => undef,
     SSL_verifycn_scheme => undef,  # fallback cn verification
     SSL_verifycn_publicsuffix => undef,  # fallback default list verification
-@@ -2056,7 +2056,7 @@ WARN
+@@ -2058,7 +2058,7 @@ WARN
     $ssl_op |= &Net::SSLeay::OP_SINGLE_DH_USE;
     $ssl_op |= &Net::SSLeay::OP_SINGLE_ECDH_USE if $can_ecdh;
--- a/perl-IO-Socket-SSL.spec
+++ b/perl-IO-Socket-SSL.spec
@ -1,5 +1,5 @@
 Name:		perl-IO-Socket-SSL
-Version:	2.001
+Version:	2.002
 Release:	1%{?dist}
 Summary:	Perl library for transparent SSL
 Group:		Development/Libraries
@ -7,7 +7,7 @@ License:	GPL+ or Artistic
 URL:		http://search.cpan.org/dist/IO-Socket-SSL/
 Source0:	http://search.cpan.org/CPAN/authors/id/S/SU/SULLR/IO-Socket-SSL-%{version}.tar.gz
 Patch0:		IO-Socket-SSL-2.000-use-system-default-cipher-list.patch
-Patch1:		IO-Socket-SSL-2.001-use-system-default-SSL-version.patch
+Patch1:		IO-Socket-SSL-2.002-use-system-default-SSL-version.patch
 BuildRoot:	%{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu)
 BuildArch:	noarch
 BuildRequires:	openssl >= 0.9.8
@ -100,6 +100,15 @@ rm -rf %{buildroot}
 %{_mandir}/man3/IO::Socket::SSL::Utils.3*
 %changelog
 * Wed Oct 22 2014 Paul Howarth <paul@city-fan.org> - 2.002-1
 - Update to 2.002
  - Fix check for (invalid) IPv4 when validating hostname against certificate;
    do not use inet_aton any longer because it can cause DNS lookups for
    malformed IP (CPAN RT#99448)
  - Update PublicSuffix with latest version from publicsuffix.org - lots of new
    top level domains
  - Add exception to PublicSuffix for s3.amazonaws.com (CPAN RT#99702)
 * Tue Oct 21 2014 Paul Howarth <paul@city-fan.org> - 2.001-1
 - Update to 2.001
  - Add SSL_OP_SINGLE_(DH|ECDH)_USE to default options to increase PFS security
--- a/2
+++ b/2
@ -1 +1 @@
-9562d344f0b3962b95303fad54277999  IO-Socket-SSL-2.001.tar.gz
+3b0753495a1ff043bd782a6b876d990f  IO-Socket-SSL-2.002.tar.gz
`@ -1 +1 @@`
	`9562d344f0b3962b95303fad54277999 IO-Socket-SSL-2.001.tar.gz`	`3b0753495a1ff043bd782a6b876d990f IO-Socket-SSL-2.002.tar.gz`