[Pkg-gnutls-commits] r752 - in /packages/gnutls26/trunk/debian: changelog patches/15_chainverify_expiredcert.diff

ametzler at users.alioth.debian.org ametzler at users.alioth.debian.org
Thu Aug 6 18:14:38 UTC 2009 

Author: ametzler
Date: Thu Aug  6 18:14:38 2009
New Revision: 752

URL: http://svn.debian.org/wsvn/pkg-gnutls/?sc=1&rev=752
Log:
Add 15_chainverify_expiredcert.diff to fix testsuite error caused by expired certificate.

Added:
    packages/gnutls26/trunk/debian/patches/15_chainverify_expiredcert.diff
Modified:
    packages/gnutls26/trunk/debian/changelog

Modified: packages/gnutls26/trunk/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnutls/packages/gnutls26/trunk/debian/changelog?rev=752&op=diff
==============================================================================
--- packages/gnutls26/trunk/debian/changelog (original)
+++ packages/gnutls26/trunk/debian/changelog Thu Aug  6 18:14:38 2009
@@ -1,16 +1,17 @@
-gnutls26 (2.8.1-2) UNRELEASED; urgency=low
-
-  * NOT RELEASED YET
+gnutls26 (2.8.1-2) unstable; urgency=low
 
   [ Simon Josefsson ]
   * Remove cruft in rules file.
   * Remove patches/15_tasn1inpc.diff, not needed.
 
   [ Andreas Metzler ]
-  * Finally add a entry to the NEWS.Debian file concerning the deprecation of
+  * Finally add an entry to the NEWS.Debian file concerning the deprecation of
     RSA-MD2 and RSA-MD5 for signature verification. Closes: #514578
-
- -- Andreas Metzler <ametzler at debian.org>  Thu, 11 Jun 2009 09:36:57 +0200
+  * Upload to unstable.
+  * 15_chainverify_expiredcert.diff: New patch, pulled from upstream GIT.
+    Fix testsuite error caused by expired certificate.
+
+ -- Andreas Metzler <ametzler at debian.org>  Thu, 06 Aug 2009 19:12:51 +0200
 
 gnutls26 (2.8.1-1) experimental; urgency=low
 

Added: packages/gnutls26/trunk/debian/patches/15_chainverify_expiredcert.diff
URL: http://svn.debian.org/wsvn/pkg-gnutls/packages/gnutls26/trunk/debian/patches/15_chainverify_expiredcert.diff?rev=752&op=file
==============================================================================
--- packages/gnutls26/trunk/debian/patches/15_chainverify_expiredcert.diff (added)
+++ packages/gnutls26/trunk/debian/patches/15_chainverify_expiredcert.diff Thu Aug  6 18:14:38 2009
@@ -1,0 +1,26 @@
+From 5ef87c82df86c6a23da330683d5d356e117458e4 Mon Sep 17 00:00:00 2001
+From: Simon Josefsson <simon at josefsson.org>
+Date: Mon, 03 Aug 2009 21:40:23 +0000
+Subject: Fix expected output, a cert have expired.
+
+---
+diff --git a/tests/chainverify.c b/tests/chainverify.c
+index 73a3a85..f394a28 100644
+--- a/tests/chainverify.c
++++ b/tests/chainverify.c
+@@ -690,8 +690,12 @@ static struct
+     0, GNUTLS_CERT_SIGNER_NOT_CA | GNUTLS_CERT_INVALID },
+   { "hbci v1 fail", hbci_chain, &hbci_chain[2],
+     0, GNUTLS_CERT_SIGNER_NOT_CA | GNUTLS_CERT_INVALID},
++  { "hbci v1 ok expired", hbci_chain, &hbci_chain[2],
++    GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT,
++    GNUTLS_CERT_EXPIRED | GNUTLS_CERT_INVALID },
+   { "hbci v1 ok", hbci_chain, &hbci_chain[2],
+-    GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, 0 },
++    GNUTLS_VERIFY_DISABLE_TIME_CHECKS | GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT,
++    0 },
+   { "rsa-md5 fail", mayfirst_chain, &mayfirst_chain[1],
+     0, GNUTLS_CERT_INSECURE_ALGORITHM | GNUTLS_CERT_INVALID },
+   { "rsa-md5 not ok", mayfirst_chain, &mayfirst_chain[1],
+--
+cgit v0.8.2.1

More information about the Pkg-gnutls-commits mailing list