Hello community, here is the log from the commit of package libsoup for openSUSE:Factory checked in at Fri Sep 24 00:07:00 CEST 2010. -------- --- GNOME/libsoup/libsoup.changes 2010-07-22 14:44:23.000000000 +0200 +++ /mounts/work_src_done/STABLE/libsoup/libsoup.changes 2010-09-20 11:33:24.000000000 +0200 @@ -1,0 +2,56 @@ +Mon Sep 20 11:29:41 CEST 2010 - vuntz@opensuse.org + +- Add libsoup-gnutls-allow-tls.patch: let gnutls try to use TLS, + instead of being SSL 3.0-only. This might lead to some websites + not being accessible with libsoup, and upstream does not want + this behavior; a proper fix needs a lot of work. See discussion + in bnc#634040. + +------------------------------------------------------------------- +Mon Sep 13 22:43:23 CEST 2010 - dimstar@opensuse.org + +- Update to version 2.31.92: + + Updated for gobject-introspection 0.9.5. Also added some new + annotations and removed a bunch of private headers from the + scanning process. + + bgo#628728: Percent-encoded characters in URIs are no longer + automatically normalized to uppercase, since apparently some + servers are stupid. + + bgo#629449: Fixed a crash when resolving a URI containing both + spaces and non-UTF8 8bit characters. + +------------------------------------------------------------------- +Tue Aug 17 15:59:00 CEST 2010 - dimstar@opensuse.org + +- Update to version 2.31.90: + + bgo#526321: libsoup now tries to connect to each IP address + associated with a hostname, if the first one fails. + + Fixed Accept-Language header generation in locales where "," is + used as the decimal point. + +------------------------------------------------------------------- +Fri Aug 6 12:32:35 CEST 2010 - vuntz@opensuse.org + +- Update to version 2.31.6: + + Disabled TLS 1.2 in addition to the already-disabled 1.1 and + 1.0, thus making libsoup usable with gnutls 2.10. [bgo#622857] + + When using libproxy 0.3 or newer, libsoup no longer leaks + proxy-related environment variables into child processes + [bgo#603285] + + Changed the way message/connection binding works in + SoupSession so that (among other things), when there are + multiple requests queued to a host, and one of them gets a + network error, the other requests are still allowed to try + to succeed, rather than all failing immediately. [bgo#619633] + + SoupSession now limits the number of times a message can be + redirected, to avoid infinite loops [bgo#604383] + + Fixed handling of certain messages where the response + headers included "Connection: close" but the server did not + actually close the connection at the end. [bgo#611481] + + Fixed some incorrect g-i annotations [bgo#621021] + + Fixed an out-of-bounds memory access when processing certain + Set-Cookie headers [bgo#620288] + + Improved msg->reason_phrase on network errors [bgo#623274] + + Fixed gir file disting [bgo#621727] + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- libsoup-2.31.2.tar.bz2 New: ---- libsoup-2.31.92.tar.bz2 libsoup-gnutls-allow-tls.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libsoup.spec ++++++ --- /var/tmp/diff_new_pack.NIBnZt/_old 2010-09-24 00:06:22.000000000 +0200 +++ /var/tmp/diff_new_pack.NIBnZt/_new 2010-09-24 00:06:22.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package libsoup (Version 2.31.2) +# spec file for package libsoup (Version 2.31.92) # # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -19,6 +19,16 @@ Name: libsoup +Summary: HTTP client/server library for GNOME +Version: 2.31.92 +Release: 1 +License: LGPLv2.1+ +Group: Development/Libraries/GNOME +Url: http://www.gnome.org +Source: ftp://ftp.gnome.org/pub/GNOME/stable/sources/libsoup/2.2/%{name}-%{version}.tar.bz2 +Source99: baselibs.conf +# PATCH-FIX-OPENSUSE libsoup-gnutls-allow-tls.patch bnc#634040 vuntz@opensuse.org -- Allow TLS usage instead of being SSL 3.0-only. Upstream does not want this, and rewriting a lot of code is needed to fix this correctly. However, the openSUSE security team wants TLS to be used if possible. This might lead to some websites being not accessible with libsoup. +Patch0: libsoup-gnutls-allow-tls.patch BuildRequires: gconf2-devel BuildRequires: glib2-devel BuildRequires: gnutls-devel @@ -30,21 +40,13 @@ BuildRequires: sqlite3-devel # We do not need these dependencies needed only for tests. #BuildRequires: apache2-mod_php5 php5-xmlrpc -License: LGPLv2.1+ -Group: Development/Libraries/GNOME +Requires: %{name}-2_4-1 = %{version} # bug437293 %ifarch ppc64 Obsoletes: libsoup-64bit %endif # -Summary: HTTP client/server library for GNOME -Version: 2.31.2 -Release: 1 -Source: ftp://ftp.gnome.org/pub/GNOME/stable/sources/libsoup/2.2/%{name}-%{version}.tar.bz2 -Source99: baselibs.conf -Url: http://www.gnome.org BuildRoot: %{_tmppath}/%{name}-%{version}-build -Requires: %{name}-2_4-1 = %{version} %description Libsoup is an HTTP client/server library for GNOME. It uses GObjects @@ -112,6 +114,7 @@ %prep %setup -q +%patch0 -p1 %build %configure\ ++++++ libsoup-2.31.2.tar.bz2 -> libsoup-2.31.92.tar.bz2 ++++++ ++++ 33466 lines of diff (skipped) ++++++ libsoup-gnutls-allow-tls.patch ++++++ Index: libsoup-2.31.92/libsoup/soup-gnutls.c =================================================================== --- libsoup-2.31.92.orig/libsoup/soup-gnutls.c +++ libsoup-2.31.92/libsoup/soup-gnutls.c @@ -477,7 +477,8 @@ soup_ssl_wrap_iochannel (GIOChannel *soc goto THROW_CREATE_ERROR; /* See http://bugzilla.gnome.org/show_bug.cgi?id=581342 */ - if (gnutls_priority_set_direct (session, "NORMAL:!VERS-TLS1.2:!VERS-TLS1.1:!VERS-TLS1.0", NULL) != 0) + /* This is what nss uses by default, see https://bugzilla.novell.com/show_bug.cgi?id=634040#c7 */ + if (gnutls_priority_set_direct (session, "NORMAL:%COMPAT:!VERS-TLS1.1", NULL) != 0) goto THROW_CREATE_ERROR; if (gnutls_credentials_set (session, GNUTLS_CRD_CERTIFICATE, ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org