#acl PaulHowarth:read,write,admin,revert,delete All:read === Wednesday 7th September 2016 === ==== Local Packages ==== * Updated `curl` to 7.50.2: * `nss`: Fix incorrect use of a previously loaded certificate from file ([[CVE:2016-7141|CVE-2016-7141]]) * `nss`: Work around race condition in `PK11_FindSlotByName()` * `mbedtls`: Added support for NTLM * SSH: Fixed SFTP/SCP transfer problems * `multi`: Make `Curl_expire()` work with 0 ms timeouts * `mk-ca-bundle.pl`: `-m` keeps ca cert meta data in output * TFTP: Fix upload problem with piped input * `CURLOPT_TCP_NODELAY`: now enabled by default * `mbedtls`: Set verbose TLS debug when `MBEDTLS_DEBUG` is defined * `http2`: Always wait for readable socket * `cmake`: Enable win32 large file support by default * `cmake`: Enable win32 threaded resolver by default * winbuild: Avoid setting redundant `CFLAGS` to compile commands * `curl.h`: Make `CURL_NO_OLDIES` define `CURL_STRICTER` * docs: Make more markdown files use `.md` extension * docs: `CONTRIBUTE` and `LICENSE-MIXING` were converted to markdown * winbuild: Allow changing C compiler via environment variable `CC` * `rtsp`: Accept any RTSP session id * HTTP: Retry failed `HEAD` requests on reused connections too * `configure`: Add `zlib` search with `pkg-config` * `openssl`: Accept `subjectAltName` `iPAddress` if no `dNSName` match * `MANUAL`: Remove invalid link to LDAP documentation * `socks`: Improved connection procedure * `proxy`: Reject attempts to use unsupported proxy schemes * `proxy`: Bring back use of "`Proxy-Connection:`" * `curl`: Allow "`pkcs11:`" prefix for client certificates * `spnego_sspi`: Fix memory leak in case `*outlen` is zero * SOCKS: Improve verbose output of SOCKS5 connection sequence * SOCKS: Display the hostname returned by the SOCKS5 proxy server * http/sasl: Query authentication mechanism supported by SSPI before using * `sasl`: Don't use GSSAPI authentication when domain name not specified * win: Basic support for Universal Windows Platform apps * `ftp`: Fix wrong poll on the secondary socket * `openssl`: Build warning-free with 1.1.0 (again) * HTTP: Stop parsing headers when switching to unknown protocols * `test219`: Add `http` as a required feature * TLS: random file/`egd` doesn't have to match for conn reuse * `schannel`: Disable ALPN for Wine since it is causing problems * `http2`: Make sure stream errors don't needlessly close the connection * `http2`: Return `CURLE_HTTP2_STREAM` for unexpected stream close * `darwinssl`: `--cainfo` is intended for backward compatibility only * Speed caps: Not based on average speeds anymore * `configure`: Make the `cpp -P` detection not clobber `CPPFLAGS` * `http2`: Use named define instead of magic constant in read callback * `http2`: Skip the content-length parsing, detect unknown size * `http2`: Return `EOF` when done uploading without known size * `darwinssl`: Test for `errSecSuccess` in PKCS12 import rather than `noErr` * `openssl`: Fix `CURLINFO_SSL_VERIFYRESULT` . I updated the spec to build with `c-ares` rather than the POSIX threaded DNS resolver for Fedora 12 to Fedora 15 inclusive, which resolves some test failures and allows the dropping of the workaround patch for old applications on F12 and F13 * Updated `perl-MooseX-GlobRef` (0.0701) and `perl-MooseX-NonMoose` (0.26) to fix FTBFS when perl is not in the minimal buildroot, and to build-require `perl-generators` for proper dependency generation * Updated `perl-MooseX-InsideOut` (0.106) and `perl-MooseX-Types` (0.46) to build-require `perl-generators` for proper dependency generation * Updated `perl-Variable-Magic` to 0.60: * A large chunk of boilerplate XS code, which is also used in other XS modules, has been factored out of the main `.xs` file to a collection of `.h` files in the `xsh` subdirectory * Bleadperl v5.25.3-266-g1d7e644 broke `V::M` ([[CPAN:128989|CPAN RT#128989]]); Len magic is no longer called for negative array indices fetches, so the relevant tests are now skipped ----