Overview
Request 182615 accepted
- new version 1.55
* Added support for TLSV1_1 and TLSV1_2 methods with
SSL_CTX_tlsv1_1_new(), SSL_CTX_tlsv1_2_new(), TLSv1_1_method() and
TLSv1_2_method(), where available in the underlying openssl.
* Added CRL support functions X509_CRL_get_ext(),
X509_CRL_get_ext_by_NID(), X509_CRL_get_ext_count(). Patch from
Franck Youssef.
* Added support for SSL_get_tlsa_record_byname() required for DANE
support in openssl*1.0.2 and later. SSL_get_tlsa_record_byname()
was added to OpenSSL with the financial assistance of .SE.
* Added X509_NAME_new and X509_NAME_hash, patched by Franck Youssef.
* Added support for SSL_export_keying_material where present
* Net::SSLeay::ASN1_INTEGER_get, since it works differntly on 32 and
64 bit platforms. Updated author and distribution location details
to airspayce.com
* Fixed a few compiler warnings in SSLeay.xs. Most of them are just
signed/unsigned pointer mismatches but there is one that actually
fixes returning what would be an arbitrary value off the stack
from get_my_thread_id if it happened to be called in a
non*threaded build.
* Added SSL_set_tlsext_host_name, SSL_get_servername,
SSL_get_servername_type, SSL_CTX_set_tlsext_servername_callback
for server side Server Name Indication (SNI) support. Patched by
kmx.
* Improvements to Net::SSLeay::read to make it easier to use with
non*blocking IO Added documentation about how to mitigatxe various
SSL/TLS vulnerabilities.
* initializes the SSL library at most once.
* Patch from kmx to protect SSLeay_add_ssl_algorithms from multiple
loads and reentrancy in multi*threaded perls. (forwarded request 181902 from lnussel)
Request History
lrupp created request
- new version 1.55
* Added support for TLSV1_1 and TLSV1_2 methods with
SSL_CTX_tlsv1_1_new(), SSL_CTX_tlsv1_2_new(), TLSv1_1_method() and
TLSv1_2_method(), where available in the underlying openssl.
* Added CRL support functions X509_CRL_get_ext(),
X509_CRL_get_ext_by_NID(), X509_CRL_get_ext_count(). Patch from
Franck Youssef.
* Added support for SSL_get_tlsa_record_byname() required for DANE
support in openssl*1.0.2 and later. SSL_get_tlsa_record_byname()
was added to OpenSSL with the financial assistance of .SE.
* Added X509_NAME_new and X509_NAME_hash, patched by Franck Youssef.
* Added support for SSL_export_keying_material where present
* Net::SSLeay::ASN1_INTEGER_get, since it works differntly on 32 and
64 bit platforms. Updated author and distribution location details
to airspayce.com
* Fixed a few compiler warnings in SSLeay.xs. Most of them are just
signed/unsigned pointer mismatches but there is one that actually
fixes returning what would be an arbitrary value off the stack
from get_my_thread_id if it happened to be called in a
non*threaded build.
* Added SSL_set_tlsext_host_name, SSL_get_servername,
SSL_get_servername_type, SSL_CTX_set_tlsext_servername_callback
for server side Server Name Indication (SNI) support. Patched by
kmx.
* Improvements to Net::SSLeay::read to make it easier to use with
non*blocking IO Added documentation about how to mitigatxe various
SSL/TLS vulnerabilities.
* initializes the SSL library at most once.
* Patch from kmx to protect SSLeay_add_ssl_algorithms from multiple
loads and reentrancy in multi*threaded perls. (forwarded request 181902 from lnussel)
factory-auto added a reviewer
Please review sources
factory-auto added a reviewer
Please review build success
factory-auto accepted review
Check script succeeded
licensedigger accepted review
{"approve": "preliminary, version number changed"}
mvyskocil accepted review
factory-repo-checker approved review
Builds for repo openSUSE_Factory
factory-repo-checker accepted review
Builds for repo openSUSE_Factory
coolo accepted request
checkin
