PaulHowarth/Blog/2017-02-22

Wednesday 22nd February 2017

Fedora Project

  • Updated perl-Mouse to 2.4.9 in Rawhide:

    • Fix build issue on newer Perl without '.' in @INC

  • Updated python-paramiko to 2.1.2 in Rawhide

Local Packages

  • Updated curl to 7.53.0:

    • CVE-2017-2629: Make SSL_VERIFYSTATUS work again

    • unix_socket: Added --abstract-unix-socket and CURLOPT_ABSTRACT_UNIX_SOCKET

    • CURLOPT_BUFFERSIZE: Support enlarging receive buffer

    • gnutls-random: Check return code for failed random

    • openssl-random: Check return code when asking for random

    • http: Remove "Curl_http_done: called premature" message

    • cyassl: Use time_t instead of long for timeout

    • build-wolfssl: Sync config with wolfSSL 3.10
    • ftp-gss: Check for init before use

    • configure: Accept --with-libidn2 instead

    • ftp: Failure to resolve proxy should return that error code

    • curl.1: Add three more exit codes

    • docs/ciphers: Link to our own new page about ciphers

    • vtls: s/SSLEAY/OPENSSL - fixes multi_socket timeouts with openssl

    • darwinssl: Fix iOS build
    • darwinssl: Fix CFArrayRef leak

    • cmake: Use crypt32.lib when building with OpenSSL on windows

    • curl_formadd.3: CURLFORM_CONTENTSLENGTH not needed when chunked

    • digest_sspi: Copy terminating NUL as well

    • curl: Fix --remote-time incorrect times on Windows

    • curl.1: Several updates and corrections

    • content_encoding: Change return code on a failure

    • curl.h: CURLE_FUNCTION_NOT_FOUND is no longer in use

    • docs: TCP_KEEPALIVE start and interval default to 60

    • darwinssl: --insecure overrides --cacert if both settings are in use

    • TheArtOfHttpScripting: Grammar

    • CIPHERS.md: Document GSKit ciphers

    • wolfssl: Support setting cipher list
    • wolfssl: Display negotiated SSL version and cipher

    • lib506: Fix build for Open Watcom

    • asiohiper: Improved socket handling

    • examples: Make the C++ examples follow our code style too

    • tests/sws: Retry send() on EWOULDBLOCK

    • cmake: Fix passing _WINSOCKAPI_ macro to compiler

    • smtp: Fix STARTTLS denied error message

    • imap/pop3: Don't print response character in STARTTLS denied messages

    • rand: Make it work without TLS backing

    • url: Fix parsing for when 'file' is the default protocol

    • url: Allow file://X:/path URLs on windows again

    • gnutls: Check for alpn and ocsp in configure

    • IDN: Use TR46 'non-transitional' for toASCII translations

    • url: Fix NO_PROXY env var to work properly with --proxy option

    • CURLOPT_PREQUOTE.3: Takes a struct curl_slist*, not a char*

    • docs: Add note about libcurl copying strings to CURLOPT_* manpages

    • curl: Reset the easy handle at --next

    • --next docs: --trace and --trace-ascii are also global

    • --write-out docs: 'time_total' is not always shown with ms precision

    • http: Print correct HTTP string in verbose output when using HTTP/2

    • docs: Improved language in README.md HISTORY.md CONTRIBUTE.md

    • http2: Disable server push if not requested

    • nss: Use the correct lock in nss_find_slot_by_name()

    • usercertinmem.c: Improve the short description

    • CURLOPT_CONNECT_TO: Fix compile warnings

    • docs: Non-blocking SSL handshake is now supported with NSS

    • *.rc: Escape non-ASCII/non-UTF-8 character for clarity

    • mbedTLS: Fix multi interface non-blocking handshake
    • PolarSSL: Fix multi interface non-blocking handshake

    • VC: Remove the makefile.vc6 build infra

    • telnet: Fix windows compiler warnings
    • cookies: Do not assume a valid domain has a dot
    • polarssl: Fix hangs
    • gnutls: Disable TLS session tickets
    • mbedtls: Disable TLS session tickets

    • mbedtls: Implement CTR-DRBG and HAVEGE random generators

    • openssl: Don't use certificate after transferring ownership

    • cmake: Support curl --xattr when built with cmake

    • OS400: Fix symbols
    • docs: Add more HTTPS proxy documentation
    • docs: Use more HTTPS links
    • cmdline-opts: Fixed build and test in out of source tree builds

    • CHANGES.0: Removed

    • schannel: Remove incorrect SNI disabled message
    • darwinssl: Avoid parsing certificates when not in verbose mode

    • test552: Fix typos

    • telnet: Fix typos
    • transfer: Only retry nobody-requests for HTTP
    • http2: Reset push header counter fixes crash

    • nss: Make FTPS work with --proxytunnel

    • test1139: Added the --manual keyword since the manual is required

    • polarssl, mbedtls: Fix detection of pending data

    • http_proxy: Fix tiny memory leak upon edge case connecting to proxy

    • URL: Only accept ";options" in SMTP/POP3/IMAP URL schemes

    • curl.1: ftp.sunet.se is no longer an FTP mirror

    • tool_operate: Show HTTPS-Proxy options on CURLE_SSL_CACERT

    • http2: Fix memory-leak when denying push streams

    • configure: Allow disabling pthreads, fall back on Win32 threads

    • curl: Fix typo in time condition warning message

    • axtls: Adapt to API changes

    • tool_urlglob: Allow a glob range with the same start and stop

    • winbuild: Add note on auto-detection of MACHINE in Makefile.vc

    • http: Fix missing 'Content-Length: 0' while negotiating auth

    • proxy: Fix hostname resolution and IDN conversion

    • docs: Fix timeout handling in multi-uv example

    • digest_sspi: Fix nonce-count generation in HTTP digest
    • sftp: Improved checks for create dir failures

    • smb: Use getpid replacement for windows UWP builds

    • digest_sspi: Handle 'stale=TRUE' directive in HTTP digest

  • Updated perl-Mouse to 2.4.9 as per the Fedora version

Recent