diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec index e82f9a0..6f3f63f 100644 --- a/perl-IO-Socket-SSL.spec +++ b/perl-IO-Socket-SSL.spec @@ -1,5 +1,5 @@ Name: perl-IO-Socket-SSL -Version: 1.966 +Version: 1.967 Release: 1%{?dist} Summary: Perl library for transparent SSL Group: Development/Libraries @@ -23,6 +23,7 @@ BuildRequires: perl(Net::SSLeay) >= 1.46 BuildRequires: perl(Scalar::Util) BuildRequires: perl(Socket) BuildRequires: perl(Socket6) +BuildRequires: perl(Test::More) BuildRequires: procps # Use IO::Socket::IP for IPv6 support where available, else IO::Socket::INET6 %if 0%{?fedora} > 15 || 0%{?rhel} > 6 @@ -71,6 +72,25 @@ rm -rf %{buildroot} %{_mandir}/man3/IO::Socket::SSL::Utils.3pm* %changelog +* Fri Feb 7 2014 Paul Howarth - 1.967-1 +- Update to 1.967 + - Verify the hostname inside a certificate by default with a superset of + common verification schemes instead of not verifying identity at all; for + now it will only complain if name verification failed but in the future it + will fail certificate verification, forcing you to set the expected + SSL_verifycn_name if you want to accept the certificate + - New option SSL_fingerprint and new methods get_fingerprint and + get_fingerprint_bin; together they can be used to selectively accept + specific certificates that would otherwise fail verification, like + self-signed, outdated or from unknown CAs + - Utils: + - Default RSA key length 2048 + - Digest algorithm to sign certificate in CERT_create can be given; + defaults to SHA-256 + - CERT_create can now issue non-CA self-signed certificate + - CERT_create add some more useful constraints to certificate + - Spelling fixes + * Wed Jan 22 2014 Paul Howarth - 1.966-1 - Update to 1.966 - Fixed bug introduced in 1.964 - disabling TLSv1_2 no longer worked by diff --git a/sources b/sources index e2cccd4..5e1dad4 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -af82b20feb6633f1a707d40dbbf7f590 IO-Socket-SSL-1.966.tar.gz +78b84d50e5a04c19b1d3835514dece95 IO-Socket-SSL-1.967.tar.gz