Bug#948653: marked as done (stretch-pu: package mod-gnutls/0.8.2-3+deb9u2)

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Subject: Bug#948653: marked as done (stretch-pu: package mod-gnutls/0.8.2-3+deb9u2)
From: "Debian Bug Tracking System" <owner@bugs.debian.org>
Date: Sat, 18 Jul 2020 12:09:28 +0000
Message-id: <[🔎] handler.948653.D948653.159507407010213.ackdone@bugs.debian.org>
Reply-to: 948653@bugs.debian.org
References: <b8d89cdfeeda7b6d1ef96a8706a20f9525c2151b.camel@adam-barratt.org.uk> <157873886792.28867.10919055068254398610.reportbug@localhost>

Your message dated Sat, 18 Jul 2020 13:07:00 +0100
with message-id <b8d89cdfeeda7b6d1ef96a8706a20f9525c2151b.camel@adam-barratt.org.uk>
and subject line Closing requests for fixes included in 9.13 point release
has caused the Debian Bug report #948653,
regarding stretch-pu: package mod-gnutls/0.8.2-3+deb9u2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
948653: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948653
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: stretch-pu: package mod-gnutls/0.8.2-3+deb9u1
From: Adrian Bunk <bunk@debian.org>
Date: Sat, 11 Jan 2020 12:34:27 +0200
Message-id: <157873886792.28867.10919055068254398610.reportbug@localhost>

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian.org@packages.debian.org
Usertags: pu

  * Avoid deprecated ciphersuites in test suite (Closes: #907008)

FTBFS, tests were broken by gnutls28 3.5.8-5+deb9u4.

diff -Nru mod-gnutls-0.8.2/debian/changelog mod-gnutls-0.8.2/debian/changelog
--- mod-gnutls-0.8.2/debian/changelog	2017-03-12 13:37:18.000000000 +0200
+++ mod-gnutls-0.8.2/debian/changelog	2020-01-11 12:27:37.000000000 +0200
@@ -1,3 +1,10 @@
+mod-gnutls (0.8.2-3+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Avoid deprecated ciphersuites in test suite (Closes: #907008)
+
+ -- Adrian Bunk <bunk@debian.org>  Sat, 11 Jan 2020 12:27:37 +0200
+
 mod-gnutls (0.8.2-3) unstable; urgency=medium
 
   [ Thomas Klute ]
diff -Nru mod-gnutls-0.8.2/debian/patches/0001-Fix-test-16-view-status-by-changing-priority-string.patch mod-gnutls-0.8.2/debian/patches/0001-Fix-test-16-view-status-by-changing-priority-string.patch
--- mod-gnutls-0.8.2/debian/patches/0001-Fix-test-16-view-status-by-changing-priority-string.patch	1970-01-01 02:00:00.000000000 +0200
+++ mod-gnutls-0.8.2/debian/patches/0001-Fix-test-16-view-status-by-changing-priority-string.patch	2020-01-11 12:26:05.000000000 +0200
@@ -0,0 +1,38 @@
+From: Sunil Mohan Adapa <sunil@medhas.org>
+Date: Tue, 18 Sep 2018 09:41:47 -0700
+Subject: Fix test 16-view-status by changing priority string
+
+From gnutls 3.5.19 release notes:
+
+"The ciphers utilizing HMAC-SHA384 and SHA256 have been removed from the default
+priority strings. They are not necessary for compatibility or other purpose and
+provide no advantage over their SHA1 counter-parts, as they all depend on the
+legacy TLS CBC block mode."
+
+Pick a new priority string such that the cipher suite matches the default
+negotiated by gnutls 3.5.19 server and client without explicitly setting a
+priority string.
+---
+ test/tests/16_view-status/gnutls-cli.args | 2 +-
+ test/tests/16_view-status/output          | 2 +-
+ 2 files changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/test/tests/16_view-status/gnutls-cli.args b/test/tests/16_view-status/gnutls-cli.args
+index aca8ac0..470925b 100644
+--- a/test/tests/16_view-status/gnutls-cli.args
++++ b/test/tests/16_view-status/gnutls-cli.args
+@@ -1,2 +1,2 @@
+ --x509cafile=authority/x509.pem
+---priority=NONE:+VERS-TLS1.2:+AES-128-CBC:+SHA256:+RSA:+COMP-NULL:+SIGN-RSA-SHA256
++--priority=NONE:+VERS-TLS1.2:+ECDHE-RSA:+CURVE-SECP256R1:+AES-256-GCM:+AEAD:+COMP-NULL:+SIGN-RSA-SHA1
+diff --git a/test/tests/16_view-status/output b/test/tests/16_view-status/output
+index 7786244..8bfb45a 100644
+--- a/test/tests/16_view-status/output
++++ b/test/tests/16_view-status/output
+@@ -1,5 +1,5 @@
+ <dt>Using TLS:</dt><dd>yes</dd>
+-<dt>Current TLS session:</dt><dd>(TLS1.2)-(RSA)-(AES-128-CBC)-(SHA256)</dd>
++<dt>Current TLS session:</dt><dd>(TLS1.2)-(ECDHE-RSA-SECP256R1)-(AES-256-GCM)</dd>
+ </dl>
+ </body></html>
+ - Peer has closed the GnuTLS connection
diff -Nru mod-gnutls-0.8.2/debian/patches/series mod-gnutls-0.8.2/debian/patches/series
--- mod-gnutls-0.8.2/debian/patches/series	2017-03-12 13:35:37.000000000 +0200
+++ mod-gnutls-0.8.2/debian/patches/series	2020-01-11 12:26:12.000000000 +0200
@@ -6,3 +6,4 @@
 0006-Test-suite-Do-not-explicitly-set-the-mutex-type-to-d.patch
 0007-Do-not-treat-warnings-about-deprecated-declarations-.patch
 0008-Wait-for-OCSP-server-to-become-available.patch
+0001-Fix-test-16-view-status-by-changing-priority-string.patch

--- End Message ---

--- Begin Message ---

To: 881871-done@bugs.debian.org, 891657-done@bugs.debian.org, 892932-done@bugs.debian.org, 893439-done@bugs.debian.org, 893548-done@bugs.debian.org, 898006-done@bugs.debian.org, 912531-done@bugs.debian.org, 921319-done@bugs.debian.org, 927433-done@bugs.debian.org, 930374-done@bugs.debian.org, 935739-done@bugs.debian.org, 944228-done@bugs.debian.org, 948650-done@bugs.debian.org, 948651-done@bugs.debian.org, 948653-done@bugs.debian.org, 948678-done@bugs.debian.org, 949112-done@bugs.debian.org, 949367-done@bugs.debian.org, 949925-done@bugs.debian.org, 951564-done@bugs.debian.org, 951872-done@bugs.debian.org, 953123-done@bugs.debian.org, 953745-done@bugs.debian.org, 954664-done@bugs.debian.org, 954863-done@bugs.debian.org, 955394-done@bugs.debian.org, 955409-done@bugs.debian.org, 955861-done@bugs.debian.org, 956532-done@bugs.debian.org, 956534-done@bugs.debian.org, 956537-done@bugs.debian.org, 956805-done@bugs.debian.org, 956929-done@bugs.debian.org, 958192-done@bugs.debian.org, 958850-done@bugs.debian.org, 958953-done@bugs.debian.org, 958995-done@bugs.debian.org, 961020-done@bugs.debian.org, 961440-done@bugs.debian.org, 961442-done@bugs.debian.org, 961579-done@bugs.debian.org, 961804-done@bugs.debian.org, 961922-done@bugs.debian.org, 961937-done@bugs.debian.org, 961945-done@bugs.debian.org, 962068-done@bugs.debian.org, 962155-done@bugs.debian.org, 962234-done@bugs.debian.org, 962256-done@bugs.debian.org, 962264-done@bugs.debian.org, 963614-done@bugs.debian.org, 963693-done@bugs.debian.org, 963703-done@bugs.debian.org, 963942-done@bugs.debian.org, 964244-done@bugs.debian.org, 964291-done@bugs.debian.org, 964325-done@bugs.debian.org, 964340-done@bugs.debian.org, 964351-done@bugs.debian.org, 964398-done@bugs.debian.org, 964411-done@bugs.debian.org, 964456-done@bugs.debian.org, 964588-done@bugs.debian.org, 964713-done@bugs.debian.org, 964727-done@bugs.debian.org, 964764-done@bugs.debian.org, 964777-done@bugs.debian.org, 964809-done@bugs.debian.org, 964813-done@bugs.debian.org, 964861-done@bugs.debian.org, 922170-done@bugs.debian.org

Subject: Closing requests for fixes included in 9.13 point release

From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Date: Sat, 18 Jul 2020 13:07:00 +0100

Message-id: <b8d89cdfeeda7b6d1ef96a8706a20f9525c2151b.camel@adam-barratt.org.uk>
Package: release.debian.org
Version: 9.13

Hi,

All of these requests relate to updates that were included in today's
stretch point release.

Regards,

Adam
--- End Message ---

Reply to:

Prev by Date: Bug#944228: marked as done (stretch-pu: package phpmyadmin/4:4.6.6-4+deb9u1)
Next by Date: Bug#948650: marked as done (stretch-pu: package nginx/1.10.3-1+deb9u3)
Previous by thread: Bug#944228: marked as done (stretch-pu: package phpmyadmin/4:4.6.6-4+deb9u1)
Next by thread: Bug#948650: marked as done (stretch-pu: package nginx/1.10.3-1+deb9u3)
Index(es):
- Date
- Thread