Your message dated Sun, 12 Feb 2012 16:50:26 +0000
with message-id <[email protected]>
and subject line Bug#659035: fixed in mumble 1.2.3-277-g98f4ac1-1
has caused the Debian Bug report #659035,
regarding mumble: Fix certificate validation with QT 4.8.0
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
659035: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659035
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: mumble
Version: 1.2.3-2
Severity: normal
Tags: patch
User: [email protected]
Usertags: origin-ubuntu precise ubuntu-patch
*** /tmp/tmp4vG35i/bug_body
In Ubuntu, the attached patch was applied to achieve the following:
When compiling with QT 4.8, mumble can no longer validate server
certificates. This patch works around the issue.
* debian/patches/0003-fix-cert-validation.patch: Fix certificate
validation with QT 4.8. For some reason, the new on-demand root cert
loading is not working with mumble. (LP: #928296)
Thanks for considering the patch.
-- System Information:
Debian Release: wheezy/sid
APT prefers precise-updates
APT policy: (500, 'precise-updates'), (500, 'precise-security'), (500,
'precise-proposed'), (500, 'precise')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-12-generic (SMP w/4 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru mumble-1.2.3/debian/changelog mumble-1.2.3/debian/changelog
diff -Nru mumble-1.2.3/debian/patches/0003-fix-cert-validation.patch mumble-1.2.3/debian/patches/0003-fix-cert-validation.patch
--- mumble-1.2.3/debian/patches/0003-fix-cert-validation.patch 1969-12-31 19:00:00.000000000 -0500
+++ mumble-1.2.3/debian/patches/0003-fix-cert-validation.patch 2012-02-07 10:24:56.000000000 -0500
@@ -0,0 +1,21 @@
+Description: Fix certificate validation with QT 4.8. For some reason, the
+ new on-demand root cert loading is not working with mumble.
+Author: Marc Deslauriers <[email protected]>
+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/mumble/+bug/928296
+
+Index: mumble-1.2.3/src/SSL.cpp
+===================================================================
+--- mumble-1.2.3.orig/src/SSL.cpp 2012-02-07 09:53:41.766241152 -0500
++++ mumble-1.2.3/src/SSL.cpp 2012-02-07 10:18:37.902226883 -0500
+@@ -252,6 +252,11 @@
+ QSslSocket::setDefaultCaCertificates(ql);
+ #endif // NO_SYSTEM_CA_OVERRIDE
+
++#if QT_VERSION >= 0x040800
++ // Don't perform on-demand loading of root certificates
++ QSslSocket::setDefaultCaCertificates(QSslSocket::systemCaCertificates());
++#endif
++
+ for (unsigned int i=0;i<sizeof(recommended_cas)/sizeof(recommended_cas[0]);++i) {
+ QSslCertificate cert(recommended_cas[i]);
+ if (! QSslSocket::defaultCaCertificates().contains(cert)) {
--- End Message ---
--- Begin Message ---
Source: mumble
Source-Version: 1.2.3-277-g98f4ac1-1
We believe that the bug you reported is fixed in the latest version of
mumble, which is due to be installed in the Debian FTP archive:
mumble-dbg_1.2.3-277-g98f4ac1-1_amd64.deb
to main/m/mumble/mumble-dbg_1.2.3-277-g98f4ac1-1_amd64.deb
mumble-server-web_1.2.3-277-g98f4ac1-1_all.deb
to main/m/mumble/mumble-server-web_1.2.3-277-g98f4ac1-1_all.deb
mumble-server_1.2.3-277-g98f4ac1-1_amd64.deb
to main/m/mumble/mumble-server_1.2.3-277-g98f4ac1-1_amd64.deb
mumble_1.2.3-277-g98f4ac1-1.debian.tar.gz
to main/m/mumble/mumble_1.2.3-277-g98f4ac1-1.debian.tar.gz
mumble_1.2.3-277-g98f4ac1-1.dsc
to main/m/mumble/mumble_1.2.3-277-g98f4ac1-1.dsc
mumble_1.2.3-277-g98f4ac1-1_amd64.deb
to main/m/mumble/mumble_1.2.3-277-g98f4ac1-1_amd64.deb
mumble_1.2.3-277-g98f4ac1.orig.tar.gz
to main/m/mumble/mumble_1.2.3-277-g98f4ac1.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Patrick Matthäi <[email protected]> (supplier of updated mumble package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 12 Feb 2012 16:43:52 +0100
Source: mumble
Binary: mumble mumble-server mumble-dbg mumble-server-web
Architecture: source all amd64
Version: 1.2.3-277-g98f4ac1-1
Distribution: experimental
Urgency: low
Maintainer: Debian VoIP Team <[email protected]>
Changed-By: Patrick Matthäi <[email protected]>
Description:
mumble - Low latency VoIP client
mumble-dbg - Low latency VoIP client (debugging symbols)
mumble-server - Low latency VoIP server
mumble-server-web - Web scripts for mumble-server
Closes: 627139 657632 659035 659039
Changes:
mumble (1.2.3-277-g98f4ac1-1) experimental; urgency=low
.
* New upstream snapshot from 12.02.2012.
- Refresh patch 01-fix-spelling-error.
- Word readable file permissions on mumble database are fixed in this
snapshot.
Closes: #659039
* Add Dutch debconf translation.
Closes: #657632
* Add patch 02-reject-with-ip-in-log to show up the IP address of a rejected
connection in the mumble-server log.
Closes: #627139
* Add patch 03-fix-cert-validation from Marc Deslauriers, which fixes the
certificate validation with Qt 4.8.
Closes: #659035
* Add patch 05-lsb-description which fixes the lintian warning
init.d-script-missing-lsb-description.
Checksums-Sha1:
6dbe618ee66fc66ef10c56b819f4b986f470a403 2896 mumble_1.2.3-277-g98f4ac1-1.dsc
ac4649d2c0d606c110f9b548f62aa055fca47a95 3287593
mumble_1.2.3-277-g98f4ac1.orig.tar.gz
a0728fa77222dd816c4fbfb500a13b89ab3f9a9c 31024
mumble_1.2.3-277-g98f4ac1-1.debian.tar.gz
1738aa95094408ff81e2a91e35a5ba85531735e7 122242
mumble-server-web_1.2.3-277-g98f4ac1-1_all.deb
7ad74183faad2cf60e15f65107fcf4a6d1873ffb 2846448
mumble_1.2.3-277-g98f4ac1-1_amd64.deb
d8670726d7c11146d39d961163e8e2ee8a69378e 956276
mumble-server_1.2.3-277-g98f4ac1-1_amd64.deb
7f9d3ea3e70e420ca729c55fcec2e8ae2c35de13 28297966
mumble-dbg_1.2.3-277-g98f4ac1-1_amd64.deb
Checksums-Sha256:
b74b8ae6201c88b870e38d98c979d605084fa447350f4d4e1796aabcaa4110f9 2896
mumble_1.2.3-277-g98f4ac1-1.dsc
905bf0ed5dbe593c90e806fe8cb6d6071da0f92cbaaaa12617f73c7394b96e8e 3287593
mumble_1.2.3-277-g98f4ac1.orig.tar.gz
8cd8d0ec84d03665575a0af7d8c0e279d1741338fedc6c3af97052a2b8b8f1a8 31024
mumble_1.2.3-277-g98f4ac1-1.debian.tar.gz
5dcbcbb8ad193d800d17357d321f3af840c666f0b6bc0f6fac5b73b0eb502274 122242
mumble-server-web_1.2.3-277-g98f4ac1-1_all.deb
13ecf2038626fabfd4f03d7cd21f2908a24fc66244535744103b9670b8fd809c 2846448
mumble_1.2.3-277-g98f4ac1-1_amd64.deb
009bf42177c84ba2350642e306da802c00cc04053d34d1ea03da8e8f097a7695 956276
mumble-server_1.2.3-277-g98f4ac1-1_amd64.deb
5ee4db587b507436ec03b5fb9a42bece7e0ba6a9fbe98478921f368785d1d889 28297966
mumble-dbg_1.2.3-277-g98f4ac1-1_amd64.deb
Files:
b565309f257b385d586c2f53dceec60f 2896 sound optional
mumble_1.2.3-277-g98f4ac1-1.dsc
bf7579ee5dc02e0df17d598547859b72 3287593 sound optional
mumble_1.2.3-277-g98f4ac1.orig.tar.gz
38867b991562225164bcf9ccf7b15314 31024 sound optional
mumble_1.2.3-277-g98f4ac1-1.debian.tar.gz
d28c52029ae15213effd69e74a559578 122242 sound optional
mumble-server-web_1.2.3-277-g98f4ac1-1_all.deb
dd0ad8e4cb88bc0e0002a2057deaf109 2846448 sound optional
mumble_1.2.3-277-g98f4ac1-1_amd64.deb
4b2f900f19a6b89ea765c7e36aeb6164 956276 sound optional
mumble-server_1.2.3-277-g98f4ac1-1_amd64.deb
913431ba295767007bbfa3c3d2db4545 28297966 debug extra
mumble-dbg_1.2.3-277-g98f4ac1-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=XgPU
-----END PGP SIGNATURE-----
--- End Message ---