From 85b22ba2eecc8f4c336fd109a1756751ed35e876 Mon Sep 17 00:00:00 2001 From: Paul Howarth Date: Jan 08 2014 14:59:01 +0000 Subject: Update to 1.56 - New upstream release 1.56 - fixed a typo in documentation of BEAST Attack - added LICENSE file copied from OpenSSL distribution to prevent complaints from various versions of kwalitee - adjusted license: in META.yml to be 'openssl' - adds support for the basic operations necessary to support ECDH for PFS, e.g. EC_KEY_new_by_curve_name, EC_KEY_free and SSL_CTX_set_tmp_ecdh - improvements to t/handle/external/50_external.t to handle the case when a test connection was not possible - added support for ALPN TLS extension - fixed a use-after-free error - fixed a problem with invalid comparison on OBJ_cmp result in t/local/36_verify.t - added support for get_peer_cert_chain() - fixed a bug that could cause stack faults: mixed up PUTBACK with SPAGAIN in ssleay_RSA_generate_key_cb_invoke(); a final PUTBACK is needed here - fixed cb->data checks and wrong refcounts on &PL_sv_undef - deleted support for SSL_get_tlsa_record_byname: it is not included in OpenSSL git master - Drop upstreamed patch for CPAN RT#91215 - Skip the Pod Coverage test, as there are naked subroutines in this release - ECC support not available in Fedora/EL until OpenSSL 1.0.1e, so patch the source accordingly to fix builds for F-12 .. F-17 --- diff --git a/Net-SSLeay-1.55-OBJ_cmp.patch b/Net-SSLeay-1.55-OBJ_cmp.patch deleted file mode 100644 index 889a952..0000000 --- a/Net-SSLeay-1.55-OBJ_cmp.patch +++ /dev/null @@ -1,12 +0,0 @@ -Index: t/local/36_verify.t -=================================================================== ---- t/local/36_verify.t (revision 387) -+++ t/local/36_verify.t (working copy) -@@ -60,6 +60,6 @@ - my $asn_object2 = Net::SSLeay::OBJ_txt2obj('1.2.3.4', 0); - ok(Net::SSLeay::OBJ_cmp($asn_object2, $asn_object) == 0, 'OBJ_cmp'); - $asn_object2 = Net::SSLeay::OBJ_txt2obj('1.2.3.5', 0); --ok(Net::SSLeay::OBJ_cmp($asn_object2, $asn_object) == 1, 'OBJ_cmp'); -+ok(Net::SSLeay::OBJ_cmp($asn_object2, $asn_object) != 0, 'OBJ_cmp'); - - ok(1, 'Finishing up'); diff --git a/Net-SSLeay-1.56-ECC.patch b/Net-SSLeay-1.56-ECC.patch new file mode 100644 index 0000000..c1c6180 --- /dev/null +++ b/Net-SSLeay-1.56-ECC.patch @@ -0,0 +1,13 @@ +# Red Hat / Fedora OpenSSL builds didn't have ECC support until 1.0.1e +# in EL-6/F-18 updates +--- SSLeay.xs ++++ SSLeay.xs +@@ -4221,7 +4221,7 @@ + SSL_CTX * ctx + RSA * rsa + +-#if OPENSSL_VERSION_NUMBER > 0x10000000L ++#if OPENSSL_VERSION_NUMBER > 0x10001050L + + EC_KEY * + EC_KEY_new_by_curve_name(nid) diff --git a/perl-Net-SSLeay.spec b/perl-Net-SSLeay.spec index 2ef9310..a956f93 100644 --- a/perl-Net-SSLeay.spec +++ b/perl-Net-SSLeay.spec @@ -1,12 +1,12 @@ Name: perl-Net-SSLeay -Version: 1.55 -Release: 6%{?dist} +Version: 1.56 +Release: 1%{?dist} Summary: Perl extension for using OpenSSL Group: Development/Libraries License: OpenSSL URL: http://search.cpan.org/dist/Net-SSLeay/ Source0: http://search.cpan.org/CPAN/authors/id/M/MI/MIKEM/Net-SSLeay-%{version}.tar.gz -Patch2: Net-SSLeay-1.55-OBJ_cmp.patch +Patch0: Net-SSLeay-1.56-ECC.patch BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu) BuildRequires: openssl, openssl-devel # =========== Module Build =========================== @@ -53,8 +53,8 @@ so you can write servers or clients for more complicated applications. %prep %setup -q -n Net-SSLeay-%{version} -# Fix usage of OBJ_cmp in the test suite (CPAN RT#91215) -%patch2 +# ECC support not available in Fedora/EL until OpenSSL 1.0.1e +%patch0 # Fix permissions in examples to avoid bogus doc-file dependencies chmod -c 644 examples/* @@ -80,13 +80,13 @@ find %{buildroot} -type f -name '*.bs' -empty -exec rm -f {} ';' rm -f %{buildroot}%{perl_vendorarch}/Net/ptrtstrun.pl %check -make test TEST_FILES="$(echo $(find t/ -name '*.t' | grep -v kwalitee | grep -v /external/))" +make test TEST_FILES="$(echo $(find t/ -name '*.t' | grep -Ev '02_pod_coverage|/external/|kwalitee'))" %clean rm -rf %{buildroot} %files -%doc Changes Credits QuickRef README examples/ +%doc Changes Credits LICENSE QuickRef README examples/ %{perl_vendorarch}/auto/Net/ %dir %{perl_vendorarch}/Net/ %{perl_vendorarch}/Net/SSLeay/ @@ -96,6 +96,31 @@ rm -rf %{buildroot} %{_mandir}/man3/Net::SSLeay::Handle.3pm* %changelog +* Wed Jan 8 2014 Paul Howarth - 1.56-1 +- Update to 1.56 + - Fixed a typo in documentation of BEAST Attack + - Added LICENSE file copied from OpenSSL distribution to prevent complaints + from various versions of kwalitee + - Adjusted license: in META.yml to be 'openssl' + - Adds support for the basic operations necessary to support ECDH for PFS, + e.g. EC_KEY_new_by_curve_name, EC_KEY_free and SSL_CTX_set_tmp_ecdh + - Improvements to t/handle/external/50_external.t to handle the case when a + test connection was not possible + - Added support for ALPN TLS extension + - Fixed a use-after-free error + - Fixed a problem with invalid comparison on OBJ_cmp result in + t/local/36_verify.t + - Added support for get_peer_cert_chain() + - Fixed a bug that could cause stack faults: mixed up PUTBACK with SPAGAIN in + ssleay_RSA_generate_key_cb_invoke(); a final PUTBACK is needed here + - Fixed cb->data checks and wrong refcounts on &PL_sv_undef + - Deleted support for SSL_get_tlsa_record_byname: it is not included in + OpenSSL git master +- Drop upstreamed patch for CPAN RT#91215 +- Skip the Pod Coverage test, as there are naked subroutines in this release +- ECC support not available in Fedora/EL until OpenSSL 1.0.1e, so patch the + source accordingly to fix builds for F-12 .. F-17 + * Fri Dec 6 2013 Paul Howarth - 1.55-6 - Fix usage of OBJ_cmp in the test suite (CPAN RT#91215) diff --git a/sources b/sources index fad0ded..b1cfccc 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -473b8d66ca69d5784bb0e428721f58e0 Net-SSLeay-1.55.tar.gz +1a5258167ad0ac6a2b695a6fdc0c6e60 Net-SSLeay-1.56.tar.gz