Wednesday 7th September 2016
Local Packages
Updated curl to 7.50.2:
nss: Fix incorrect use of a previously loaded certificate from file (CVE-2016-7141)
nss: Work around race condition in PK11_FindSlotByName()
mbedtls: Added support for NTLM
- SSH: Fixed SFTP/SCP transfer problems
multi: Make Curl_expire() work with 0 ms timeouts
mk-ca-bundle.pl: -m keeps ca cert meta data in output
- TFTP: Fix upload problem with piped input
CURLOPT_TCP_NODELAY: now enabled by default
mbedtls: Set verbose TLS debug when MBEDTLS_DEBUG is defined
http2: Always wait for readable socket
cmake: Enable win32 large file support by default
cmake: Enable win32 threaded resolver by default
winbuild: Avoid setting redundant CFLAGS to compile commands
curl.h: Make CURL_NO_OLDIES define CURL_STRICTER
docs: Make more markdown files use .md extension
docs: CONTRIBUTE and LICENSE-MIXING were converted to markdown
winbuild: Allow changing C compiler via environment variable CC
rtsp: Accept any RTSP session id
HTTP: Retry failed HEAD requests on reused connections too
configure: Add zlib search with pkg-config
openssl: Accept subjectAltName iPAddress if no dNSName match
MANUAL: Remove invalid link to LDAP documentation
socks: Improved connection procedure
proxy: Reject attempts to use unsupported proxy schemes
proxy: Bring back use of "Proxy-Connection:"
curl: Allow "pkcs11:" prefix for client certificates
spnego_sspi: Fix memory leak in case *outlen is zero
- SOCKS: Improve verbose output of SOCKS5 connection sequence
- SOCKS: Display the hostname returned by the SOCKS5 proxy server
- http/sasl: Query authentication mechanism supported by SSPI before using
sasl: Don't use GSSAPI authentication when domain name not specified
- win: Basic support for Universal Windows Platform apps
ftp: Fix wrong poll on the secondary socket
openssl: Build warning-free with 1.1.0 (again)
- HTTP: Stop parsing headers when switching to unknown protocols
test219: Add http as a required feature
TLS: random file/egd doesn't have to match for conn reuse
schannel: Disable ALPN for Wine since it is causing problems
http2: Make sure stream errors don't needlessly close the connection
http2: Return CURLE_HTTP2_STREAM for unexpected stream close
darwinssl: --cainfo is intended for backward compatibility only
- Speed caps: Not based on average speeds anymore
configure: Make the cpp -P detection not clobber CPPFLAGS
http2: Use named define instead of magic constant in read callback
http2: Skip the content-length parsing, detect unknown size
http2: Return EOF when done uploading without known size
darwinssl: Test for errSecSuccess in PKCS12 import rather than noErr
openssl: Fix CURLINFO_SSL_VERIFYRESULT
I updated the spec to build with c-ares rather than the POSIX threaded DNS resolver for Fedora 12 to Fedora 15 inclusive, which resolves some test failures and allows the dropping of the workaround patch for old applications on F12 and F13
Updated perl-MooseX-GlobRef (0.0701) and perl-MooseX-NonMoose (0.26) to fix FTBFS when perl is not in the minimal buildroot, and to build-require perl-generators for proper dependency generation
Updated perl-MooseX-InsideOut (0.106) and perl-MooseX-Types (0.46) to build-require perl-generators for proper dependency generation
Updated perl-Variable-Magic to 0.60:
A large chunk of boilerplate XS code, which is also used in other XS modules, has been factored out of the main .xs file to a collection of .h files in the xsh subdirectory
Bleadperl v5.25.3-266-g1d7e644 broke V::M (CPAN RT#128989); Len magic is no longer called for negative array indices fetches, so the relevant tests are now skipped