From 5a51ed47fafb91c971373d3b19636891f8f39eea Mon Sep 17 00:00:00 2001 From: CentOS Sources Date: Nov 02 2019 21:59:14 +0000 Subject: import perl-Net-SSLeay-1.55-6.el7 --- diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..b6a6e7e --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +SOURCES/Net-SSLeay-1.55.tar.gz diff --git a/.perl-Net-SSLeay.metadata b/.perl-Net-SSLeay.metadata new file mode 100644 index 0000000..4f900eb --- /dev/null +++ b/.perl-Net-SSLeay.metadata @@ -0,0 +1 @@ +166848ca089f932a69bb89cf7a580ffcc7cc1aae SOURCES/Net-SSLeay-1.55.tar.gz diff --git a/SOURCES/Net-SSLeay-1.55-Add-support-for-the-basic-operations-necessary-to-su.patch b/SOURCES/Net-SSLeay-1.55-Add-support-for-the-basic-operations-necessary-to-su.patch new file mode 100644 index 0000000..adc2bbd --- /dev/null +++ b/SOURCES/Net-SSLeay-1.55-Add-support-for-the-basic-operations-necessary-to-su.patch @@ -0,0 +1,72 @@ +This patch adds EC_KEY_new_by_curve_name(), EC_KEY_free*() and +SSL_CTX_set_tmp_ecdh(). + +This is ported from Net-SSLeay-1.56 to version 1.55. + +diff -up Net-SSLeay-1.55/SSLeay.xs.orig Net-SSLeay-1.55/SSLeay.xs +--- Net-SSLeay-1.55/SSLeay.xs.orig 2016-03-10 10:42:52.267612772 +0100 ++++ Net-SSLeay-1.55/SSLeay.xs 2016-03-10 09:56:18.846933771 +0100 +@@ -4127,6 +4127,23 @@ SSL_CTX_set_tmp_rsa(ctx,rsa) + SSL_CTX * ctx + RSA * rsa + ++#if OPENSSL_VERSION_NUMBER > 0x10000000L ++ ++EC_KEY * ++EC_KEY_new_by_curve_name(nid) ++ int nid ++ ++void ++EC_KEY_free(key) ++ EC_KEY * key ++ ++long ++SSL_CTX_set_tmp_ecdh(ctx,ecdh); ++ SSL_CTX * ctx ++ EC_KEY * ecdh ++ ++#endif ++ + void * + SSL_get_app_data(s) + SSL * s +diff -up Net-SSLeay-1.55/typemap.orig Net-SSLeay-1.55/typemap +--- Net-SSLeay-1.55/typemap.orig 2016-03-10 10:40:49.886151370 +0100 ++++ Net-SSLeay-1.55/typemap 2016-03-10 10:41:37.640941202 +0100 +@@ -6,6 +6,7 @@ SSL_SESSION * T_PTR + SSL * T_PTR + RSA * T_PTR + DH * T_PTR ++EC_KEY * T_PTR + const X509 * T_PTR + const X509_CRL * T_PTR + const X509_REQ * T_PTR +diff -up Net-SSLeay-1.55/lib/Net/SSLeay.pod.orig Net-SSLeay-1.55/lib/Net/SSLeay.pod +--- Net-SSLeay-1.55/lib/Net/SSLeay.pod.orig 2016-03-10 12:23:38.706870006 +0100 ++++ Net-SSLeay-1.55/lib/Net/SSLeay.pod 2016-03-10 12:28:04.280365357 +0100 +@@ -7500,6 +7500,25 @@ Enable or disable FIPS mode in a FIPS ca + + =back + ++=head3 Low level API: EC related functions ++ ++=over ++ ++=item * CTX_set_tmp_ecdh ++ ++TBA ++ ++=item * EC_KEY_free ++ ++TBA ++ ++=item * EC_KEY_new_by_curve_name ++ ++TBA ++ ++=back ++ ++ + =head2 Constants + + There are many openssl constants available in L. You can use them like this: diff --git a/SOURCES/Net-SSLeay-1.55-Added-support-for-tlsv1.1-tlsv1.2-via-Net-SSLeay-ssl.patch b/SOURCES/Net-SSLeay-1.55-Added-support-for-tlsv1.1-tlsv1.2-via-Net-SSLeay-ssl.patch new file mode 100644 index 0000000..10f571e --- /dev/null +++ b/SOURCES/Net-SSLeay-1.55-Added-support-for-tlsv1.1-tlsv1.2-via-Net-SSLeay-ssl.patch @@ -0,0 +1,64 @@ +From 6e4347e65ffaf89316907dff0d56d25a8cfbc514 Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?Petr=20P=C3=ADsa=C5=99?= +Date: Thu, 6 Oct 2016 11:10:28 +0200 +Subject: [PATCH] Added support for tlsv1.1 tlsv1.2 via + $Net::SSLeay::ssl_version +MIME-Version: 1.0 +Content-Type: text/plain; charset=UTF-8 +Content-Transfer-Encoding: 8bit + +Ported to 1.55: + +commit 617881711e375fa3677204ff8ce0647cce563b43 +Author: mikem-guest +Date: Mon May 5 21:37:08 2014 +0000 + + Added support for tlsv1.1 tlsv1.2 via $Net::SSLeay::ssl_version. Patch + from Andreas Mohr. + Improve examples in 'Using other perl modules based on + Net::SSLeay'. Patched by Andreas Mohr. + + git-svn-id: svn://svn.debian.org/svn/net-ssleay@402 008bcf62-b706-0410-a62e-d321f1c85ab9 + +Signed-off-by: Petr Písař +--- + lib/Net/SSLeay.pm | 16 ++++++++++++++++ + 1 file changed, 16 insertions(+) + +diff --git a/lib/Net/SSLeay.pm b/lib/Net/SSLeay.pm +index 6441434..054619d 100644 +--- a/lib/Net/SSLeay.pm ++++ b/lib/Net/SSLeay.pm +@@ -30,6 +30,8 @@ $Net::SSLeay::trace = 0; # Do not change here, use + # 2 = insist on v2 SSL protocol + # 3 = insist on v3 SSL + # 10 = insist on TLSv1 ++# 11 = insist on TLSv1.1 ++# 12 = insist on TLSv1.2 + # 0 or undef = guess (v23) + # + $Net::SSLeay::ssl_version = 0; # don't change here, use +@@ -910,6 +912,20 @@ sub new_x_ctx { + } + elsif ($ssl_version == 3) { $ctx = CTX_v3_new(); } + elsif ($ssl_version == 10) { $ctx = CTX_tlsv1_new(); } ++ elsif ($ssl_version == 11) { ++ unless (exists &Net::SSLeay::CTX_tlsv1_1_new) { ++ warn "ssl_version has been set to 11, but this version of OpenSSL has been compiled without TLSv1.1 support"; ++ return undef; ++ } ++ $ctx = CTX_tlsv1_1_new; ++ } ++ elsif ($ssl_version == 12) { ++ unless (exists &Net::SSLeay::CTX_tlsv1_2_new) { ++ warn "ssl_version has been set to 12, but this version of OpenSSL has been compiled without TLSv1.2 support"; ++ return undef; ++ } ++ $ctx = CTX_tlsv1_2_new; ++ } + else { $ctx = CTX_new(); } + return $ctx; + } +-- +2.7.4 + diff --git a/SOURCES/Net-SSLeay-1.55-Deleted-support-for-SSL_get_tlsa_record_byname.patch b/SOURCES/Net-SSLeay-1.55-Deleted-support-for-SSL_get_tlsa_record_byname.patch new file mode 100644 index 0000000..b63949a --- /dev/null +++ b/SOURCES/Net-SSLeay-1.55-Deleted-support-for-SSL_get_tlsa_record_byname.patch @@ -0,0 +1,18 @@ +diff -up Net-SSLeay-1.55/SSLeay.xs.orig Net-SSLeay-1.55/SSLeay.xs +--- Net-SSLeay-1.55/SSLeay.xs.orig 2017-02-15 12:32:41.981371128 +0100 ++++ Net-SSLeay-1.55/SSLeay.xs 2017-02-15 12:32:41.985371110 +0100 +@@ -4992,14 +4992,5 @@ SSL_export_keying_material(ssl, outlen, + + #endif + +-#if OPENSSL_VERSION_NUMBER >= 0x10002000L && !defined(OPENSSL_NO_DANE) +- +-void +-SSL_get_tlsa_record_byname(name, port, type); +- char * name +- int port +- int type +- +-#endif + + #define REM_EOF "/* EOF - SSLeay.xs */" diff --git a/SOURCES/Net-SSLeay-1.55-Removed-test-failing-against-1.0.1h.patch b/SOURCES/Net-SSLeay-1.55-Removed-test-failing-against-1.0.1h.patch new file mode 100644 index 0000000..4b38a7b --- /dev/null +++ b/SOURCES/Net-SSLeay-1.55-Removed-test-failing-against-1.0.1h.patch @@ -0,0 +1,24 @@ +--- trunk/t/local/33_x509_create_cert.t 2012/04/05 21:37:24 338 ++++ trunk/t/local/33_x509_create_cert.t 2014/06/07 06:03:48 414 +@@ -2,7 +2,7 @@ + + use strict; + use warnings; +-use Test::More tests => 124; ++use Test::More tests => 123; + use Net::SSLeay qw/MBSTRING_ASC MBSTRING_UTF8 EVP_PK_RSA EVP_PKT_SIGN EVP_PKT_ENC/; + use File::Spec; + use utf8; +@@ -104,7 +104,11 @@ + like(my $key_pem4 = Net::SSLeay::PEM_get_string_PrivateKey($pk,"password",$alg2), qr/-----BEGIN (ENCRYPTED|RSA) PRIVATE KEY-----/, "PEM_get_string_PrivateKey+passwd+enc_alg"); + + is(Net::SSLeay::X509_NAME_print_ex($name), "O=Company Name,C=UK,CN=Common name text X509", "X509_NAME_print_ex"); +- is(unpack("H*",Net::SSLeay::X509_NAME_digest($name, $sha1_digest)), "044d7ea7fddced7b9b63799600b9989a63b36819", "X509_NAME_digest"); ++ ++ # 2014-06-06: Sigh, some versions of openssl have this patch, which afffects the results of this test: ++ # https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3009244da47b989c4cc59ba02cf81a4e9d8f8431 ++ # with this patch, the result is "ce83889f1beab8e70aa142e07e94b0ebbd9d59e0" ++# is(unpack("H*",Net::SSLeay::X509_NAME_digest($name, $sha1_digest)), "044d7ea7fddced7b9b63799600b9989a63b36819", "X509_NAME_digest"); + + ok(my $ext_idx = Net::SSLeay::X509_get_ext_by_NID($x509, &Net::SSLeay::NID_ext_key_usage), "X509_get_ext_by_NID"); + ok(my $ext = Net::SSLeay::X509_get_ext($x509, $ext_idx), "X509_get_ext"); diff --git a/SOURCES/Net-SSLeay-1.55-Removed-tests-failing-against-1.0.1n.patch b/SOURCES/Net-SSLeay-1.55-Removed-tests-failing-against-1.0.1n.patch new file mode 100644 index 0000000..1575a47 --- /dev/null +++ b/SOURCES/Net-SSLeay-1.55-Removed-tests-failing-against-1.0.1n.patch @@ -0,0 +1,29 @@ +--- trunk/t/local/33_x509_create_cert.t 2014/06/07 06:03:48 414 ++++ trunk/t/local/33_x509_create_cert.t 2015/06/25 23:03:34 448 +@@ -2,7 +2,7 @@ + + use strict; + use warnings; +-use Test::More tests => 123; ++use Test::More tests => 121; + use Net::SSLeay qw/MBSTRING_ASC MBSTRING_UTF8 EVP_PK_RSA EVP_PKT_SIGN EVP_PKT_ENC/; + use File::Spec; + use utf8; +@@ -99,10 +99,13 @@ + } + ok(my $alg1 = Net::SSLeay::EVP_get_cipherbyname("DES-EDE3-CBC"), "EVP_get_cipherbyname"); + like(my $key_pem3 = Net::SSLeay::PEM_get_string_PrivateKey($pk,"password",$alg1), qr/-----BEGIN (ENCRYPTED|RSA) PRIVATE KEY-----/, "PEM_get_string_PrivateKey+passwd+enc_alg"); +- +- ok(my $alg2 = Net::SSLeay::EVP_get_cipherbyname("DES-EDE3-OFB"), "EVP_get_cipherbyname"); +- like(my $key_pem4 = Net::SSLeay::PEM_get_string_PrivateKey($pk,"password",$alg2), qr/-----BEGIN (ENCRYPTED|RSA) PRIVATE KEY-----/, "PEM_get_string_PrivateKey+passwd+enc_alg"); +- ++ ++# DES-EDE3-OFB has no ASN1 support, detected by changes to do_pk8pkey as of openssl 1.0.1n ++# https://git.openssl.org/?p=openssl.git;a=commit;h=4d9dc0c269be87b92da188df1fbd8bfee4700eb3 ++# this test now fails ++# ok(my $alg2 = Net::SSLeay::EVP_get_cipherbyname("DES-EDE3-OFB"), "EVP_get_cipherbyname"); ++# like(my $key_pem4 = Net::SSLeay::PEM_get_string_PrivateKey($pk,"password",$alg2), qr/-----BEGIN (ENCRYPTED|RSA) PRIVATE KEY-----/, "PEM_get_string_PrivateKey+passwd+enc_alg"); ++ + is(Net::SSLeay::X509_NAME_print_ex($name), "O=Company Name,C=UK,CN=Common name text X509", "X509_NAME_print_ex"); + + # 2014-06-06: Sigh, some versions of openssl have this patch, which afffects the results of this test: diff --git a/SPECS/perl-Net-SSLeay.spec b/SPECS/perl-Net-SSLeay.spec new file mode 100644 index 0000000..e574c44 --- /dev/null +++ b/SPECS/perl-Net-SSLeay.spec @@ -0,0 +1,470 @@ +Name: perl-Net-SSLeay +Version: 1.55 +Release: 6%{?dist} +Summary: Perl extension for using OpenSSL +Group: Development/Libraries +License: OpenSSL +URL: http://search.cpan.org/dist/Net-SSLeay/ +Source0: http://search.cpan.org/CPAN/authors/id/M/MI/MIKEM/Net-SSLeay-%{version}.tar.gz +# Add ECDHE support, in upstream 1.56, bug #1316379 +Patch0: Net-SSLeay-1.55-Add-support-for-the-basic-operations-necessary-to-su.patch +# Recognize Net::SSLeay::ssl_version values for TLSv1.1 and TLSv1.2, +# bug #1335028, fixed in 1.59 +Patch1: Net-SSLeay-1.55-Added-support-for-tlsv1.1-tlsv1.2-via-Net-SSLeay-ssl.patch +# Deleted support for SSL_get_tlsa_record_byname, it is not included in +# OpenSSL git master, bug# 1422435, fixed in 1.56 +Patch2: Net-SSLeay-1.55-Deleted-support-for-SSL_get_tlsa_record_byname.patch +# Removed a test which fails due to changes in openssl 1.0.1h and later, +# fixed in 1.64 +Patch3: Net-SSLeay-1.55-Removed-test-failing-against-1.0.1h.patch +# Removed tests which fails due to changes in openssl 1.0.1n and later, +# fixed in 1.70 +Patch4: Net-SSLeay-1.55-Removed-tests-failing-against-1.0.1n.patch +BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu) +BuildRequires: openssl, openssl-devel +# =========== Module Build =========================== +BuildRequires: perl(Cwd) +BuildRequires: perl(ExtUtils::MakeMaker) +BuildRequires: perl(File::Path) +BuildRequires: perl(lib) +# =========== Module Runtime ========================= +BuildRequires: perl(AutoLoader) +BuildRequires: perl(Carp) +BuildRequires: perl(Exporter) +BuildRequires: perl(MIME::Base64) +BuildRequires: perl(Socket) +BuildRequires: perl(XSLoader) +# =========== Test Suite ============================= +BuildRequires: perl(File::Spec) +BuildRequires: perl(IO::Handle) +BuildRequires: perl(Test::Exception) +# Test::Kwalitee => Module::CPANTS::Analyze => Net::HTTP => IO::Socket::SSL => Net::SSLeay +# Net::SSLeay in RHEL-7 cannot BR: Test::Kwalitee from EPEL-7 +%if 0%{!?perl_bootstrap:1} && 0%{?rhel} < 7 +BuildRequires: perl(Test::Kwalitee) +%endif +BuildRequires: perl(Test::More) +BuildRequires: perl(Test::NoWarnings) +BuildRequires: perl(Test::Pod) +BuildRequires: perl(Test::Pod::Coverage) +BuildRequires: perl(Test::Warn) +BuildRequires: perl(threads) +Requires: perl(:MODULE_COMPAT_%(eval "`perl -V:version`"; echo $version)) +Requires: perl(MIME::Base64) +Requires: perl(XSLoader) + +# Don't "provide" private Perl libs or the redundant unversioned perl(Net::SSLeay) provide +%global __provides_exclude ^(perl\\(Net::SSLeay\\)$|SSLeay\\.so) + +%description +This module offers some high level convenience functions for accessing +web pages on SSL servers (for symmetry, same API is offered for +accessing http servers, too), a sslcat() function for writing your own +clients, and finally access to the SSL API of SSLeay/OpenSSL package +so you can write servers or clients for more complicated applications. + +%prep +%setup -q -n Net-SSLeay-%{version} +%patch0 -p1 +%patch1 -p1 +%patch2 -p1 +%patch3 -p1 +%patch4 -p1 + +# Fix permissions in examples to avoid bogus doc-file dependencies +chmod -c 644 examples/* + +# Remove redundant unversioned provide if we don't have rpm 4.9 or later +%global provfilt /bin/sh -c "%{__perl_provides} | grep -Fvx 'perl(Net::SSLeay)'" +%define __perl_provides %{provfilt} + +%build +PERL_MM_USE_DEFAULT=1 perl Makefile.PL \ + INSTALLDIRS=vendor \ + OPTIMIZE="%{optflags}" +make %{?_smp_mflags} + +%install +rm -rf %{buildroot} +make pure_install DESTDIR=%{buildroot} +find %{buildroot} -type f -name .packlist -exec rm -f {} ';' +find %{buildroot} -type f -name '*.bs' -empty -exec rm -f {} ';' +%{_fixperms} %{buildroot} + +# Remove script we don't want packaged +rm -f %{buildroot}%{perl_vendorarch}/Net/ptrtstrun.pl + +%check +make test + +%clean +rm -rf %{buildroot} + +%files +%doc Changes Credits QuickRef README examples/ +%{perl_vendorarch}/auto/Net/ +%dir %{perl_vendorarch}/Net/ +%{perl_vendorarch}/Net/SSLeay/ +%{perl_vendorarch}/Net/SSLeay.pm +%doc %{perl_vendorarch}/Net/SSLeay.pod +%{_mandir}/man3/Net::SSLeay.3pm* +%{_mandir}/man3/Net::SSLeay::Handle.3pm* + +%changelog +* Wed Feb 15 2017 Jitka Plesnikova - 1.55-6 +- Deleted support for SSL_get_tlsa_record_byname (bug #1422435) +- Removed tests which fails due to changes openssl 1.0.1h and later + +* Thu Oct 06 2016 Petr Pisar - 1.55-5 +- Allow to specify 1.1 and 1.2 TLS protocol versions (bug #1335028) + +* Thu Mar 10 2016 Jitka Plesnikova - 1.55-4 +- Add ECDHE support (bug #1316379) + +* Fri Jan 24 2014 Daniel Mach - 1.55-3 +- Mass rebuild 2014-01-24 + +* Fri Dec 27 2013 Daniel Mach - 1.55-2 +- Mass rebuild 2013-12-27 + +* Sat Jun 8 2013 Paul Howarth - 1.55-1 +- update to 1.55 + - added support for TLSV1_1 and TLSV1_2 methods with SSL_CTX_tlsv1_1_new(), + SSL_CTX_tlsv1_2_new(), TLSv1_1_method() and TLSv1_2_method(), where + available in the underlying openssl + - added CRL support functions X509_CRL_get_ext(), X509_CRL_get_ext_by_NID(), + X509_CRL_get_ext_count() + - fixed a problem that could cause content with a value of '0' to be + incorrectly encoded by do_httpx3 and friends (CPAN RT#85417) + - added support for SSL_get_tlsa_record_byname() required for DANE support in + openssl-1.0.2 and later + - testing with openssl-1.0.2-stable-SNAP-20130521 + - added X509_NAME_new and X509_NAME_hash + +* Sat Mar 23 2013 Paul Howarth - 1.54-1 +- update to 1.54 + - added support for SSL_export_keying_material where present (i.e. in OpenSSL + 1.0.1 and later) + - changed t/handle/external/50_external.t to use www.airspayce.com instead of + perldition.org, who no longer have an https server + - patch to fix a crash: P_X509_get_crl_distribution_points on an X509 + certificate with values in the CDP extension that do not have an ia5 string + would cause a segmentation fault when accessed + - change in t/local/32_x509_get_cert_info.t to not use + Net::SSLeay::ASN1_INTEGER_get, since it works differently on 32 and 64 bit + platforms + - updated author and distribution location details to airspayce.com + - improvement to test 07_sslecho.t so that if set_cert_and_key fails we can + tell why + +* Thu Feb 14 2013 Fedora Release Engineering - 1.52-2 +- rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild + +* Wed Jan 9 2013 Paul Howarth - 1.52-1 +- update to 1.52 + - rebuild package with gnu format tar, to prevent problems with unpacking on + other systems such as old Solaris + +* Fri Dec 14 2012 Paul Howarth - 1.51-1 +- update to 1.51 + - fixed a problem where SSL_set_SSL_CTX is not available with + OpenSSL < 0.9.8f (CPAN RT#81940) +- fix bogus date in spec changelog + +* Thu Dec 13 2012 Paul Howarth - 1.50-1 +- update to 1.50 + - fixed a problem where t/handle/external/50_external.t would crash if any of + the test sites were not contactable + - now builds on VMS, added README.VMS + - fixed a few compiler warnings in SSLeay.xs; most of them are just + signed/unsigned pointer mismatches but there is one that actually fixes + returning what would be an arbitrary value off the stack from + get_my_thread_id if it happened to be called in a non-threaded build + - added SSL_set_tlsext_host_name, SSL_get_servername, SSL_get_servername_type, + SSL_CTX_set_tlsext_servername_callback for server side Server Name + Indication (SNI) support + - fixed a problem with C++ comments preventing builds on AIX and HPUX + - perdition.org not available for tests, changed to www.open.com.au + - added SSL_FIPS_mode_set + - improvements to test suite so it succeeds with and without FIPS mode + enabled + - added documentation, warning not to pass UTF-8 data in the content + argument to post_https + +* Tue Sep 25 2012 Paul Howarth - 1.49-1 +- update to 1.49 + - fixed problem where on some platforms test t/local/07_tcpecho.t would bail + out if it could not bind port 1212; it now tries a number of ports to bind + to until successful + - improvements to unsigned casting + - improvements to Net::SSLeay::read to make it easier to use with + non-blocking IO: it modifies Net::SSLeay::read() to return the result from + SSL_read() as the second return value, if Net::SSLeay::read() is called in + list context (its behavior should be unchanged if called in scalar or void + context) + - fixed a problem where t/local/kwalitee.t fails with + Module::CPANTS::Analyse 0.86 + - fixed a number of typos + - fixed a compiler warning from Compiling with gcc-4.4 and -Wall + - Fixed problems with get_https4: documentation was wrong, $header_ref was + not correctly set and $server_cert was not returned + - fixed a problem that could cause a Perl exception about no blength method + on undef (CPAN RT#79309) + - added documentation about how to mitigate various SSL/TLS vulnerabilities + - SSL_MODE_* are now available as constants +- drop upstreamed pod encoding patch + +* Mon Aug 20 2012 Paul Howarth - 1.48-6 +- fix POD encoding (CPAN RT#78281) +- classify buildreqs by usage +- BR:/R: perl(XSLoader) + +* Mon Aug 13 2012 Petr Pisar - 1.48-5 +- specify all dependencies + +* Fri Jul 20 2012 Fedora Release Engineering - 1.48-4 +- rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild + +* Tue Jul 10 2012 Petr Pisar - 1.48-3 +- perl 5.16 re-rebuild of bootstrapped packages + +* Wed Jun 13 2012 Petr Pisar - 1.48-2 +- perl 5.16 rebuild + +* Wed Apr 25 2012 Paul Howarth - 1.48-1 +- update to 1.48 + - removed unneeded Debian_CPANTS.txt from MANIFEST + - fixed incorrect documentation about the best way to call CTX_set_options + - fixed problem that caused "Undefined subroutine utf8::encode" in + t/local/33_x509_create_cert.t (on perl 5.6.2) + - in examples and pod documentation, changed #!/usr/local/bin/perl + to #!/usr/bin/perl + - t/local/06_tcpecho.t now tries a number of ports to bind to until + successful +- no longer need to fix shellbangs in examples + +* Thu Apr 19 2012 Paul Howarth - 1.47-3 +- simplify Test::Kwalitee conditional + +* Thu Apr 19 2012 Marcela Mašláňová - 1.47-2 +- make module Kwalitee conditional + +* Wed Apr 4 2012 Paul Howarth - 1.47-1 +- update to 1.47 + - fixed overlong lines and spelling errors in pod + - fixed extra "garbage" files in 1.46 tarball + - fixed incorrect fail reports on some 64 bit platforms + - fix to avoid FAIL reports from cpantesters with missing openssl + - use my_snprintf from ppport.h to prevent link failures with perl 5.8 and + earlier when compiled with MSVC + +* Tue Apr 3 2012 Paul Howarth - 1.46-1 +- update to 1.46 (see Changes file for details) +- BR: openssl as well as openssl-devel, needed for building +- no longer need help to find openssl +- upstream no longer shipping TODO +- drop %%defattr, redundant since rpm 4.4 + +* Sat Feb 25 2012 Paul Howarth - 1.45-1 +- update to 1.45 (see Changes file for full details) + - added thread safety and dynamic locking, which should complete thread + safety work, making Net::SSLeay completely thread-safe + - lots of improved documentation +- BR: perl(Test::Pod::Coverage) +- install Net/SSLeay.pod as %%doc + +* Thu Jan 12 2012 Paul Howarth - 1.42-2 +- use DESTDIR rather than PERL_INSTALL_ROOT +- use %%{_fixperms} macro rather than our own chmod incantation +- BR: perl(AutoLoader), perl(Exporter), perl(Socket) + +* Mon Oct 3 2011 Paul Howarth - 1.42-1 +- update to 1.42 + - fixed incorrect documentation of how to enable CRL checking + - fixed incorrect letter in Sebastien in Credits + - changed order of the Changes file to be reverse chronological + - fixed a compile error when building on Windows with MSVC6 +- drop UTF8 patch, no longer needed + +* Sun Sep 25 2011 Paul Howarth - 1.41-1 +- update to 1.41 + - fixed incorrect const signatures for 1.0 that were causing warnings; now + have clean compile with 0.9.8a through 1.0.0 +- BR: perl(Carp) + +* Fri Sep 23 2011 Paul Howarth - 1.40-1 +- update to 1.40 + - fixed incorrect argument type in call to SSL_set1_param + - fixed a number of issues with pointer sizes; removed redundant pointer cast + tests from t/ + - added Perl version requirements to SSLeay.pm + +* Wed Sep 21 2011 Paul Howarth - 1.39-1 +- update to 1.39 + - downgraded Module::Install to 0.93 since 1.01 was causing problems in the + Makefile + +* Fri Sep 16 2011 Paul Howarth - 1.38-1 +- update to 1.38 + - fixed a problem with various symbols that only became available in OpenSSL + 0.9.8 such as X509_VERIFY_PARAM and X509_POLICY_NODE, causing build + failures with older versions of OpenSSL (CPAN RT#71013) + +* Fri Sep 16 2011 Paul Howarth - 1.37-1 +- update to 1.37 + - added X509_get_fingerprint + - added support for SSL_CTX_set1_param, SSL_set1_param and selected + X509_VERIFY_PARAM_* OBJ_* functions + - fixed the prototype for randomize() + - fixed an uninitialized value warning in $Net::SSLeay::proxyauth + - allow net-ssleay to compile if SSLV2 is not present + - fixed a problem where sslcat (and possibly other functions) expect RSA + keys and will not load DSA keys for client certificates + - removed SSL_CTX_v2_new and SSLv2_method() for OpenSSL 1.0 and later + - added CTX_use_PKCS12_file +- this release by MIKEM => update source URL + +* Tue Jul 19 2011 Petr Sabata - 1.36-7 +- Perl mass rebuild + +* Thu Jul 14 2011 Paul Howarth - 1.36-6 +- BR: perl(Test::Kwalitee) if we're not bootstrapping +- explicitly BR: pkgconfig +- use a patch rather than a scripted iconv to fix the character encoding +- modernize provides filter +- stop running the tests in verbose mode +- nobody else likes macros for commands + +* Wed Jul 13 2011 Iain Arnell - 1.36-5 +- drop obsolete BRs Array::Compare, Sub::Uplevel, Tree::DAG_Node + +* Tue Feb 08 2011 Fedora Release Engineering - 1.36-4 +- rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild + +* Tue Dec 21 2010 Marcela Maslanova - 1.36-3 +- rebuild to fix problems with vendorarch/lib (#661697) + +* Tue May 04 2010 Marcela Maslanova - 1.36-2 +- mass rebuild with perl-5.12.0 + +* Sun Jan 31 2010 Paul Howarth - 1.36-1 +- update to 1.36 (see Changes for details) +- drop svn patches + +* Mon Dec 7 2009 Stepan Kasal - 1.35-8 +- rebuild against perl 5.10.1 + +* Sat Aug 22 2009 Paul Howarth - 1.35-7 +- update to svn trunk (rev 252), needed due to omission of MD2 functionality + from OpenSSL 1.0.0 (CPAN RT#48916) + +* Fri Aug 21 2009 Tomas Mraz - 1.35-6 +- rebuilt with new openssl + +* Sun Jul 26 2009 Fedora Release Engineering - 1.35-5 +- rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild + +* Sun Mar 8 2009 Paul Howarth - 1.35-4 +- filter out unwanted provides for perl shared objects +- run tests in verbose mode + +* Thu Feb 26 2009 Fedora Release Engineering - 1.35-3 +- rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild + +* Sat Jan 17 2009 Tomas Mraz - 1.35-2 +- rebuild with new openssl + +* Mon Jul 28 2008 Paul Howarth - 1.35-1 +- update to 1.35 +- drop flag and patch for enabling/disabling external tests - patch now upstream +- external hosts patch no longer needed as we don't do external tests +- filter out unversioned provide for perl(Net::SSLeay) +- use the distro openssl flags rather than guessing them + +* Wed Feb 27 2008 Tom "spot" Callaway - 1.32-5 +- rebuild for perl 5.10 (again) + +* Tue Feb 19 2008 Fedora Release Engineering - 1.32-4 +- autorebuild for GCC 4.3 + +* Thu Jan 31 2008 Tom "spot" Callaway - 1.32-3 +- rebuild for new perl + +* Wed Dec 5 2007 Paul Howarth - 1.32-2 +- rebuild with new openssl + +* Wed Nov 28 2007 Paul Howarth - 1.32-1 +- update to 1.32, incorporate new upstream URLs +- cosmetic spec changes suiting new maintainer's preferences +- fix argument order for find with -depth +- remove patch for CVE-2005-0106, fixed upstream in 1.30 (#191351) + (http://rt.cpan.org/Public/Bug/Display.html?id=19218) +- remove test patch, no longer needed +- re-encode Credits as UTF-8 +- include TODO as %%doc +- add buildreqs perl(Array::Compare), perl(MIME::Base64), perl(Sub::Uplevel), + perl(Test::Exception), perl(Test::NoWarnings), perl(Test::Pod), + perl(Test::Warn), perl(Tree::DAG_Node) +- add patch needed to disable testsuite non-interactively +- run test suite but disable external tests by default; external tests can be + enabled by using rpmbuild --with externaltests +- add patch to change hosts connected to in external tests + +* Fri Nov 16 2007 Parag Nemade - 1.30-7 +- Merge Review (#226272) Spec cleanup + +* Tue Nov 6 2007 Stepan Kasal - 1.30-6 +- fix a typo in description (#231756, #231757) + +* Tue Oct 16 2007 Tom "spot" Callaway - 1.30-5.1 +- correct license tag +- add BR: perl(ExtUtils::MakeMaker) + +* Tue Aug 21 2007 Warren Togami - 1.30-5 +- rebuild + +* Fri Jul 14 2006 Warren Togami - 1.30-4 +- import into FC6 + +* Tue Feb 28 2006 Jose Pedro Oliveira - 1.30-3 +- Rebuild for FC5 (perl 5.8.8). + +* Fri Jan 27 2006 Jose Pedro Oliveira - 1.30-2 +- CVE-2005-0106: patch from Mandriva + http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:023 + +* Sun Jan 15 2006 Ville Skyttä - 1.30-1 +- 1.30. +- Optionally run the test suite during build with "--with tests". + +* Wed Nov 9 2005 Ville Skyttä - 1.26-3 +- Rebuild for new OpenSSL. +- Cosmetic cleanups. + +* Wed Apr 6 2005 Michael Schwendt - 1.26-2 +- rebuilt + +* Mon Dec 20 2004 Ville Skyttä - 0:1.26-1 +- Drop fedora.us release prefix and suffix. + +* Mon Oct 25 2004 Ville Skyttä - 0:1.26-0.fdr.2 +- Convert manual page to UTF-8. + +* Tue Oct 12 2004 Ville Skyttä - 0:1.26-0.fdr.1 +- Update to unofficial 1.26 from Peter Behroozi, adds get1_session(), + enables session caching with IO::Socket::SSL (bug 1859, bug 1860). +- Bring outdated test14 up to date (bug 1859, test suite still not enabled). + +* Sun Jul 11 2004 Ville Skyttä - 0:1.25-0.fdr.4 +- Rename to perl-Net-SSLeay, provide perl-Net_SSLeay for compatibility + with the rest of the world. + +* Wed Jul 7 2004 Ville Skyttä - 0:1.25-0.fdr.3 +- Bring up to date with current fedora.us Perl spec template. +- Include examples in docs. + +* Sun Feb 8 2004 Ville Skyttä - 0:1.25-0.fdr.2 +- Reduce directory ownership bloat. + +* Fri Oct 17 2003 Ville Skyttä - 0:1.25-0.fdr.1 +- First build.