Paul's Blog Entries for May 2021
Monday 3rd May 2021
Fedora Project
Updated perl-Crypt-CBC (3.03) in Rawhide to make Crypt::Cipher::AES a hard dependency (Bug #1956206)
Crypt::Cipher::AES is used in the absence of any explicitly-specified cipher
Updated perl-DateTime-Format-Strptime to 1.79 in Rawhide:
Fix too-strict type checking for time zones: this module now uses the same check as DateTime itself, which allows for things that don't subclass DateTime::TimeZone as long as they provide the same API (GH#30)
Local Packages
Updated perl-DateTime-Format-Strptime to 1.79 as per the Fedora version
Updated perl-DateTime-Locale to 1.32:
- Rebuilt all locale data with the data from CLDR 39.0.0
Updated perl-Exception-Class to 1.45:
The field names for an exception are now checked to ensure that they are valid Perl identifiers (GH#13)
Updated perl-Net-DNS to 1.31:
Improve implementation of SVCB record
Updated perl-Term-ReadLine-Gnu to 1.41:
Makefile.PL:
Search a terminal library only when it necessary (GH#6)
- Whole refactoring
Updated perl-Type-Tiny to 1.012002:
Fix precedence error in generated code for Tuples (GH#64)
Fix typo in pod for Type::Tiny::Enum (GH#70)
Fix test case for Tuples with slurpy HashRef to pass a literal hashref (which should fail) instead of an arrayref (which should also fail, but less subtly) (GH#64)
Type::Tiny is no longer routinely tested on Perl versions older than 5.8.1 (https://github.com/tobyink/p5-type-tiny/actions)
Type::Parser now supports hexadecimal integers (GH#71)
Tuesday 4th May 2021
Local Packages
Updated curl (7.76.1) to fix resource leaks with http2 detected by Coverity
Updated perl-Data-Alias to 1.23:
Fix aliasing semantic unintentionally being applied to subs defined after a parenthesized alias()-expression since perl 5.11.2
Wednesday 5th May 2021
Local Packages
Updated libxml2 (2.9.10) to fix CVE-2021-3516 (Bug #1954227), CVE-2021-3517 (Bug #1954234) and CVE-2021-3518 (Bug #1954243)
Updated perl-Data-Alias to 1.24:
Bug fix: copy() no longer produces malformed optrees, which under certain circumstances crashed perl 5.31.2 and later
Update for removal of '.' from @INC in perl 5.26
Friday 7th May 2021
Local Packages
Updated libxml2 (2.9.10) to fix CVE-2021-3537 (Bug #1956524)
Updated nmap (7.91) to fix crash with unix sockets (GH#2154)
Updated perl-Term-ReadLine-Gnu to 1.42:
Saturday 8th May 2021
Local Packages
Sunday 9th May 2021
Fedora Project
Updated perl-YAML-LibYAML to 0.83 in Rawhide:
Local Packages
Updated perl-YAML-LibYAML to 0.83 as per the Fedora version
Monday 10th May 2021
Local Packages
Updated perl-Type-Tiny to 1.012003:
Type::Parser now supports negative hexadecimal integers
Fixed typo in POD for Type::Tiny::Enum where the 'closest_match' method was documented as being called 'closet_match'
Wednesday 12th May 2021
Local Packages
Updated dovecot (2.3.14) packaging:
- Re-enable LTO for Fedora 34 onwards
- Use OpenSSL's implementation of HMAC for Fedora 32 onwards
Add ICU and zstd support
Use libpq-devel instead of postgresql-devel from Fedora 29 onwards
Updated perl-Data-Alias to 1.25:
Reformatted Changes file per CPAN::Changes::Spec
Switched from Module::Install to ExtUtils::MakeMaker
Fix linker errors with dtrace-enabled perl
Thursday 13th May 2021
Local Packages
Updated perl-Test2-Suite to 0.000140:
Add L() "length" quick check for comparisons
Friday 14th May 2021
Local Packages
Updated libxml2 to 2.9.12 (see release announcement for 2.9.11 and subsequent thread)
Updated perl-Test-Script to 1.29:
Monday 17th May 2021
Fedora Project
Updated perl-ExtUtils-Depends to 0.8001 in Rawhide:
Remove hack (see CPAN RT#45224); the hijacking of EUMM's 'static_lib' method is now obsolete, as well as causing problems
- Also added a couple of code tidy-ups
Local Packages
Updated libidn to 1.37:
- Documentation: Minor fixes and codespell typos
- Updated translations
Update gnulib files and build fixes (we now use gnulib's ./bootstrap and gnulib's readme-release infrastructure for making releases)
Updated perl-ExtUtils-Depends to 0.8001 as per the Fedora version
Updated unrar to 6.02 beta 1
Tuesday 18th May 2021
Fedora Project
Updated perl-Crypt-CBC to 3.04 in Rawhide:
- Fixed bug involving manually-specified IV not being used in some circumstances
Wednesday 19th May 2021
Fedora Project
Updated perl-IO-Socket-INET6 (2.72) to add patch for bad code in test and random test fail (Bug #1207174)
Updated perl-Test-Differences to 0.68 in Rawhide:
Local Packages
Updated perl-IO-Socket-INET6 (2.72) as per the Fedora version
Updated perl-Test-Differences to 0.68 as per the Fedora version
Thursday 20th May 2021
Fedora Project
Updated gtkwave (3.3.108) in F-34 and Rawhide to silence some compiler warnings, which fixes broken GUI with -O2 (GH#62, Bug #1956191)
Updated perl-Test-Simple to 1.302185 in Rawhide:
Fix Test::Builder->skip to stringify arguments
Local Packages
Rebuilt dovecot for ICU 69 in Rawhide
Updated gtkwave (3.3.108) as per the Fedora version
Updated perl-Test-Simple to 1.302185 as per the Fedora version
Updated schily to 2021.05.19
Friday 21st May 2021
Local Packages
Updated perl-Module-CoreList to 5.20210520:
- Updated for v5.34.0
Monday 24th May 2021
Local Packages
Updated libxml2 (2.9.12) to fix python-lxml regression with (https://gitlab.gnome.org/GNOME/libxml2/-/issues/255)
Wednesday 26th May 2021
Fedora Project
Updated perl-DateTime-Format-MySQL to 0.0701 in Rawhide:
If microseconds are set on provided DateTime object to time_format, use them (CPAN RT#136549)
Updated perl-IO-Socket-SSL to 2.071 in Rawhide:
Local Packages
Updated curl to 7.77.0:
CVE-2021-22297: schannel cipher selection surprise
CVE-2021-22298: TELNET stack contents disclosure
CVE-2021-22901: TLS session caching disaster
configure: Make the TLS library choice(s) explicit
curl: Ignore options asking for SSLv2 or SSLv3
- hsts: Enable by default
- SSL: Support in-memory CA certs for some backends
- vtls: Refuse setting any SSL version
- AmigaOS: Add functions definitions for SHA256
- build: Fix compilation for Windows UWP platform
c-hyper: Don't write to set.writeheader if null
- c-hyper: Fix handling of zero-byte chunk from hyper
c-hyper: Handle body on HYPER_TASK_EMPTY
checksrc: Complain on == NULL or != 0 checks in conditions
- CI/cirrus: Add shared and static Windows release builds
cmake: Add CURL_ENABLE_EXPORT_TARGET option
cmake: Check for getppid and utimes
cmake: Detect CURL_SA_FAMILY_T
cmake: Fix two invokes result in different curl_config.h
cmake: Make libcurl output filename configurable
- cmake: Use multi-threaded compilation on VS 2008+
- config: Remove now-unused macros
configure: If asked for, fail if ldap is not found
configure: Provide --with-openssl, deprecate --with-ssl
conn: Add 'attach' to protocol handler, make libssh2 use it
connect: Use CURL_SA_FAMILY_T for portability
ConnectionExists: Respect requests for h1 connections better
cookie: CURLOPT_COOKIEFILE set to NULL switches off cookies
curl-wolfssl.m4: Without custom include path, assume /usr/include
curl: Include libmetalink version in --version output
Curl_http_header: Check for colon when matching Persistent-Auth
Curl_http_input_auth: Require valid separator after negotiation type
Curl_input_digest: Require space after Digest
curl_mprintf.3: Add description
curl_setup: Provide the shutdown flags wider
curl_url_set.3: Add memory management information
CURLcode: Add CURLE_SSL_CLIENTCERT
CURLOPT_CAPATH.3: Defaults to a path, not NULL
CURLOPT_IPRESOLVE: Preventing wrong IP version from being used
CURLOPT_POSTFIELDS.3: Clarify how it gets the size of the data
data_pending: Check only SECONDARY socket for FTP(S) transfers
docs/TheArtOfHttpScripting: Fix markdown links
docs: CamelCase it like GitHub everywhere
- docs: Cookies from HTTP headers need domain set
docs: Fix typo in fail-with-body doc
docs: Improve INTERNALS.md regarding getsock callback
- docs: Replace dots with dashes in markdown enums
easy: Ignore sigpipe in curl_easy_send
FILEFORMAT: Mention sectransp as a feature
GIT-INFO: Suggest using autoreconf instead of buildconf
GitHub: Add a workflow with libssh2 on macOS using cmake
GitHub: Inhibit deprecated declarations for clang on macOS
- GnuTLS: Don't allow TLS 1.3 for versions that don't support it
GnuTLS: Make setting only the MAX TLS allowed version work
gskit: Fix CURL_DISABLE_PROXY build
gskit: Fix undefined reference to 'conn'
hostip.h: Remove declaration of unimplemented function
hostip: Remove the debug code for LocalHost
- http2: Call the handle-closed function correctly on closed stream
http2: Fix a resource leak in push_promise()
http2: Fix resource leaks in set_transfer_url()
- http2: Make sure pause is done on HTTP
- http2: Move the stream error field to the per-transfer storage
- http2: Skip immediate parsing of payload following protocol switch
http2: Use nghttp2_session_upgrade2 instead of nghttp2_session_upgrade
HTTP3.md: Fix nghttp2's HTTP/3 server port
HTTP3.md: Make the ngtcp2 build use the quictls fork
http: Deal with partial CONNECT sends
http: Fix the check for 'Authorization' with Bearer
- http: Limit the initial send amount to used upload buffer size
- http: Reset the header buffer when sending the request
- http: Use offsets inst of integer literals for header parsing
INSTALL: Add IBM i specific quirks
krb5/name_to_level: Replace checkprefix with curl_strequal
krb5: Don't use 'static' to store PBSZ size response
krb5: Remove the unused 'overhead' function
lib/hostip6.c: Make NAT64 address synthesis on macOS work
lib1564.c: Enable last wakeup test part on Windows
lib: Fix 0-length Curl_client_write calls
lib: Fix some misuse of curlx_convert_UTF8_to_tchar
libcurl-security.3: Be careful of setuid
libcurl-security.3: Don't try to filter IPv4 hosts based on the URL
libcurl.3: Mention the URL API
libssh2: Fix Value stored to 'sshp' is never read
libssh2: Ignore timeout during disconnect
libssh: Fix "empty expression statement has no effect" warnings
libtest: Remove lib530.c
m4: Add security frameworks on Mac when compiling rustls
multi: Don't close connection HTTP_1_1_REQUIRED
multi: Fix slow write/upload performance on Windows
multi: Reduce Win32 API calls to improve performance
ngtcp2: Fix the cb_acked_stream_data_offset proto
- NSS: Add ciphers to map
- NSS: Make colons, commas and spaces valid separators in cipher list
nss_set_blocking: Avoid static for sock_opt
- ntlm: Precaution against super huge type2 offsets
openldap: Protect SSL-specific code with proper #ifdef
openldap: Replace ldap_ prefix on private functions
openssl: fix build error with OpenSSL < 1.0.2
openssl: Remove unneeded cast for CertOpenSystemStore()
- os400: Additional support for options metadata
progress: Fix scan-build-11 warnings
progress: Reset limit_size variables at transfer start
- progress: When possible, calculate transfer speeds with microseconds
README.md: Delete Codacy UTM parameters
- Revert "Revert 'multi: implement wait using winsock events'"
rustls: Only return CURLE_AGAIN when TLS session is fully drained
rustls: Use ALPN
sasl: Use 'unsigned short' to store mechanism
schannel: Disable auto credentials; add an option to enable it
schannel: Support strong crypto option
sectransp: Allow cipher name to be specified
sectransp: Fix EXC_BAD_ACCESS caused by uninitialized buffer
sigpipe: Ignore SIGPIPE when using wolfSSL as well
sockfilt: Avoid getting stuck waiting for writeable socket
sockfilt: Fix invalid increment of handles index variable nfd
sws: #ifdef S_IFSOCK use
- sws: Allow HTTP requests up to 2MB in size
test server: Take care of siginterrupt() deprecation
test2100: Make it run with and require IPv6
tests/disable-scan.pl: Also scan all m4 files
tests/getpart: Generate output URL encoded for better diffs
- tests: Ignore case of chunked hex numbers in tests
tls: Add USE_HTTP2 define
tool_getparam: Handle failure of curlx_convert_tchar_to_UTF8()
tool_getparam: Replace (in-place) '%20' by '+' according to RFC1866
tool_operate: Don't discard failed parallel transfer result
tool_writeout: Fix the HTTP_CODE json output
travis: Disable the failing libssh build
URL-SYNTAX: Update IDNA section for WHATWG spec changes
urlapi: "normalize" numerical IPv4 host names
vauth: Factor base64 conversions out of authentication procedures
version: Add gsasl_version to curl_version_info_data
version: Add OpenLDAP version in the output
vtls: Deduplicate some DISABLE_PROXY ifdefs
vtls: Reset ssl use flag upon negotiation failure
wolfssl: Handle SSL_write() returns 0 for error
- wolfssl: Remove SSLv3 support leftovers
I added this patch to kill the gophers server after testing that protocol, so that the port it uses can be re-used by later tests:
There is only one gophers test, so kill the server when done with it. This frees up the port, which was needed for curl-7.77.0 on Centos 7 (x86_64) where test 3001 wanted to reuse the port. --- tests/data/test1272 +++ tests/data/test1272 @@ -22,6 +22,9 @@ iMenu results error.host 1 <server> gophers </server> +<killserver> +gophers +</killserver> <name> Gophers index </name>
Rebuilt libxml2 (2.9.12) to sync with Rawhide
Updated perl-DateTime-Format-MySQL to 0.0701 as per the Fedora version
Updated perl-Exception-Base (0.2501) to avoid perl critic test, which fails on recent perls with built-in catch
Updated perl-IO-Socket-SSL to 2.071 as per the Fedora version
Updated perl-Module-CoreList to 5.20210521:
- Updated for v5.35.0
Updated perl-Test-Needs to 0.002009:
Fix tests when @INC includes directories that shouldn't have their archname or version subdirectories added
- Fix test compatibility with Windows
Fix warnings from Test::Builder if Test::Needs is loaded first, and is used to check for a Test module
- Fix location in code reported when a module check fails
- Support short forms of perl versions
- Support perl versions greater than 5
- Fix handling of v-string versions on perl 5.6
- Updated Rawhide repository with Perl packages rebuilt for Perl 5.34.0
Thursday 27th May 2021
Fedora Project
Friday 28th May 2021
Fedora Project
Updated perl-MIME-Types to 2.21 in Rawhide:
Local Packages
Updated perl-MIME-Types to 2.21 as per the Fedora version
Previous Month: April 2021
Next Month: June 2021