r24642 - in /desktop/unstable/libsoup2.4/debian: changelog patches/ patches/01_disable_tls1.2.patch patches/series
joss at users.alioth.debian.org
joss at users.alioth.debian.org
Fri Jul 2 17:25:50 UTC 2010
Author: joss
Date: Fri Jul 2 17:25:46 2010
New Revision: 24642
URL: http://svn.debian.org/wsvn/pkg-gnome/?sc=1&rev=24642
Log:
* New upstream release.
* 01_disable_tls1.2.patch: stolen from git master. Disable TLS 1.2 and
use SSL 3.0 instead. Closes: #576339.
Added:
desktop/unstable/libsoup2.4/debian/patches/
desktop/unstable/libsoup2.4/debian/patches/01_disable_tls1.2.patch
desktop/unstable/libsoup2.4/debian/patches/series
Modified:
desktop/unstable/libsoup2.4/debian/changelog
Modified: desktop/unstable/libsoup2.4/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/libsoup2.4/debian/changelog?rev=24642&op=diff
==============================================================================
--- desktop/unstable/libsoup2.4/debian/changelog [utf-8] (original)
+++ desktop/unstable/libsoup2.4/debian/changelog [utf-8] Fri Jul 2 17:25:46 2010
@@ -1,3 +1,11 @@
+libsoup2.4 (2.30.2-1) unstable; urgency=low
+
+ * New upstream release.
+ * 01_disable_tls1.2.patch: stolen from git master. Disable TLS 1.2 and
+ use SSL 3.0 instead. Closes: #576339.
+
+ -- Josselin Mouette <joss at debian.org> Fri, 02 Jul 2010 19:25:29 +0200
+
libsoup2.4 (2.30.1-1) unstable; urgency=low
[ Emilio Pozuelo Monfort ]
Added: desktop/unstable/libsoup2.4/debian/patches/01_disable_tls1.2.patch
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/libsoup2.4/debian/patches/01_disable_tls1.2.patch?rev=24642&op=file
==============================================================================
--- desktop/unstable/libsoup2.4/debian/patches/01_disable_tls1.2.patch (added)
+++ desktop/unstable/libsoup2.4/debian/patches/01_disable_tls1.2.patch [utf-8] Fri Jul 2 17:25:46 2010
@@ -1,0 +1,29 @@
+From 01a43ad9824fba77384534c6d588e0e0d653986e Mon Sep 17 00:00:00 2001
+From: Dan Winship <danw at gnome.org>
+Date: Tue, 29 Jun 2010 13:43:20 +0000
+Subject: Disable TLS 1.2 in addition to 1.0 and 1.1
+
+Due to bug 581342 we want to only negotiate SSL 3.0. Previously we
+were telling gnutls to not do TLS1.0 or TLS1.1, but that means with
+newer versions of gnutls that support TLS1.2 it would try to negotiate
+that instead and generally fail. Fix that by disabling TLS1.2 too
+(which works fine even with gnutls versions that don't support TLS1.2
+yet).
+
+https://bugzilla.gnome.org/show_bug.cgi?id=622857
+---
+diff --git a/libsoup/soup-gnutls.c b/libsoup/soup-gnutls.c
+index cb0fbe5..0b57f28 100644
+--- a/libsoup/soup-gnutls.c
++++ b/libsoup/soup-gnutls.c
+@@ -477,7 +477,7 @@ soup_ssl_wrap_iochannel (GIOChannel *sock, gboolean non_blocking,
+ goto THROW_CREATE_ERROR;
+
+ /* See http://bugzilla.gnome.org/show_bug.cgi?id=581342 */
+- if (gnutls_priority_set_direct (session, "NORMAL:!VERS-TLS1.1:!VERS-TLS1.0", NULL) != 0)
++ if (gnutls_priority_set_direct (session, "NORMAL:!VERS-TLS1.2:!VERS-TLS1.1:!VERS-TLS1.0", NULL) != 0)
+ goto THROW_CREATE_ERROR;
+
+ if (gnutls_credentials_set (session, GNUTLS_CRD_CERTIFICATE,
+--
+cgit v0.8.3.1
Added: desktop/unstable/libsoup2.4/debian/patches/series
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/libsoup2.4/debian/patches/series?rev=24642&op=file
==============================================================================
--- desktop/unstable/libsoup2.4/debian/patches/series (added)
+++ desktop/unstable/libsoup2.4/debian/patches/series [utf-8] Fri Jul 2 17:25:46 2010
@@ -1,0 +1,1 @@
+01_disable_tls1.2.patch
More information about the pkg-gnome-commits
mailing list