Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ghc-warp-tls for openSUSE:Factory checked in at 2025-03-25 22:12:13 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ghc-warp-tls (Old) and /work/SRC/openSUSE:Factory/.ghc-warp-tls.new.2696 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ghc-warp-tls" Tue Mar 25 22:12:13 2025 rev:16 rq:1255900 version:3.4.13 Changes: -------- --- /work/SRC/openSUSE:Factory/ghc-warp-tls/ghc-warp-tls.changes 2024-12-20 23:12:08.864250624 +0100 +++ /work/SRC/openSUSE:Factory/.ghc-warp-tls.new.2696/ghc-warp-tls.changes 2025-03-25 22:21:18.160718397 +0100 @@ -1,0 +2,11 @@ +Mon Mar 17 01:18:25 UTC 2025 - Peter Simons <psim...@suse.com> + +- Update warp-tls to version 3.4.13. + ## 3.4.13 + + * Introduced new smart constructor `tlsSettingsSni` to make it more convenient + to dynamically change certificates. Deprecates `tlsSettingsRef` and + `tlsSettingsChainRef`. + [#1025](https://github.com/yesodweb/wai/pull/1025) + +------------------------------------------------------------------- Old: ---- warp-tls-3.4.12.tar.gz New: ---- warp-tls-3.4.13.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ghc-warp-tls.spec ++++++ --- /var/tmp/diff_new_pack.QdTArr/_old 2025-03-25 22:21:19.300765714 +0100 +++ /var/tmp/diff_new_pack.QdTArr/_new 2025-03-25 22:21:19.324766710 +0100 @@ -1,7 +1,7 @@ # # spec file for package ghc-warp-tls # -# Copyright (c) 2024 SUSE LLC +# Copyright (c) 2025 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -19,7 +19,7 @@ %global pkg_name warp-tls %global pkgver %{pkg_name}-%{version} Name: ghc-%{pkg_name} -Version: 3.4.12 +Version: 3.4.13 Release: 0 Summary: HTTP over TLS support for Warp via the TLS package License: MIT ++++++ warp-tls-3.4.12.tar.gz -> warp-tls-3.4.13.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/warp-tls-3.4.12/ChangeLog.md new/warp-tls-3.4.13/ChangeLog.md --- old/warp-tls-3.4.12/ChangeLog.md 2001-09-09 03:46:40.000000000 +0200 +++ new/warp-tls-3.4.13/ChangeLog.md 2001-09-09 03:46:40.000000000 +0200 @@ -1,5 +1,12 @@ # ChangeLog +## 3.4.13 + +* Introduced new smart constructor `tlsSettingsSni` to make it more convenient + to dynamically change certificates. Deprecates `tlsSettingsRef` and + `tlsSettingsChainRef`. + [#1025](https://github.com/yesodweb/wai/pull/1025) + ## 3.4.12 * Rethrowing asynchronous exceptions diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/warp-tls-3.4.12/Network/Wai/Handler/WarpTLS.hs new/warp-tls-3.4.13/Network/Wai/Handler/WarpTLS.hs --- old/warp-tls-3.4.12/Network/Wai/Handler/WarpTLS.hs 2001-09-09 03:46:40.000000000 +0200 +++ new/warp-tls-3.4.13/Network/Wai/Handler/WarpTLS.hs 2001-09-09 03:46:40.000000000 +0200 @@ -35,6 +35,9 @@ tlsSettingsChainRef, CertSettings, + -- ** Dynamically retrieved + tlsSettingsSni, + -- * Accessors tlsCredentials, tlsLogging, @@ -161,6 +164,22 @@ { certSettings = CertFromMemory cert chainCerts key } +-- | Smart constructor for TLS settings that obtains its credentials during +-- Server Name Indication. Can be used to return different credentials +-- depending on the hostname but also to retrieve dynamically updated +-- credentials from an IORef. Credentials can be loaded from PEM-encoded chain +-- and key files using 'TLS.credentialLoadX509'. +-- +-- @since 3.4.13 +tlsSettingsSni :: (Maybe TLS.HostName -> IO TLS.Credentials) -> TLSSettings +tlsSettingsSni onServerNameIndicationHook = + defaultTlsSettings + { tlsCredentials = Just (TLS.Credentials []) + , tlsServerHooks = (tlsServerHooks defaultTlsSettings) + { TLS.onServerNameIndication = onServerNameIndicationHook + } + } + -- | A smart constructor for 'TLSSettings', but uses references to in-memory -- representations of the certificate and key based on 'defaultTlsSettings'. -- @@ -176,6 +195,8 @@ { certSettings = CertFromRef cert [] key } +{-# DEPRECATED tlsSettingsRef "This function was added to allow Warp to serve new certificates without restarting, but it has always behaved the same as 'tlsSettingsMemory'. It will be removed in the next major release. To retain existing behavior, swich to 'tlsSettingsMemory'. To dynamically update credentials, see 'tlsSettingsSni'." #-} + -- | A smart constructor for 'TLSSettings', but uses references to in-memory -- representations of the certificate and key based on 'defaultTlsSettings'. -- @@ -193,6 +214,8 @@ { certSettings = CertFromRef cert chainCerts key } +{-# DEPRECATED tlsSettingsChainRef "This function was added to allow Warp to serve new certificates without restarting, but it has always behaved the same as 'tlsSettingsChainMemory'. It will be removed in the next major release. To retain existing behavior, swich to 'tlsSettingsChainMemory'. To dynamically update credentials, see 'tlsSettingsSni'." #-} + ---------------------------------------------------------------- -- | Running 'Application' with 'TLSSettings' and 'Settings'. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/warp-tls-3.4.12/warp-tls.cabal new/warp-tls-3.4.13/warp-tls.cabal --- old/warp-tls-3.4.12/warp-tls.cabal 2001-09-09 03:46:40.000000000 +0200 +++ new/warp-tls-3.4.13/warp-tls.cabal 2001-09-09 03:46:40.000000000 +0200 @@ -1,5 +1,5 @@ Name: warp-tls -Version: 3.4.12 +Version: 3.4.13 Synopsis: HTTP over TLS support for Warp via the TLS package License: MIT License-file: LICENSE
