** Changed in: kdelibs (Debian)
Status: New = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/295266
Title:
KDE doesn't honor root certs chosen by ca-certificates
To manage
https://bugs.kde.org/show_bug.cgi?id=162485
** Bug watch removed: KDE Bug Tracking System #162485
https://bugs.kde.org/show_bug.cgi?id=162485
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
I just talked to Debian about this and as it stands right now there is little
interest of patching in ca-cert support as the KDE upstream is slowly moving
towards using platform certs. So instead of deviating from upstream KDE on this
they choose to wait for upstream KDE's long-term solution
Is this bug then triaged into KDE's bug tracker?
If you want to defer it to KDE upstream, please at least provide a link
to the upstream bug #
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/295266
I do not know if there is one.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/295266
Title:
KDE doesn't honor root certs chosen by ca-certificates
To manage notifications about this bug go to:
You ARE (one of the) maintainer(s), right?
How are you tracking this issue now, if you don't know if it's in KDE's
tracker?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/295266
Title:
KDE doesn't
There is no issue for me to track. Stuff is working as intended by
upstream.
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kde4libs in Ubuntu.
https://bugs.launchpad.net/bugs/295266
Title:
KDE doesn't honor root certs chosen by
** No longer affects: null
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kdelibs in Ubuntu.
https://bugs.launchpad.net/bugs/295266
Title:
KDE doesn't honor root certs chosen by ca-certificates
To manage notifications about this bug go
Here is another workaround solution that can be leveraged until KDE gets
this fixed (https://bugs.kde.org/show_bug.cgi?id=162485), or maybe if
they fix it judging by how long the bug report has been open.
My new SSL cert for uses a chained certificate, and was loading with an
authenticity check
I finally found out the one and only solution for this bug : After about
10 years of KDE exclusive use and enthusiasm, I shifted to Gnome a
couple days ago.
Just fed up with the KDE 4.x branch being a very _nice_ environment
graphically speaking but with a whole lot of things broke that worked
This should not be done anyway, unless someone who is involved with
KDE's SSL magic agrees with the proposed course of action.
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Kubuntu
The steps needed to mitigate this bug do not seem to have been taken in
Lucid. Can we please at least add Malte's workaround for Maverick?
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a
After some testing using KDE 4.3 in Kubuntu karmic I can now confirm
that Malte's fix works also for kmail. In fact, all kio slaves (like
kio_http, kio_smtp) that use the KTcpSocket class correctly support with
this fix self-signed certificates.
Kmail correctly uses the certification list that is
Even though the proposed fix will/may help to solve the Konqueror issue,
it does not fix the Kmail part of
[https://bugs.kde.org/show_bug.cgi?id=162485/ KDE bug 162485] (see
comment #25). Kmail does not use the certification list that is
connected by the symbolic link fix and therefore does not
Plus, this bug has a simple hint on how to fix it. A small symlink is
enough to improve the current situation a lot.
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Kubuntu
Bugs,
While it might be true that it should be reported upstream, ca-
certificates is a way specific to Debian/Ubuntu and some others how
certificates are handled, so it's distro-specific and should probably
tracked there.
** Changed in: kde4libs (Ubuntu)
Status: Invalid = Confirmed
--
KDE
Hi there!
Thanks for reporting this bug! Your bug seems to be a problem with the
KDE program itself, and not with our KDE packages. While we appreciate
your issue, it would be better if it was tracked at
https://bugs.kde.org, so that the KDE developers can deal with this
speedily and have direct
** Project changed: hundredpapercuts = null
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
Yes, I am a big... umm... fan of KDE bug 162485 :)
Delegating the cert storage to ca-certificates doesn't fix that bug but
IMO improves it quite a bit; I can at least add system wide CAs again
which make my CAcert servers work. And I haven't noticed any side
effects of replacing the ca bundle, so
Aye, see bug #334191 SSL support in KDE 4 is broken at a much larger
scale than outdated crt file. So this does not qualify as a paper cut at
all, more like someone-shot-me-with-a-bazooka-and-I-dont-even-have-use-
for-a-medic-anymore ;-)
** Changed in: hundredpapercuts
Status: New =
For some time now I've got this in my root's crontab:
@reboot ln -sf /etc/ssl/certs/ca-certificates.crt
/usr/share/kde4/apps/kssl/ca-bundle.crt
Which works fine. It seems (also from grepping through the sources)
like the ksslcalist is just some ancient thing from KDE3 and not needed
at all (it
** Bug watch added: Debian Bug tracker #511597
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511597
** Also affects: kdelibs (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511597
Importance: Unknown
Status: Unknown
** Changed in: kdelibs
Status: New =
** Changed in: kdelibs (Debian)
Status: Unknown = New
** Changed in: kdelibs
Status: Unknown = New
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Ubuntu
Bugs, which is
Most likely this won't be implemented for KDE 3's kdelibs, since
upstream is no longer working on KDE3.
** Changed in: kdelibs (Ubuntu)
Status: New = Won't Fix
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug
** Changed in: kde4libs (Ubuntu)
Importance: Undecided = Wishlist
Status: New = Confirmed
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed
Yes, its different: Its not PEM-encoded but stored in an ini-file.
Maybe somebody could write a patch for kdelibs to use a PEM file instead
but it seems like the SSL stuff is currently not well maintained in KDE
itself and I doubt that such a patch would go in before 4.3. So for now
the easiest
Hm, this is really... convoluted. Seems like KDE uses (at least) two files: A
PEM-file /usr/share/kde4/apps/kssl/ca-bundle.crtplus an ini-file
/usr/share/kde4/config/ksslcalist.
See also
http://websvn.kde.org/branches/KDE/4.1/kdelibs/kio/kssl/kssl/
and
Hmmm... doesn't look so hard to create a package based on ca-
certificates-java. I'll have a shot...
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed
Hi,
I'm not sure why you think ca-certificates needs to change here?
What does it not do that you want it to do?
Can kdelibs not just be changed to use the list already generated in
/etc/ssl/certs?
Thanks,
James
** Changed in: ca-certificates (Ubuntu)
Status: New = Incomplete
--
KDE
** Changed in: kdelibs
Status: Unknown = New
--
KDE doesn't honor root certs chosen by ca-certificates
https://bugs.launchpad.net/bugs/295266
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kdelibs in ubuntu.
--
kubuntu-bugs mailing
@James: Nope, ca-certificates doesn't have to be changed, I didn't know
that it already is modular enough. If you know how to remove a package
from this bug, please do so with ca-certificates :)
And nope, it can't just use the list in /etc/ssl/certs because it uses
an own ini-styled ca-bundle.
Hi,
Is kde's bundle different to /etc/ssl/certs/ca-certificates.crt?
Could it perhaps grow support for that type of bundle as well?
Thanks,
James
** Changed in: ca-certificates (Ubuntu)
Status: Incomplete = Invalid
--
KDE doesn't honor root certs chosen by ca-certificates
32 matches
Mail list logo
