Paul's Blog Entries for December 2016

Thursday 1st December 2016

Fedora Project

  • Updated perl-Contextual-Return to 0.004010 in Rawhide:

    • Spelling fix in POD
    • Improved DUMP behaviour when passed a non-CRV argument

Friday 2nd December 2016

Fedora Project

  • Updated pari in Rawhide to 2.9.0, a major new release with an soname bump; since some of the dependent packages do not currently build on the ppc64 architecture and hence cannot be rebuilt, I temporarily included the old version of the library in the package so as to avoid broken dependency issues

  • Rebuilt eclib (20160720), giac (1.2.2) and L-function (1.23) for the new version of pari in Rawhide

Saturday 3rd December 2016

Fedora Project

  • Updated pari to 2.9.1 in Rawhide (cumulative bugfix release)

  • Updated perl-YAML to 1.20 in Rawhide: -*Allow quoted map keys in arrays (GH#146)

  • B::Deparse is loaded at runtime now

  • New feature $YAML::Preserve (GH#9)

Local Packages

  • Updated perl-YAML to 1.20 as per the Fedora version

Sunday 4th December 2016

Local Packages

  • Updated perl-Pod-Simple to 3.35:

    • Stabilize t/search50.t

    • Turn off utf8 warnings when trying to see if a file is UTF-8 or not

Monday 5th December 2016

Local Packages

  • Updated dovecot to 2.2.27:

    • dovecot.list.index.log rotation sizes/times were changed so that the .log file stays smaller and .log.2 is deleted sooner

    • Added mail_crypt plugin that allows encryption of stored emails (see

    • stats: Global stats can be sent to Carbon server by setting stats_carbon_server=ip:port

    • imap/pop3 proxy: If passdb returns proxy_not_trusted, don't send ID/XCLIENT

    • Added generic hash modifier for %variables: %{<hash algorithm>;rounds=<n>,truncate=<bits>,salt=s>:field}; hash algorithm is any of the supported ones, e.g. md5, sha1, sha256, and also "pkcs5" is supported using SHA256, e.g. %{sha256:user} or %{md5;truncate=32:user}

    • Added support for SHA3-256 and SHA3-512 hashes

    • config: Support DNS wildcards in local_name, e.g. local_name * { .. } matches, but not

    • config: Support multiple names in local_name, e.g. local_name "" { .. }

    • Fixed crash in auth process when auth-policy was configured and authentication was aborted/failed without a username set

    • director: If two users had different tags but the same hash, the users may have been redirected to the wrong tag's hosts

    • Index files may have been thought incorrectly lost, causing "Missing middle file seq=.." to be logged and index rebuild; this happened more easily with IMAP hibernation enabled

    • Various fixes to restoring state correctly in un-hibernation
    • dovecot.index files were commonly 4 bytes per email too large; this is because 3 bytes per email were being wasted that could have been used for IMAP keywords

    • Various fixes to handle dovecot.list.index corruption better

    • lib-fts: Fixed assert-crash in address tokenizer with specific input

    • Fixed assert-crash in HTML to text parsing with specific input (e.g. for FTS indexing or snippet generation)
    • doveadm sync -1: Fixed handling mailbox GUID conflicts

    • sdbox, mdbox: Perform full index rebuild if corruption is detected inside lib-index, which runs index fsck

    • quota: Don't skip quota checks when moving mails between different quota roots

    • search: Multiple sequence sets or UID sets in search parameters weren't handled correctly; they were incorrectly merged together

  • I also had to add some patches to get it to build properly, particularly in Rawhide where the Changes/Fedora26CFlags feature has just landed:

    • Fix broken configure check for mysql_ssl_set (GH#25)

    • Skip some additional tests if there's no ECC support in OpenSSL (GH#26)

    • Fx more configure tests broken with -Werror=implicit-function-declaration (GH#27)

Tuesday 6th December 2016

Fedora Project

  • Updated GeoIP-GeoLite-data to December 2016 databases in Rawhide

  • Updated perl-Module-Extract-VERSION to 1.112 in Rawhide:

    • Remove prereq.t test; upstream will do that locally

    • Hide some packages from PAUSE
  • Updated perl-Params-ValidationCompiler to 0.20 in Rawhide:

    • The keys for parameter specifications are now validated, and if an unknown key is seen then an exception will be thrown; this will help you catch typos in your parameter specification (GH#8)

Local Packages

  • Updated GeoIP-GeoLite-data to December 2016 databases as per the Fedora version

  • Updated perl-Module-Extract-VERSION to 1.112 as per the Fedora version

  • Updated perl-Params-ValidationCompiler to 0.20 as per the Fedora version

Wednesday 7th December 2016

Fedora Project

  • Updated perl-Module-Extract-VERSION to 1.113 in Rawhide:

    • Fix a Perl 5.8 issue with Makefile.PL, even though the module requires Perl 5.10

  • Updated perl-MooseX-Types to 0.48:

    • Allow type libraries built with MooseX::Types::Combine to be combined with MooseX::Types::Combine (GH#1)

  • Updated perl-Params-ValidationCompiler to 0.21 in Rawhide:

    • Switched to using GitHub Issues

Local Packages

  • Updated perl-HTTP-SimpleLinkChecker to 1.165:

    • Allow the user agent to redirect a couple of times; if you don't like that, you can turn it off as documented
  • Updated perl-Module-Extract-VERSION to 1.113 as per the Fedora version

  • Updated perl-Net-IDN-Encode to 2.301 (adding patch to fix broken upstream change):

  • Updated perl-Params-ValidationCompiler to 0.21 as per the Fedora version

Thursday 8th December 2016

Fedora Project

  • Updated perl-Array-Compare to 2.12.2 in Rawhide:

    • Packaging changes

Local Packages

  • Updated perl-Array-Compare to 2.12.2 as per the Fedora version

  • Updated perl-HTML-Lint to 2.24:

    • Added detection of unknown HTML entities, like "known &unclosed &entities are not found"; this also fixes the case where HTML::Lint gets confused by an entity like "&sup2;", which it thought was an unterminated "&sup;" entity

    • Errors of the type doc-tag-required did not come out in any defined order; they are now sorted by tag name

    • Handle some warnings that get thrown if certain values are undef

    • Handle characters that are not handled by HTML::Entities (GH#13)

  • Updated perl-Net-IDN-Encode to 2.302 (adding a further fix for breakage on older perls):

Friday 9th December 2016

Fedora Project

  • Updated perl-Exception-Class to 1.41 in Rawhide:

    • Switch to GitHub Issues

  • Updated perl-MetaCPAN-Client to 2.001000 in Rawhide:

    • Distribution: added 'rt' and 'github' methods

    • Use Ref::Util for ref checks

Local Packages

  • Updated perl-Devel-StackTrace to 2.02:

    • Switch to GitHub Issues

    • Some small pod fixes
  • Updated perl-Exception-Class to 1.41 as per the Fedora version

Saturday 10th December 2016

Fedora Project

  • Updated perl-MCE to 1.810 in Rawhide:

    • Updated check for IO handle allowed; this allows $gather_fh = *STDOUT{IO} construction in Perl ≤ 5.10.1

  • Updated perl-MCE-Shared to 1.808 in Rawhide:

    • Optimized the barrier synchronization example in MCE::Shared::Condvar

Local Packages

  • Updated perl-MCE to 1.810 as per the Fedora version

  • Updated perl-MCE-Shared to 1.808 as per the Fedora version

  • Updated perl-Net-IDN-Encode to 2.303:

    • Fix Punycode.xs to work on older perls

Sunday 11th December 2016

Fedora Project

  • Updated perl-DateTime-Format-Strptime to 1.70 in Rawhide:

    • The word boundary check supposedly added in 1.67 didn't really work properly, and still matched too much (GH#11)

    • Added docs for several formats that have long been supported but not documented; these are %P, %c, %x, and %X (GH#10)

    • Altered the conversion specifier %z to accept ±HH, ±HHMM, ±HH:MM and Z; previously only ±HHMM were accepted (GH#13)

  • Updated perl-Test-Vars to 0.012 in Rawhide:

    • On Perl 5.22+, variables used in a substitution operator ($foo =~ s/foo/bar/) would be ignored (GH#28)

Local Packages

  • Updated perl-DateTime-Format-Strptime to 1.70 as per the Fedora version

  • Updated perl-Test-Vars to 0.012 as per the Fedora version

  • Updated sendmail (8.15.2):

Monday 12th December 2016

Fedora Project

  • Rebuilt perl-Compress-Raw-Lzma (2.061) in EPEL-7 for xz 5.2.2 in RHEL-7.3 (Bug #)

Local Packages

  • Rebuilt perl-Compress-Raw-Lzma (2.069) for xz 5.2.2 in RHEL-7.3, as per the Fedora version

  • Updated perl-Moo to 2.003000:

    • Fix create_class_with_roles being used multiple times with the same packages

    • Fix edge case with @ISA assignment on perl 5.10.0

    • Minor test adjustments
    • Fix handles on oddly named attributes
    • Make has options linkable in documentation

    • Sub::Quote and Sub::Defer have been split into a separate dist

  • New package perl-Sub-Quote (2.003001)

  • Updated xz in EL-7 repo to 5.2.2 as per the RHEL-7.3 version; the packaging is different from Fedora, and includes a compat library

Tuesday 13th December 2016

Fedora Project

  • Updated perl-Array-Compare to 3.0.0 in Rawhide:

    • New version to get round dubious decisions in Perl toolchain

Local Packages

  • Updated perl-Array-Compare to 3.0.0 as per the Fedora version

  • Rebuilt perl-Text-Hunspell (2.14) for hunspell 1.5.x in Rawhide

Wednesday 14th December 2016

Fedora Project

  • Updated perl-MetaCPAN-Client to 2.002000 in Rawhide:

    • Support 'autocomplete' endpoint

Local Packages

Thursday 15th December 2016

Fedora Project

  • Branched and built perl-Log-Any (0.15), perl-Log-Any-Adapter (0.11) and perl-Log-Any-Adapter-Dispatch (0.06) for EPEL-6 (clones of the existing EPEL-7 packages)

Local Packages

  • Updated dovecot (2.2.27) to fix big endian issue (Bug #1403760)

  • Updated perl-Archive-Tar to 2.20:

    • Check for gzip/bzip2 before round tripping gz/bz2 files in tests

Sunday 18th December 2016

Fedora Project

  • Updated perl-autobox-Core to 1.33 in Rawhide:

    • Fix array->uniq with undef values

  • Updated perl-IO-Socket-SSL to 2.040 in Rawhide:

    • Fix detection of default CA path for OpenSSL 1.1.x
    • Utils::CERT_asHash now includes the signature algorithm used

    • Utils::CERT_asHash can now deal with large serial numbers

  • Updated perl-Test-Warn to 0.31 in Rawhide:

    • Improve support for warnings with trailing newlines

Local Packages

  • Updated perl-IO-Socket-SSL to 2.040 as per the Fedora version

  • Updated perl-Test-Warn to 0.31 as per the Fedora version

Monday 19th December 2016

Fedora Project

  • Updated perl-MetaCPAN-Client to 2.003000 in Rawhide:

    • Escaped query to autocomplete

    • Removed dependency: Try::Tiny

  • Updated perl-Test-Simple to 1.302073 in Rawhide:

    • Add TO_JSON and from_json methods to Test2::Event and Test2::Trace::Util to facilitate transferring event data between processes (#741)

    • Generate HashBase from Object::HashBase, which has been split out

    • When a subtest is marked as todo, all of its contained Ok and Subtest events are now updated so that they return true for $e->effective_pass (#742)

    • Added two new event classes, Test2::Event::Encoding and Test2::Event::TAP::Version; these are primarily being added for the benefit of Test2::Harness now, but they could be useful for other Test2 event consumer tools in the future (#743)

    • Expose as Test2::Tools::Tiny

Local Packages

  • Updated cdrtools to 3.02 alpha release 07

  • Updated perl-Archive-Tar to 2.24:

    • Add missing strict/warnings pragma to

    • Handle tarballs compressed with pbzip2 (CPAN RT#119262)

  • Updated perl-MetaCPAN-Client to 2.003000 as per the Fedora version

  • Updated perl-Test2 to 1.302073 as per the Fedora perl-Test-Simple package

  • Updated perl-Test2-Suite to 0.000063:

    • An event without a trace object would throw an exception when using Test2::Compare::Event and the comparison failed

    • Fix tests for small terminals (#106)

    • Enhance the table library
    • UTF8 plugin does not set STDERR/STDOUT

Tuesday 20th December 2016

Local Packages

  • New package perl-Term-Table (0.003)

  • New package perl-Test-Simple (1.302073)

  • Updated perl-Test2-Suite to 0.000065:

    • Move Test2::Util::Table to Term::Table

    • AUTHOR_TESTING a fragile test

Wednesday 21st December 2016

Local Packages

  • Updated curl to 7.52.0:

    • nss: Map CURL_SSLVERSION_DEFAULT to NSS default

    • vtls: Support TLS 1.3 via CURL_SSLVERSION_TLSv1_3

    • curl: Introduce the --tlsv1.3 option to force TLS 1.3

    • curl: Add --retry-connrefused

    • proxy: Support HTTPS proxy and SOCKS+HTTP(s)

    • curl: Add --fail-early

    • CVE-2016-9586: printf floating point buffer overflow

    • CVE-2016-9952: Win CE schannel cert wildcard matches too much

    • CVE-2016-9953: Win CE schannel cert name out of buffer read

    • msvc: Removed a straggling reference to strequal.c

    • winbuild: Remove strcase.obj from curl build

    • examples: Bugfixed multi-uv.c

    • configure: Verify that compiler groks -Werror=partial-availability

    • mbedtls: Fix build with mbedtls versions < 2.4.0

    • dist: Add unit test CMakeLists.txt to the tarball

    • curl -w: Added more decimal digits to timing counters

    • easy: Initialize info variables on easy init and duphandle

    • cmake: Disable poll for macOS
    • http2: Don't send header fields prohibited by HTTP/2 spec
    • ssh: Check md5 fingerprints case insensitively (regression)
    • openssl: Initial TLS 1.3 adaptions
    • curl_formadd.3: *_FILECONTENT and *_FILE need the file to be kept

    • printf: Fix ".*f" handling

    • examples/fileupload.c: fclose the file as well

    • SPNEGO: Fix memory leak when authentication fails
    • realloc: Use Curl_saferealloc to avoid common mistakes

    • openssl: Make sure to fail in the unlikely event that PRNG seeding fails
    • URL-parser: For file://[host]/ URLs, the [host] must be localhost

    • timeval: Prefer time_t to hold seconds instead of long

    • Curl_rand: Fixed and moved to rand.c

    • glob: Fix [a-c] globbing regression

    • darwinssl: Fix SSL client certificate not found on MacOS Sierra
    • curl.1: Clarify --dump-header only writes received headers

    • http2: Fix address sanitizer memcpy warning

    • http2: Use huge HTTP/2 windows
    • connects: Don't mix unix domain sockets with regular ones
    • url: Fix conn reuse for local ports and interfaces
    • x509: Limit ASN.1 structure sizes to 256K
    • checksrc: Add more checks

    • winbuild: Add config option ENABLE_NGHTTP2

    • http2: Check nghttp2_session_set_local_window_size exists

    • http2: Fix crashes when parent stream gets aborted
    • CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries

    • URL parser: Reject non-numerical port numbers
    • CONNECT: Reject TE or CL in 2xx responses

    • CONNECT: Read responses one byte at a time

    • curl: Support zero-length argument strings in config files

    • openssl: Don't use OpenSSL's ERR_PACK

    • curl.1: Generated with the new man page system

    • curl_easy_recv: Improve documentation and example program

    • Curl_getconnectinfo: Avoid checking if the connection is closed

    • Attempt to document TLS cipher names

  • Updated nmap to 7.40 (see CHANGELOG for details)

  • Updated perl-Module-CoreList to 5.20161220:

    • Updated for v5.25.8
  • Updated perl-Term-Table to 0.004:

    • Add Term::Table::CellStack to represent a vertically merged cell in a table

Thursday 22nd December 2016

Fedora Project

  • Updated perl-Moose to 2.1807 in Rawhide:

    • The definition context (package, file and line) for attributes on Class::MOP and Moose metaclasses was wrong in all cases

    • Slight tweaks to the syntax used for hashes in a few tests that were broken by a recent Test::More release that started using a new namespace that clashes with a (bareword) type name in these tests (PR#141)

Local Packages

  • Updated perl-Moose to 2.1807 as per the Fedora version

Friday 23rd December 2016

Local Packages

  • Updated curl to 7.52.1:

    • CVE-2016-9594: Uninitialized random

    • lib557: Fix checksrc warnings

    • lib: Fix MSVC compiler warnings
    • lib557.c: Use a shorter MAXIMIZE representation

    • tests: Run checksrc on debug builds

  • Updated perl-MooseX-Types to 0.49:

    • Made the exported is_Foo and to_Foo subs much faster, especially for type constraints that can be inlined

Saturday 24th December 2016

Fedora Project

  • Updated perl-Test-Warn to 0.32 in Rawhide:

    • Update Changes and distribution metadata

  • Updated perl-YAML to 1.21 in Rawhide:

    • Declare variables with our() to avoid warnings (GH#109, GH#171)

    • Empty mapping value at the end resolves to null (was becoming empty string) (GH#131, GH#170)

    • Output key in warning when duplicate key was found (GH#119, GH#169)

    • Allow reading and writing to IO::Handle (GH#157, GH#168)

Local Packages

  • Updated libxml2 (2.9.4) to apply a very hacky patch that removes the PyVerify_fd symbol, not available in Python 3.6

  • Updated perl-DBD-SQLite to 1.54:

    • Re-enabled perl tokenizer by calling sqlite_db_config if SQLite ≥ 3.12

    • Resolved trivial documentation bug in DBL::SQLite 1.52 (CPAN RT#119219)

  • Updated perl-Test-Warn to 0.32 as per the Fedora version

  • Updated perl-YAML to 1.21 as per the Fedora version

  • Rebuilt py-bcrypt (0.4) for Python 3.6 in Rawhide

  • Rebuilt python-passlib (1.7.0) for Python 3.6 in Rawhide

Monday 26th December 2016

Fedora Project

  • Updated perl-DateTime to 1.42 in Rawhide:

    • The DateTime::Duration->add and ->subtract methods now accept DateTime::Duration objects; this used to work by accident but is now done intentionally, with docs and tests (GH#50)

Local Packages

  • Updated perl-DateTime to 1.42 as per the Fedora version

Tuesday 27th December 2016

Fedora Project

  • Updated perl-MetaCPAN-Client to 2.004000-TRIAL in Rawhide:

    • Removed dependency: Search::Elasticsearch in favour of an internal scroller

    • Added Types class for 'isa' checks

Local Packages

  • Updated perl-MetaCPAN-Client to 2.004000-TRIAL as per the Fedora version

Thursday 29th December 2016

Fedora Project

  • Updated perl-Compress-Raw-Bzip2 to 2.070 in Rawhide:

  • Updated perl-Compress-Raw-Zlib to 2.070 in Rawhide:

  • Updated perl-Compress-Raw-Lzma to 2.070 in Rawhide:

  • Updated perl-IO-Compress to 2.070 in Rawhide:

  • Updated perl-IO-Compress-Lzma to 2.070 in Rawhide (no changes)

  • Updated perl-Modern-Perl to 1.20161229 in Rawhide:

    • Improved VERSION numbering (GH#5)

  • Updated perl-Ref-Util to 0.110 in Rawhide:

    • Fix support of 5.8 (GH#29, GH#34)

    • Additional optimizations
    • More extensive test suite

Local Packages

  • Updated the IO::Compress stack to 2.070 as per the Fedora versions

  • Updated perl-Ref-Util to 0.110 as per the Fedora version

  • Updated perl-Term-Table to 0.005:

    • Add Term::Table::Spacer

Friday 30th December 2016

Fedora Project

  • Updated libpng10 to 1.0.67 in F-24, F-25, Rawhide and EPEL-6:

    • Fix typos in libpng.3 synopses

    • Fixed undefined behaviour in png_push_save_buffer(); do not call memcpy() with a null source, even if count is zero

    • Fixed a potential null pointer dereference in png_set_text_2() (CVE-2016-10087)

  • Updated perl-MetaCPAN-Client to 2.004000 in Rawhide:

    • Speed up own scroller
    • Fixed rev_deps

  • Updated perl-Ref-Util to 0.111 in Rwhide:

    • Fix test failure on 5.8.5 and under
    • Moved to Dist::Zilla

Local Packages

  • Updated libpng10 to 1.0.67 as per the Fedora version

  • Updated perl-HTML-Lint to 2.26:

    • Added two new types of errors to let you know you're using the API incorrectly; if you neglect to call ->parse or ->eof, you'll get an error returned in the list of errors from ->errors()

    • Test::HTML::Lint::html_fragment_ok() was not properly calling ->eof

    • html_fragment_ok() was not properly excluding document-level errors; it was effectively the same as html_ok()

  • Updated perl-MetaCPAN-Client to 2.004000 as per the Fedora version

  • Updated perl-Net-DNS to 1.07:

  • Updated perl-Ref-Util to 0.111 as per the Fedora version

Saturday 31st December 2016

Fedora Project

  • Updated gtkwave to 3.3.79 in Rawhide:

    • Disable accelerator keys in twinwave single window mode to avoid focus conflicts

    • Fixes for -fstrict-aliasing and other recent warnings

    • Added fill_waveform rc variable and corresponding menu option (/View/Show Filled High Values) to allow filling in the lower portion of high values for increased visibility

  • Updated perl-Compress-Raw-Zlib to 2.071 in Rawhide:

  • Updated perl-Params-ValidationCompiler to 0.22 in Rawhide:

    • Explicitly load the B module; previously, the code relied on this already being loaded by something else (GH#11)

    • Removed the alpha warning from the docs

Local Packages

  • Updated gtkwave to 3.3.79 as per the Fedora version

  • Updated perl-Compress-Raw-Zlib to 2.071 as per the Fedora version

  • Updated perl-Params-ValidationCompiler to 0.22 as per the Fedora version

Previous Month: November 2016
Next Month: January 2017