Bug#955348: marked as done (mod_ssl: Backport fix for TLS 1.3 client cert authentication for POST requests)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Tue, 31 Mar 2020 06:33:45 +0000
with message-id <E1jJAT3-000Bxv-Dj@fasolo.debian.org>
and subject line Bug#955348: fixed in apache2 2.4.43-1
has caused the Debian Bug report #955348,
regarding mod_ssl: Backport fix for TLS 1.3 client cert authentication for POST requests
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
955348: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=955348
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: mod_ssl: Backport fix for TLS 1.3 client cert authentication for POST requests
• From: Timo Aaltonen <tjaalton@debian.org>
• Date: Mon, 30 Mar 2020 13:55:03 +0300
• Message-id: <[🔎] 158556570307.409756.9617449489883039301.reportbug@leon>

Package: apache2-bin
Severity: normal

Hi,

This is something that Fedora has shipped for a few years, and it's included upstream
in trunk and also requested to be backported to 2.4.x:

https://bz.apache.org/bugzilla/show_bug.cgi?id=64242

without this freeipa needs to force TLS 1.2, and I'd like to get rid of that limitation.
I'll send a merge request shortly.

--- End Message ---

--- Begin Message ---

• To: 955348-close@bugs.debian.org
• Subject: Bug#955348: fixed in apache2 2.4.43-1
• From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
• Date: Tue, 31 Mar 2020 06:33:45 +0000
• Message-id: <E1jJAT3-000Bxv-Dj@fasolo.debian.org>
• Reply-to: Xavier Guimard <yadd@debian.org>

Source: apache2
Source-Version: 2.4.43-1
Done: Xavier Guimard <yadd@debian.org>

We believe that the bug you reported is fixed in the latest version of
apache2, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 955348@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Xavier Guimard <yadd@debian.org> (supplier of updated apache2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 31 Mar 2020 08:02:12 +0200
Source: apache2
Architecture: source
Version: 2.4.43-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Xavier Guimard <yadd@debian.org>
Closes: 914606 955348
Changes:
 apache2 (2.4.43-1) unstable; urgency=medium
 .
   [ Timo Aaltonen ]
   * mod_ssl: Add patches to fix TLS 1.3 client cert authentication for POST
     requests (Closes: #955348)
 .
   [ Moritz Schlarb ]
   * Fix logrotate script for multi-instance (Closes: #914606)
 .
   [ Xavier Guimard ]
   * New upstream version 2.4.43
   * Refresh patches
Checksums-Sha1: 
 e6720767a66e0a0f7a84c10b62b18b047a057a96 3498 apache2_2.4.43-1.dsc
 15d8605b094dfe5e283cd9e90770368dd14e26f2 9348230 apache2_2.4.43.orig.tar.gz
 e217995394ad01e4b1572ba8ecb7c25008cafd90 488 apache2_2.4.43.orig.tar.gz.asc
 0475b38fee9b3ea1bfc7fc91462ff453a5038a02 1015576 apache2_2.4.43-1.debian.tar.xz
Checksums-Sha256: 
 1f79e6ac3669395bb344ac42cce8e9b01db6567545dd80d57a673b6a4c439db6 3498 apache2_2.4.43-1.dsc
 2624e92d89b20483caeffe514a7c7ba93ab13b650295ae330f01c35d5b50d87f 9348230 apache2_2.4.43.orig.tar.gz
 b5fcb9366beebd0873ffa8f84b1415ed34e350f2cbbe9013f710b6ba1cb3291e 488 apache2_2.4.43.orig.tar.gz.asc
 159434868a2332bb2d0f22c4ca12913c7c60ad0dd550b9035ba9a13c0bcaa5c0 1015576 apache2_2.4.43-1.debian.tar.xz
Files: 
 9245410e9b58277132c77f2d6b99387d 3498 httpd optional apache2_2.4.43-1.dsc
 1e0298e7bf0afdb57e6a071c53a322e1 9348230 httpd optional apache2_2.4.43.orig.tar.gz
 b5aa2b5a61bd85fdfe11ae1452a2e59b 488 httpd optional apache2_2.4.43.orig.tar.gz.asc
 10125daef5e97a2932eeaa7aa7921994 1015576 httpd optional apache2_2.4.43-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAl6C3zkACgkQ9tdMp8mZ
7uk1VQ/7BYkEuXsb5ZbyB+Wiz/M/JdFhZTLEwSpivB3IF3fNsv9e2/kJaLYyILqh
33OfebSMDTrEaifaO/73Pz2zGloj6KA21YkZsIb7BF9HCO0UsEu2gQf+ONVQHXCf
JSA1U8iLwCHAq9oi3MX0Bj3/w2wdUikMhpJJxjDbhzQDzElM8xG8Ksu/qpiJe+cx
wQvKqLqZWb1iGJfQzGgcXRX/egECOq01GdwHANA+OLww+CrzeqqS+v9q7l7lulQM
/5vel0ZjUk8it0OJmzsr/DHgDsXChXB8NMHEi376IFl6rnOYEMp9a6e//vSB64Qe
j3L/yIbdw0E3q08IWMjNioq7c8Vs+P3i7NQ4Qr54IHOoUMq7vc9YElIPQh8/UhUz
0S5AL7JkURumezpBow9bUS5A/TuyWFISgjgkLNDpzSYUsgJtt4VGOCgOs2GoAeRO
A45zGbg6DNOUREpOQIiblpTjJk41l5+ryx6/0UbtOQB5c/dp/9osX1K/n7PKEeet
b1jB3q9g9cNgfzerj0JYNX1O7QUpSELdgLSgKG8zzG6u6//BP/LyZipC5z8vP/Bs
B2VOE7sGgaposXO1IFz2z48Tw2FIYlQA6CHNShxKZKJlUjdi2790bKGeLB/3dwYU
S70yVSExF//rL8JyaVADM9lyr3LXlaaXc8KjBE2ZmW+gxmFRALw=
=+CIl
-----END PGP SIGNATURE-----

--- End Message ---