Opened 4 years ago

Closed 4 years ago

#15582 closed enhancement (fixed)

neon-0.32.1

Reported by: Bruce Dubbs Owned by: Bruce Dubbs
Priority: normal Milestone: 11.1
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New minor version.

Change History (4)

comment:1 by Xi Ruoyao, 4 years ago

It works with OpenSSL-3.0.0 fine.

It seems running xmlto during make install.

comment:2 by Bruce Dubbs, 4 years ago

Owner: changed from blfs-book to Bruce Dubbs
Status: newassigned

comment:3 by Bruce Dubbs, 4 years ago

Changes in release 0.32.1:

  • Fix configure CFLAGS handling in Kerberos detection.
  • Various spelling fixes.

Changes in release 0.32.0:

  • Interface changes:
    • API and ABI backwards-compatible with 0.27.x and later
    • NE_AUTH_DIGEST now only enables RFC 2617/7616 auth by default; to enable weaker RFC 2069 Digest, use NE_AUTH_LEGACY_DIGEST (treated as a security enhancement, not an API/ABI break)
  • Interface clarifications:
    • ne_auth.h: use of non-ASCII usernames with the ne_auth_creds callback type is now rejected for Digest auth since the encoding is not specified. ne_add_auth() can be used instead.
    • ne_request.h: the ne_create_request_fn callback is passed the request-target using RFC 7230 terminology
  • New interfaces and features:
    • ne_string.h: added ne_strhash(), ne_vstrhash(), ne_strparam()
    • ne_auth.h: added RFC 7616 (Digest authentication) support, including userhash=, username*= and SHA-2 algorithms (SHA-2 requires GnuTLS/OpenSSL). added NE_AUTH_LEGACY_DIGEST
    • ne_auth.h: added ne_add_auth() unified auth callback interface, accepts (only) UTF-8 usernames, uses a larger password buffer, and has different/improved attempt counter semantics.
    • RFC 7617 scoping rules are now applied for Basic authentication.
    • ne_ssl.h: added ne_ssl_cert_hdigest()
    • ne_socket.h: added ne_sock_shutdown()
    • sendmsg()/send() are used with the MSG_NOSIGNAL flag to write to sockets on Unix, rather than write()/writev(), avoiding SIGPIPE
    • explicit_bzero() is used where available to clear credentials
  • Bug fixes:
    • fixed TLS connection shutdown handling for OpenSSL 3
    • fix various Coverity and cppcheck warnings
    • Kerberos library detection uses pkg-config where possible.
    • fix some configure checks on Win32
    • fix some configure errors on MacOS

comment:4 by Bruce Dubbs, 4 years ago

Resolution: fixed
Status: assignedclosed

Fixed at commit 3619a7bbb1fb8acb98bcd0337423fd677fe20392 

Package updates.
    Update to sudo-1.9.8p2.
    Update to xterm-369.
    Update to mesa-21.2.2.
    Update to nghttp2-1.45.1.
    Update to neon-0.32.1.
    Update to btrfs-progs-v5.14.1.
Note: See TracTickets for help on using tickets.