Paul's Blog Entries for May 2014
Thursday 1st May 2014
Fedora Project
Updated perl-Cpanel-JSON-XS to 3.0104 in EPEL-7 as per the current Rawhide package
Updated perl-Digest-MD2 to 2.04 in EPEL-7 as per the current Rawhide package
Updated perl-Perl-Critic (1.121) in Rawhide to address a couple of FTBFS issues:
xt/author/82_optional_modules.t shouldn't be trying to use Readonly::XS (Bug #1092921)
Run the author tests using "Build test" rather than "Build authortest" because the latter ends up deleting META.yml and that causes the kwalitee test to fail
Local Packages
Updated perl-Perl-Critic as per the Fedora version
Friday 2nd May 2014
Fedora Project
Updated perl-Cpanel-JSON-XS to 3.0104 in F-20 and EPEL-6 as per the Rawhide and EPEL-7 versions, now that Compress::LFZ is available there
Updated perl-Module-Build-Tiny to 0.036 in Rawhide and EPEL-7:
Add --jobs argument to MBT
Add xs directory to include list
Updated perl-Perl-Critic (1.121) in Rawhide to add the upstream fix for Build.PL to work with the current toolchain, and reinstate use of "Build authortest"
Branched and built perl-File-DesktopEntry (0.08) for EPEL-6
Branched and built perl-File-MimeInfo (0.25) for EPEL-6
Local Packages
Updated perl-Module-Build-Tiny to 0.036 as per the Fedora version
Updated perl-Perl-Critic as per the Fedora version
Updated perl-Perl-MinimumVersion to 1.35:
'state' requires Perl 5.10.0, even if you don't also see "use feature 'state'", because you can also write "use 5.010" to enable 'state' (CPAN RT#67626)
Dropped the rule that said "use base 'Exporter'" should make a dependency on Perl 5.008+ (CPAN RT#89173)
Improved the fix for CPAN RT#95023
Sunday 4th May 2014
Fedora Project
Updated perl-DateTime-Format-Strptime to 1.55 in Rawhide:
If diagnostic is true for an object, it will now use Test::More::diag() under the test harness rather than printing to STDOUT
The %z specifier will now parse UTC offsets with a colon like "+01:00" (CPAN RT#91458)
Made the regexes to parse day and months abbreviations and names a little more specific; as it stood, they tended to eat up more non-word characters than they should, so a pattern like '%a%m%d_%Y' broke on a date like 'Fri0215_2013' - the day name would be parsed as 'Fri02' and the month would not be parsed at all (CPAN RT#93863, CPAN RT#93865)
- Updated `perl-IO-Socket-SSL to 1.983 in Rawhide:
Fix public suffix handling: ajax.googleapis.com should be ok even if googleapis.com is in public suffix list (e.g. check one level less) (CPAN RT#95317)
usable_ca.t - update fingerprints after heartbleed attack
usable_ca.t - make sure we have usable CA for tested hosts in CA store
Local Packages
Updated perl-DateTime to 1.09:
A call to ->truncate( to => 'week' ) could fail but leave the object changed (CPAN RT#93347)
The value of ->jd() is now calculated based on ->mjd() instead of the other way around; this reduces floating point errors a bit when calculating MJD, and should have a negligible impact on the accuracy of JD (CPAN RT#93347)
Attempting to construct a DateTime object with a year ≥ 5000 and a time zone other than floating or DST now issues a warning; this warning may go away once DateTime::TimeZone is made much faster (CPAN RT#92655)
- Updated `perl-IO-Socket-SSL to 1.983 as per the Fedora version
Updated perl-MetaCPAN-Client to 1.003000:
- Add proper POD fetching from module/file objects
GH #1: Switch from JSON.pm to JSON::MaybeXS
GH #2: Remove incorrect and unnecessary check for class names
Provide "ua" attribute in the main object to override user agent
Add some use-case examples (examples directory)
Add 'releases' method to Author (not official so no docs yet)
GH #4: Use example with hyphen
Related to GH #4, use Data::Printer instead of shotened name "DDP"
Updated perl-Params-Validate to 1.09:
A call to validate() where the spec was a reference to a Readonly hash would segfault (CPAN RT#80572)
When using the XS implementation, attempting to validate parameters with tainted values would cause an "Insecure dependency in eval_sv() while running with -T switch" exception from Perl if the validation failed; this is fixed, but only for Perl 5.14+ - older Perls do not include the necessary XS API (CPAN RT#70174)
Fixed some potential segfaults from the XS implementation (CPAN RT#50412); however, the XS code in general is pretty crufty and tends to assume that values which could be NULL aren't
Fixed bad example of state() in POD (CPAN RT#80250)
Monday 5th May 2014
Fedora Project
Updated perl-Exception-Class to 1.38 in Rawhide:
Local Packages
Updated perl-DateTime to 1.10:
Some tests added in 1.09 would fail on a Perl without a 64-bit gmtime() (CPAN RT#95345)
Updated perl-Devel-StackTrace to 1.32:
Added a filter_frames_early option to filter frames before arguments are stringified (PR #4)
Updated perl-Exception-Class to 1.38 as per the Fedora version
Tuesday 6th May 2014
Fedora Project
Updated perl-IPC-Run (0.92) in Rawhide to address intermittent test failures (CPAN RT#20105, RH BZ#1094395)
Updated perl-Path-Tiny to 0.054 in Rawhide and EPEL-7:
The 'is_file' method now does -e && ! -d and not -f because -f is often more restrictive than people intend or expect
Added 'chmod' method with symbolic chmod support ("a=r,u+rx")
The 'basename' method now takes a list of suffixes to remove before returning the name
Added FREEZE/THAW/TO_JSON serialization helpers
When constructing a Path::Tiny object from another, the original is returned unless it's a temp dir/file, which significantly speeds up calling path($path) if $path is already a Path::Tiny object
Constructing any path - e.g. with child() - with undef or zero-length parts throws an error instead of constructing an invalid path
Local Packages
Updated perl-IO-Tty to 1.11:
Add get_winsize and set_winsize
Updated perl-IPC-Run as per the Fedora version
Updated perl-Params-Check (0.38) to bump its epoch to compete with the Fedora version
Updated perl-Params-Validate to run the release tests only if we have Scalar::Util ≥ 1.20 (CPAN RT#95402)
Updated perl-Path-Tiny to 0.054 as per the Fedora version
Updated perl-Perl-Critic-Pulp to 83:
PerlMinimumVersionAndWhy new 5.10 -e -x stacked file test (CPAN RT#95208)
Updated unrar to 5.10 beta 4
Wednesday 7th May 2014
Fedora Project
Updated perl-Import-Into to 1.002002 in Rawhide and EPEL-7:
- Minor metadata updates
Updated perl-IO-All to 0.61 in Rawhide and EPEL-7:
Fix head() returning prematurely (https://github.com/ingydotnet/io-all-pm/issues/44)
Local Packages
Updated perl-Import-Into to 1.002002 as per the Fedora version
Updated perl-Perl-Critic-Pulp to 84:
New policy Documentation::RequireFilenameMarkup
Thursday 8th May 2014
Fedora Project
Updated perl-Test-Class to 0.42 in Rawhide and EPEL-7:
Properly handle thrown exceptions that stringify to the empty string before or after chomping (https://github.com/adrianh/test-class/pull/11)
Local Packages
Updated perl-Digest-SHA to 5.90:
Consolidated all dynamic memory allocation into XSUBs
Streamlines referencing of SHA objects
Simplifies DESTROYing of objects
Enhanced Makefile.PL to allow 'use warnings'
Automatically reverts to $^W for early Perls
- Scrubbed C and Perl code to remove all compiler warnings
Updated perl-Net-DNS to 0.75:
Iterate nameservers in AXFR (CPAN RT#79569)
TSIG: implement sign/verify for multi-packet message (CPAN RT#92433, CPAN RT#91241)
Implement TSIG verified zone transfer
Clarify documentation surrounding SRV RR sorting (CPAN RT#92626)
Resolver gave unhelpful errorstring when attempting to use IPv6-only nameserver without INET6 and Socket6 installed (CPAN RT#93764)
Compile-time constant in Domain.pm/Text.pm could not be used to store pointer to encoding object when using perlcc compiler (CPAN RT#94069)
Updated perl-Perl-Critic-Pulp to 85:
Forgot Pod::Escapes in PREREQ_PM (CPAN RT#95440)
Friday 9th May 2014
Fedora Project
Submitted a review request for a perl-JSON-MaybeXS package
Local Packages
Updated perl-Search-Elasticsearch to 1.12:
- Fixed bug when trying to reindex from a subref
Added search_shards()
Added char_filters to indices.analyze()
Removed index_templates from cluster.state()
Added conf to TestServer for passing arbitrary config
Saturday 10th May 2014
Fedora Project
David Dick kindly reviewed and approved my perl-JSON-MaybeXS package
Updated perl-IO-Socket-SSL to 1.984 in Rawhide:
- Added OCSP support:
Needs Net::SSLeay ≥ 1.59
For usage see documentation of IO::Socket::SSL (examples and anything with OCSP in the name)
New tool util/analyze-ssl.pl, which is intended to help in debugging of SSL problems and to get information about capabilities of server; it works also as an example of how to use various features (like OCSP, SNI...)
Fix peer_certificates (returns leaf certificate only once on client side)
Added timeout for stop_SSL (either with Timeout or with the default timeout for IO::Socket)
Fix IO::Socket::SSL::Utils mapping between ASN1_TIME and time_t when local time is not GMT; use Net::SSLeay::ASN1_TIME_timet if available
Fix t/external/usable_ca.t for system with junk in CA files
- Added OCSP support:
Updated perl-Net-SSLeay to 1.59 in Rawhide:
Fixed local/30_error.t so that tests do not fail if diagnostics are enabled
Fixed error messages about undefined strings used with length or split
Improvements to configuration of OPTIMIZE flags, to prevent overriding of perl's expected optimization flags
SSL_peek() now returns openssl error code as second item when called in array context, same as SSL_read
- Fixed some warnings
Added support for tlsv1.1 and tlsv1.2 via $Net::SSLeay::ssl_version
- Improve examples in 'Using other perl modules based on Net::SSLeay'
- Added support for OCSP
Added missing t/external/ocsp.t
Local Packages
Updated curl to fix auth failure on duplicated 'WWW-Authenticate: Negotiate' header (Bug #1093348)
Updated perl-IO-Socket-SSL to 1.984 as per the Fedora version
Updated perl-Net-SSLeay to 1.59 as per the Fedora version
Updated perl-Perl-MinimumVersion to 1.36:
CHECK block requires 5.6.2
UNITCHECK block requires 5.10.0
- Stacked labels on the same statement requires 5.14.0
Sunday 11th May 2014
Football
Very much enjoyed my trip to the Etihad Stadium today to see City win the Premier League title for the second time in three years, although it has to be said it was rather anticlimactic compared with last time! Only disappointment really was our failure to keep attacking once we got 2-0 up with half an hour to go, leaving us to finish on 102 league goals for the season, only one short of Chelsea's record. This trophy-winning lark is becoming a habit, but not one I'm ever likely to get used to, having been a season ticket holder for 30 years and experiencing the lows that make these highs all the more enjoyable.
Local Packages
Updated perl-Perl-MinimumVersion to 1.37:
- Removed the check for "stacked labels" that I added in 1.36, as it appears that I misinterpreted what the 5.14 change was, and broke at least one dist
The way I was comparing versions in one of the new tests in 1.36 wasn't portable across old versions of Perl (CPAN RT#95528)
Monday 12th May 2014
Fedora Project
Imported and built perl-JSON-MaybeXS (1.002002) for F-19, F-20, Rawhide, EPEL-6 and EPEL-7
Updated perl-MetaCPAN-Client to 1.003000 in Rawhide:
- Add proper POD fetching from module/file objects.
GH #1: Switch from JSON.pm to JSON::MaybeXS
GH #2: Remove incorrect and unnecessary check for class names
Provide "ua" attribute in the main object to override user agent
Add some use-case examples (examples directory)
Add 'releases' method to Author (not official so no docs yet)
GH #4: Use example with hyphen
Related to GH #4, use Data::Printer instead of shortened name "DDP"
Updated perl-Net-SSLeay to 1.61 in Rawhide:
- Fixed a typo in an error message
Fixed a problem with building with openssl that does not support OCSP
Fixed some newly-introduced warnings if compiled with -Wall
- Fixed format string issue causing build failures
Changed calloc to Newx and free to Safefree, otherwise there might be problems because calloc is done from a different memory pool than free (depends on the build options for perl, but seen on Windows)
Local Packages
Updated dovecot to 2.2.13:
Fixed a DoS attack against imap/pop3-login processes; if SSL/TLS handshake was started but wasn't finished, the login process attempted to eventually forcibly disconnect the client, but failed to do it correctly, which could have left the connections hanging around for a long time (affected Dovecot v1.1+)
mdbox: added mdbox_purge_preserve_alt setting to keep the file within alt storage during purge (should become enforced in v2.3.0?)
fts: added support for parsing attachments via Apache Tika; enable with: plugin { fts_tika = http://tikahost:9998/tika/ }
virtual plugin: delay opening backend mailboxes until it's necessary; this requires mailbox_list_index=yes to work (currently IMAP IDLE command still causes all backend mailboxes to be opened)
mail_never_cache_fields=* means now to disable all caching; this may be a useful optimization as doveadm/dsync parameter for some admin tasks that shouldn't really update the cache file
IMAP: return SPECIAL-USE flags always for LSUB command
pop3 server was still crashing in v2.2.12 with some settings
maildir: various fixes and improvements to handling compressed mails, especially when they have broken/missing S=sizes in filenames
fts-lucene, fts-solr: fixed crash on search when the index contained duplicate entries
Many fixes and performance improvements to dsync and replication
director was somewhat broken when there were exactly two directors in the ring; it caused errors about "weak users" getting stuck
mail_attachment_dir: attachments with the last base64-encoded line longer than the rest wasn't handled correctly
IMAP: SEARCH/SORT PARTIAL was handled completely wrong in v2.2.11+
acl: global ACL file handling was broken when multiple entries matched the mailbox name (only the first entry was used)
Updated perl-File-ShareDir to 1.102:
Reformat Changes according to CPAN::Changes::Spec
Switch to EU::MM
In the SEE ALSO section of the POD, add a link to Dist::Zilla::Plugin::ShareDir (CPAN RT#95401)
Explicitly require warnings as runtime prerequisite
- New maintainer: Jens Rehsack
Updated perl-Net-SSLeay to 1.61 as per the Fedora version
Updated perl-Params-Validate to 1.10:
Require Readonly 1.03+ and Scalar::Util 1.20 for testing with Readonly (CPAN RT#95402)
Updated perl-Term-ReadKey to 2.32:
- Fix some warnings
Tuesday 13th May 2014
Local Packages
Updated perl-Net-Server to 2.008:
Long awaited patch for the IO::Socket::SSL default verify mode bug
Add Time::HiRes as a dependency
Update to new github hosted repository with all legacy code imported
Beginnings of change to dzil-based releases
- There are several dozen outstanding bugs that will be addressed in the next release
Wednesday 14th May 2014
Fedora Project
Updated perl-IO-Socket-SSL (1.984) in Rawhide and perl-IO-Socket-SSL (1.955) in F-20 to fix a typo in IO::Socket::SSL::Utils function KEY_free(), which caused a crash when invoked (Bug #1097640, CPAN RT#95633):
$ perl -MIO::Socket::SSL::Utils -e 'KEY_free(KEY_create_rsa())' Can't locate auto/Net/SSLeay/EVP_KEY_fre.al in @INC (@INC contains: /usr/local/lib64/perl5 /usr/local/share/perl5 /usr/lib64/perl5/vendor_perl /usr/share/perl5/vendor_perl /usr/lib64/perl5 /usr/share/perl5 .) at /usr/share/perl5/vendor_perl/IO/Socket/SSL/Utils.pm line 96.
Local Packages
Updated perl-DateTime-TimeZone to 1.68:
- This release is based on version 2014c of the IANA database
- Contemporary changes for Crimea and Troll Station, Antarctica from 2014b
- Contemporary changes for Egypt from 2014c
Updated perl-IO-Socket-SSL (1.984) as per the Fedora version
Updated perl-Moose to 2.1206:
- Bug Fixes:
Exceptions should not throw other exceptions; fixes cases where exceptions were reporting the wrong error (CPAN RT#92818, CPAN RT#94795)
- Other:
Prereqs needed strictly for building with Dist::Zilla have been moved from develop requires to develop recommends, to simplify automated testing on older perls that cannot install all Dist::Zilla components
- Removed instances of metaobjects in exception classes where they're not really required
Thursday 15th May 2014
Fedora Project
Updated perl-IO-Socket-SSL to 1.985 in Rawhide:
- Make OCSP callback return 1 even if it was called on the server side because of bad setup of the socket; otherwise we get an endless calling of the OCSP callback
- Consider an OCSP response that is not yet or no longer valid a soft error instead of an hard error
Fix skip in t/external/ocsp.t in case fingerprint does not match
Call EVP_PKEY_free rather than EVP_KEY_free in IO::Socket::SSL::Utils::KEY_free (CPAN RT#95633)
util/analyze.pl: with --show-chain check if chain with SNI is different from chain without SNI
Local Packages
Updated perl-DateTime-TimeZone to 1.69:
- Don't run tests for Unix on non-Unix boxes
Updated perl-IO-Socket-SSL to 1.985 as per the Fedora version
Updated proftpd to 1.3.5 (see NEWS for details)
Friday 16th May 2014
Fedora Project
Updated proftpd to 1.3.5 in Rawhide and EPEL-7 (see NEWS for details), including the patch for upstream bug #4055 regarding log noise with IPv6 connections)
Updated python-crypto (2.6.1) in Rawhide to unbundle libtomcrypt (Bug #1087557)
Local Packages
Updated perl-Clone to 0.37:
Removed Carp dependency
Silenced some clang warnings
Added a README
Updated proftpd (1.3.5) to add upstream fix to ignore any ENOPROTOOPT errors when setting the IPv6 TCLASS (TOS) flags on the socket; they make for noisier logging without providing any actual value to the user/admin (upstream bug #4055)
Updated xz (5.1.2 alpha) to add a static sub-package (Bug #547011)
Saturday 17th May 2014
Fedora Project
Updated perl-IO-Socket-SSL to 1.988 in Rawhide:
Allow IPv4 in common name, because browsers allow this too; only for scheme www/http though, not for rfc2818 (because RFC2818 does not allow this; in default scheme IPv6 and IPv4 are allowed in CN)
Fix handling of public suffix; add exemption for *.googleapis.com wildcard, which should not be allowed according to public suffix list but actually is used
Add hostname verification test based on older test of chromium, but change some of the test expectations because we don't want to support IP as SAN DNS and because we enforce a public suffix list (and thus *.co.uk should not be allowed)
Fix t/verify_hostname_standalone.t on systems without usable IDNA or IPv6 (CPAN RT#95719)
Enable IPv6 support only if we have a usable inet_pton
Remove stale entries from MANIFEST
- Add transparent support for DER and PKCS#12 files to specify cert and key, e.g. it will autodetect the format
If SSL_cert_file is PEM and no SSL_key_file is given it will check if the key is in SSL_cert_file too
Local Packages
Updated perl-Digest-SHA to 5.91:
Restored original 'addfile' for use on opened file handles, which allows callbacks in place of actual files (e.g. with IO::Callback, CPAN RT#95643)
Re-established inheritance from Digest::base to pick up future Digest enhancements automatically
- Cleaned up documentation
Updated perl-IO-Socket-SSL to 1.988 as per the Fedora version
Monday 19th May 2014
Fedora Project
Updated perl-ExtUtils-Depends to 0.308 in Rawhide and EPEL-7:
Fix Win32 test failure in t/02_save_load.t (CPAN RT#95301)
Updated perl-Net-SSLeay to 1.63 in Rawhide:
Improvements to OCSP support: it turns out that some CAs (like Verisign) sign the OCSP response with the CA we have in the trust store and don't attach this certifcate in the response, but OpenSSL by itself only considers the certificates included in the response and SSL_OCSP_response_verify added the certificates in the chain too, so now we also add the trusted CA from the store that signed the lowest chain certificate, at least if we could not verify the OCSP response without doing it
- Fixed some compiler warnings
Local Packages
Updated perl-ExtUtils-Depends to 0.308 as per the Fedora version
Updated perl-File-Find-Object-Rule to 0.0305:
Made the tests succeed if run in parallel (e.g. HARNESS_OPTIONS='j4:c')
Updated perl-HTTP-Tiny to bundle Test::More 0.96 so we can build (and run the test suite) on old distributions
Updated perl-Net-SSLeay to 1.63 as per the Fedora version
Updated perl-Text-CSV_XS to 1.08:
- Documentation updates
- Allow disjointed CSV cell fragment lists
Tuesday 20th May 2014
Local Packages
Updated libgcrypt (1.6.1) to disable rijndael, cast5, camellia ARM assembly, as it's non-PIC as presently written, which results in .text relocations in the shared library (Bug #1069792)
Wednesday 21st May 2014
Fedora Project
Rebuilt gtkwave in Rawhide for tcl/tk 8.6 (https://fedoraproject.org/wiki/Changes/f21tcl86)
Updated perl-Sysadm-Install to 0.44 in Rawhide:
Replaced bin_find() implementation by File::Which
tap() with raise_error option set now dies with stderr output, because $! isn't set on failed close()
Updated perl-Test-Mojibake to 1.0 in Rawhide:
- Use proper source for ASCII-only characters
Dist::Zilla-related updates
- Fixing the "comment in regexp" other way around
- Fix regex to properly ignore comments
Local Packages
Updated curl to 7.37.0:
- This release includes the following changes:
- URL parser: IPv6 zone identifiers are now supported
CURLOPT_PROXYHEADER: set headers for proxy-only
CURLOPT_HEADEROPT: added
curl: add --proxy-header
sasl: added support for DIGEST-MD5 via Windows SSPI
sasl: added DIGEST-MD5 qop-option validation in native challange handling
imap: expanded mailbox SEARCH support to use URL query strings
imap: extended FETCH support to include PARTIAL URL specifier
nss: implement non-blocking SSL handshake
- Build: reworked Visual Studio project files
poll: enable poll on darwin13
mk-ca-bundle: added -p
libtests: add a wait_ms() function
- This release includes the following bugfixes:
mkhelp: generate code for --disable-manual as well
hostcheck: added a system include to define struct in_addr
winbuild: added warnless.c to fix build
Makefile.vc6: added warnless.c to fix build
smtp: fixed login denied when server doesn't support AUTH capability
smtp: fixed login denied with a RFC-821 based server
curl: stop interpreting IPv6 literals as glob patterns
http2: remove _DRAFT09 from the NPN_HTTP2 enumeration
http2: let openssl mention the exact protocol negotiated
http2+openssl: fix compiler warnings in ALPN-using code
ftp: in passive data connect wait for happy eyeballs sockets
HTTP: don't send Content-Length: 0 and Expect: 100-continue
http2: compile with current nghttp2, which supports h2-11
http_negotiate_sspi: fixed compilation when USE_HTTP_NEGOTIATE not defined
strerror: fix comment about vxworks' strerror_r buffer size
url: only use if_nametoindex() if IFNAMSIZ is available
imap: fixed untagged response detection when no data after command
- various: fix possible dereference of null pointer
- various: fix use of uninitialized variable
- various: fix use of non-null terminated strings
telnet.c: check sscanf results before passing them to snprintf
parsedate.c: check sscanf result before passing it to strlen
sockfilt.c: free memory in case of memory allocation errors
sockfilt.c: ignore non-key-events and continue waiting for input
sockfilt.c: properly handle disk files, pipes and character input
sockfilt.c: fixed getting stuck waiting for MinGW stdin pipe
sockfilt.c: clean up threaded approach and add documentation
configure: use the nghttp2 path correctly with pkg-config
curl_global_init_mem: bump initialized even if already initialized
gtls: fix NULL pointer dereference
cyassl: use error-ssl.h when available
handler: make 'protocol' always specified as a single bit
INFILESIZE: fields in UserDefined must not be changed run-time
openssl: biomem->data is not zero terminated
config-win32.h: fixed HAVE_LONGLONG for Visual Studio .NET 2003 and up
curl_ntlm_core: fixed use of long long for VC6 and VC7
SNI: strip off a single trailing dot from host name
curl: bail on cookie use when built with disabled cookies
curl_easy_setopt.3: added the proto for CURLOPT_SSH_KNOWNHOSTS
curl_multi_cleanup: ignore SIGPIPE better
schannel: don't use the connect-timeout during send
mprintf: allow %.s with data not being zero terminated
tool_help: fixed missing --login-options option
configure: don't set LD_LIBRARY_PATH when cross-compiling
http: auth failure on duplicated 'WWW-Authenticate: Negotiate' header
cacertinmem: fix memory leak
lib1506: make sure the transfers are not within the same millisecond
Makefile.b32: fixed for vtls changes
sasl: fixed missing qop in the client's challenge-response message
openssl: unbreak PKCS12 support
darwinssl: fix potential crash with a P12 file
- timers: fix timer regression involving redirects / reconnects
CURLINFO_SSL_VERIFYRESULT: made more reliable
HTTP: fixed connection re-use
configure: add SPNEGO to supported features
configure: add GSS-API to supported features
ALPN: fix typo in http/1.1 identifier
http2: make connection re-use work
Updated gtkwave as per the Fedora version
Updated perl-Test-Mojibake to 1.0 as per the Fedora version
Thursday 27th May 2014
Fedora Project
Updated pari to 2.7.1 in Rawhide, which has ABI and API changes, so in order to avoid broken dependencies until the consumers of this library are updated, I temporarily included the old (version 2.5.5) library in the package as well
Local Packages
Updated sendmail to 8.14.9:
Properly set the close-on-exec flag for file descriptors (except stdin, stdout and stderr) before executing mailers
Fix a misformed comment in conf.c: "/*" within comment, which may cause a compilation error on some systems
DEVTOOLS: Fix regression in auto-detection of libraries when only shared libraries are available
Sunday 25th May 2014
Fedora Project
Updated perl-IO-Socket-SSL to 1.989 in Rawhide:
Fix warnings on Windows (CPAN RT#95881)
Local Packages
Updated libgcrypt (1.6.1) to re-enable ARM assembly for various algorithms, applying a patch from the upstream list to make that code -fPIC friendly (Bug #1069792)
Updated perl-IO-Socket-SSL to 1.989 as per the Fedora version
Updated perl-Net-DNS to 0.76:
Set resolver configuration defaults at first instantiation instead of module load time (CPAN RT#67602)
Implement prefer_v6 resolver configuration attribute (CPAN RT#79568)
Fix incorrect parsing of nameserver lines in resolv.conf (CPAN RT#95596)
Fix test failure with IPv6 address in resolv.conf but without prerequisite IO::Socket::INET6 package installed (CPAN RT#95738)
Tuesday 27th May 2014
Fedora Project
Updated perl-IO-Socket-SSL to 1.990 in Rawhide:
Added option SSL_ocsp_staple_callback to get the stapled OCSP response and verify it somewhere else
Try to fix warnings on Windows again (CPAN RT#95967)
Work around temporary OCSP error in t/external/ocsp.t
Updated perl-MetaCPAN-Client to 1.004001 in Rawhide:
Reworked ResultSet to allow RS in non-scrolled searches
Correct rev_deps query
Rebuilt python-crypto for Python 3.4 in Rawhide (again)
Local Packages
Updated perl-IO-Socket-SSL to 1.990 as per the Fedora version
Updated perl-MetaCPAN-Client to 1.004001 as per the Fedora version
Updated perl-Module-CoreList to 3.11:
- Prepared for v5.20.0
Fix regression in corelist with -v output listing the same perl multiple times
Fix regression in corelist with v5.x.10 appearing twice in -a output
Updated perl-Moose to 2.1207:
Fixed Specio support to work with the latest Specio (0.10); this version of Specio no longer uses Moose internally
Exceptions in Class::MOP no longer use Moose::Util, instead using their own private implementation of throw_exception, to avoid needless premature loading of Moose logic
Wednesday 28th May 2014
Fedora Project
Updated perl-IO-Socket-SSL to 1.991 in Rawhide:
New option SSL_OCSP_TRY_STAPLE to enforce staple request even if VERIFY_NONE
Work around for CPAN RT#96013 in peer_certificates
Updated perl-YAML to 0.91 in Rawhide:
Force escaping of single '-' (https://github.com/ingydotnet/yaml-pm/pull/22)
Local Packages
Updated perl-IO-Socket-SSL to 1.991 as per the Fedora version
Updated perl-YAML to 0.91 as per the Fedora version
Thursday 29th May 2014
Fedora Project
Updated perl-Math-Pari to 2.010807 in Rawhide:
- Too long version name was a misprint
Pay attention to PERL_EXTUTILS_AUTOINSTALL when interpreting empty answers to prompt (probably an overkill)
- Report bytes in the answer for prompt
- Split into separate subroutines inspecting versions available for download from the actual download
Change the logic of fallback Net::FTP -> LWP
__wrap_PARI_macro: new function (not exported)
parse_as_gp: new function (exported by default)
More verbose error message for "Cannot load a Pari macro"
Updated perl-YAML to 0.92 in Rawhide:
Metadata fixes (https://github.com/ingydotnet/yaml-pm/pull/23)
Local Packages
Updated java-1.7.0-oracle to Java SE 7 Update 60 (see OracleJava7OnFedora)
Updated perl-HTTP-Size to 1.14 (no changes)
Updated perl-YAML to 0.92 as per the Fedora version
Rebuilt py-bcrypt for Python 3.4 in Rawhide
Previous Month: April 2014
Next Month: June 2014