[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#755435: marked as done (kdepim-kresources: korganizer does not use Server Name Indication)

Your message dated Sat, 13 Sep 2014 16:52:51 +0200
with message-id <20140913145251.GA13893@gnuservers.com.ar>
and subject line Re: Bug#755435: kdepim-kresources: korganizer does not use Server Name Indication
has caused the Debian Bug report #755435,
regarding kdepim-kresources: korganizer does not use Server Name Indication
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
755435: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755435
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: kdepim-kresources
Version: 4:4.4.11.1+l10n-3+b1
Severity: normal
Tags: lfs

Dear Maintainer,
I found this bug in Korganizer, but as I had to install kdepim-kresources to be
able to use a remote calendar I think the bug is in that package.

I select "Add calendar" in the calendar view, then enter the URL to my CalDAV
server (which is an Owncloud instance) in the "Download from" field. I then
select OK and reload it. Korganizer gives me a warning that the certificate is
invalid and indeed the certificate is the wrong one. Using Wireshark I found
that whichever library is responsible for connecting to the CalDAV server does
not include a Server Name Indication extension [1] in the Client Hello. My
server (Apache2 with virtual hosting) then defaults to responding with a
different certificate than the correct one. The URL to my server is
https://cloud.antoneliasson.se/remote.php/caldav. Feel free to test against it
since the problem occurs before any authentication.

[1]: https://en.wikipedia.org/wiki/Server_Name_Indication



-- System Information:
Debian Release: 7.6
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages kdepim-kresources depends on:
ii  kdepim-runtime  4:4.4.11.1-6
ii  libc6           2.13-38+deb7u3
ii  libkabc4        4:4.8.4-2
ii  libkblog4       4:4.8.4-2
ii  libkcal4        4:4.8.4-2
ii  libkdecore5     4:4.8.4-4
ii  libkdepim4      4:4.4.11.1+l10n-3+b1
ii  libkdeui5       4:4.8.4-4
ii  libkio5         4:4.8.4-4
ii  libkpimutils4   4:4.8.4-2
ii  libkresources4  4:4.8.4-2
ii  libqtcore4      4:4.8.2+dfsg-11
ii  libqtgui4       4:4.8.2+dfsg-11
ii  libstdc++6      4.7.2-5

Versions of packages kdepim-kresources recommends:
ii  korganizer  4:4.4.11.1+l10n-3+b1

Versions of packages kdepim-kresources suggests:
ii  knotes  4:4.4.11.1+l10n-3+b1

-- no debconf information

--- End Message ---
--- Begin Message --- 
Version: 4:4.10.2-1

¡Hola Anton!

El 2014-07-24 a las 15:33 +0200, Anton Eliasson escribió:
> Also reproducible in Konqueror version 4:4.8.4-1 (no server_name extension
> sent). So this is probably a bug in a different package than
> kdepim-kresources.

This is actually an issue in kdelibs, fixed in the version 4.9.1, the
corresponding upstream bug is:
https://bugs.kde.org/show_bug.cgi?id=305237

I'm tagging this bug as fixed in the newer versions.

Happy hacking,
-- 
"Backtracking algorithms are nondeterministic, not in the sense of being
random, but in the sense of having free will."
-- Robert W. Floyd
Saludos /\/\ /\ >< `/

Attachment: signature.asc
Description: Digital signature


--- End Message ---
Reply to: