Bug#858476: marked as done (RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library)

To: Adam Borowski <kilobyte@angband.pl>
Subject: Bug#858476: marked as done (RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 08 Apr 2017 23:39:03 +0000
Message-id: <[🔎] handler.858476.D858476.1491694498852.ackdone@bugs.debian.org>
References: <20170408233452.zc4bayoix7qn27k2@angband.pl> <149021014916.15932.9449073249720143901.reportbug@lechner-desktop.us-core.com>

Your message dated Sun, 9 Apr 2017 01:34:52 +0200
with message-id <20170408233452.zc4bayoix7qn27k2@angband.pl>
and subject line Re: Bug#858476: RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library
has caused the Debian Bug report #858476,
regarding RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
858476: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858476
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library
From: Felix Lechner <felix.lechner@lease-up.com>
Date: Wed, 22 Mar 2017 12:15:49 -0700
Message-id: <149021014916.15932.9449073249720143901.reportbug@lechner-desktop.us-core.com>

Package: sponsorship-requests
Severity: important

Dear mentors,

I am looking for a sponsor for my package "wolfssl":

  * Package name    : wolfssl
    Version         : 3.10.2+dfsg-1
    Upstream Author : wolfSSL Inc. <support@wolfssl.com>
  * URL             : www.wolfssl.com
  * License         : various
    Section         : libs

It builds those binary packages:

    libwolfssl10 - wolfSSL encryption library
    libwolfssl-dev - Development files for the wolfSSL encryption library

To access further information about this package, please visit the following
URL:

    https://mentors.debian.net/package/wolfssl

Alternatively, one can download the package with dget using this command:

  dget -x
https://mentors.debian.net/debian/pool/main/w/wolfssl/wolfssl_3.10.2+dfsg-1.dsc

More information about wolfSSL can be obtained from https://www.wolfssl.com.

  Changes since the last upload:

  * New upstream release.
  * New major version is 10
  * New maintainer email address
  * Fixes a low level vulnerability for buffer overflow when loading a
malformed temporary DH file
  * Fixes a medium level vulnerability for processing of OCSP response
  * Fixes CVE-2017-6076, a low level vulnerability for a potential cache attack
on RSA operations (Closes: #856114)

Best regards,
Felix Lechner




-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

--- End Message ---

--- Begin Message ---

To: 858476-done@bugs.debian.org
Subject: Re: Bug#858476: RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library
From: Adam Borowski <kilobyte@angband.pl>
Date: Sun, 9 Apr 2017 01:34:52 +0200
Message-id: <20170408233452.zc4bayoix7qn27k2@angband.pl>
In-reply-to: <[🔎] CAFHYt55_79fjpfyOgGXpL9P3EUBVDccbY1Hf7Kr5GZ0GTtY=QA@mail.gmail.com>
References: <149021014916.15932.9449073249720143901.reportbug@lechner-desktop.us-core.com> <[🔎] 20170408025308.idcp5io6pby7iymp@angband.pl> <[🔎] CAFHYt55_79fjpfyOgGXpL9P3EUBVDccbY1Hf7Kr5GZ0GTtY=QA@mail.gmail.com>

On Sat, Apr 08, 2017 at 03:51:05PM -0700, Felix Lechner wrote:
> For some reason, the latest version enabled SHA-224 only on amd64. Upstream
> advised that the algorithm should be available on all architectures. I
> uploaded an updated package to Mentors
> <https://mentors.debian.net/package/wolfssl>, but did not cross-build. Will
> you please try again? Thank you!

I haven't cross-built either. :þ

As for native builds, though, I tested: amd64 i386 x32 armhf arm64.

There's one thing amiss:
============================================================================
Testsuite summary for wolfssl 3.10.2
============================================================================
# TOTAL: 0
# PASS:  0
# SKIP:  0
# XFAIL: 0
# FAIL:  0
# XPASS: 0
# ERROR: 0
============================================================================
We really want problems to pop up at build time rather than bite some user
who tries to use the package...

I've uploaded as-is, though -- "release early, release often".  Reviewing
two sets of changes is easier than reviewing one big pile.

Because of a trip to binNEW, I nominated armhf as the sacrificial
no-build-log architecture.


ᛗᛖᛟᚹ!
-- 
⢀⣴⠾⠻⢶⣦⠀ Meow!
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ Collisions shmolisions, let's see them find a collision or second
⠈⠳⣄⠀⠀⠀⠀ preimage for double rot13!

--- End Message ---

Reply to:

Prev by Date: Bug#858476: RFS: wolfssl/3.10.2+dfsg-1 [RC] -- wolfSSL encryption library
Next by Date: Bug#859776: marked as done (sponsorship-requests: vis/0.3 [ITP] -- A a modern and legacy free Vim-like text editor)
Previous by thread: Bug#840750: RFS: picocoin/0.1-2.gbp43047g
Next by thread: Bug#859073: RFS: groonga/7.0.1-1
Index(es):
- Date
- Thread