Tuesday 1st September 2015
Fedora Project
Updated perl-IO-Socket-SSL to 2.019 in F-23 and Rawhide:
Checks for readability of files/dirs for certificates and CA no longer use -r because this is not safe when ACLs are used (CPAN RT#106295)
New method sock_certificate similar to peer_certificate (CPAN RT#105733)
get_fingerprint can now take optional certificate as argument and compute the fingerprint of it; useful in connection with sock_certificate
Check for both EWOULDBLOCK and EAGAIN since these codes are different on some platforms (CPAN RT#106573)
Enforce default verification scheme if nothing was specified, i.e. no longer just warn but accept; if really no verification is wanted, a scheme of 'none' must be explicitly specified
- Support different cipher suites per SNI hosts
startssl.t failed on darwin with old openssl since server requested client certificate but offered also anon ciphers (CPAN RT#106687)
Work around different behaviour of getnameinfo from Socket and Socket6 by using a different wrapper depending on which module is used for IPv6
Local Packages
Updated cdrtools to 3.01 final release
Updated dovecot (2.2.18) to use the system crypto policy from F-21 onwards (Bug #1109114)
Updated perl-ExtUtils-ParseXS to 3.30:
- Support added for XS handshake API introduced in 5.21.6
Backported S_croak_xs_usage optimized on threaded builds
Fix INCLUDE_COMMAND $^X for Perl In Space
Remove 'use lib' left over from refactoring
Document and improve ancient optimization in ParseXS
Improve RETVAL code gen
Updated perl-IO-Socket-SSL to 2.019 as per the Fedora version
Updated perl-XML-LibXML to 2.0122:
Enable the memory test on cygwin as well as Linux (CPAN RT#104666)
Fix a typo in createElementNS (CPAN RT#106807)
Updated unrar to 5.30 beta 3