Bug#879278: fakeupstream.cgi: Broken google-fonts upstream (probably svn/TLS certificate)

To: submit@bugs.debian.org
Subject: Bug#879278: fakeupstream.cgi: Broken google-fonts upstream (probably svn/TLS certificate)
From: Gioele Barabucci <gioele@svario.it>
Date: Sat, 21 Oct 2017 15:15:30 +0200
Message-id: <[🔎] 101a67a8-5821-ebf2-9447-a223f0010953@svario.it>
Reply-to: Gioele Barabucci <gioele@svario.it>, 879278@bugs.debian.org

Package: qa.debian.org
Severity: important
Tags: patch

The google-fonts upstream no longer works: it always answers that thereis no version information about the requested font.

See, for examplehttps://qa.debian.org/cgi-bin/fakeupstream.cgi?upstream=google-fonts/ofl/pompiere

According to some users of the #debian-qa IRC channel, the problem seemsto be that svn does not know the all the TLS certificates in theGitHub's certificates chain.

If this is the case, could you please fix the TLS configuration in svnor apply the following patch?


--- fakeupstream.cgi.orig	2017-10-21 14:24:26.493174836 +0200
+++ fakeupstream.cgi	2017-10-21 15:02:51.161463161 +0200
@@ -797,6 +797,8 @@

 	my @command = (
 		'/usr/bin/svn',
+		'--non-interactive',
+		'--trust-server-cert',
 		'cat',
 		$svn_fontlog_url
 	);

--
Gioele Barabucci <gioele@svario.it>

Reply to:

Follow-Ups:
- Bug#879278: fakeupstream.cgi: Broken google-fonts upstream (probably svn/TLS certificate)
  - From: Paul Wise <pabs@debian.org>
- Bug#879278: marked as done (fakeupstream.cgi: Broken google-fonts upstream (probably svn/TLS certificate))
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Processed: reassign 879274 to src:linux
Next by Date: Bug#879280: fakeupstream.cgi: Use a 5xx HTTP status code in case of error
Previous by thread: Processed: reassign 879274 to src:linux
Next by thread: Bug#879278: fakeupstream.cgi: Broken google-fonts upstream (probably svn/TLS certificate)
Index(es):
- Date
- Thread