Package: weechat-curses Version: 0.3.9-1 Severity: normal Hello,
I don't really see where and how weechat verifies the certificate. A test program succeeds: 142 certificates loaded from /etc/ssl/certs/ca-certificates.crt Connected to irc.oftc.net:6697 subject `CN=kilo.oftc.net', issuer `O=Open and Free Technology Community,OU=certification authority for irc,CN=irc.ca.oftc.net,EMAIL=supp...@oftc.net', RSA key 2048 bits, signed using RSA-SHA1, activated `2012-06-06 14:12:07 UTC', expires `2013-06-06 14:12:07 UTC', SHA-1 fingerprint `e900dd5d9fcb274b4816ce418f22fb6efc73caab' subject `O=Open and Free Technology Community,OU=certification authority for irc,CN=irc.ca.oftc.net,EMAIL=supp...@oftc.net', issuer `O=Open and Free Technology Community,OU=Certification Authority,CN=ca.oftc.net,EMAIL=supp...@oftc.net', RSA key 2048 bits, signed using RSA-SHA1, activated `2008-05-25 00:10:59 UTC', expires `2013-05-24 00:10:59 UTC', SHA-1 fingerprint `e45b2de35faec3e999209e34f7ce4c05b6adb73c' subject `O=Open and Free Technology Community,OU=Certification Authority,CN=ca.oftc.net,EMAIL=supp...@oftc.net', issuer `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public Interest,OU=hostmaster,CN=Certificate Authority,EMAIL=hostmas...@spi-inc.org', RSA key 2048 bits, signed using RSA-SHA1, activated `2008-05-24 23:53:25 UTC', expires `2013-05-23 23:53:25 UTC', SHA-1 fingerprint `27361360dd639f5ee74b07468345516fc0f052f1' subject `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public Interest,OU=hostmaster,CN=Certificate Authority,EMAIL=hostmas...@spi-inc.org', issuer `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public Interest,OU=hostmaster,CN=Certificate Authority,EMAIL=hostmas...@spi-inc.org', RSA key 4096 bits, signed using RSA-SHA1, activated `2008-05-13 08:07:56 UTC', expires `2018-05-11 08:07:56 UTC', SHA-1 fingerprint `af70884383820215cd61c6bcecfd3724a990431c' Connected. weechat fails: 23:29:57 oftc -- | irc: reconnecting to server... 23:29:57 oftc -- | irc: connecting to server irc.oftc.net/6697 (SSL) via socks5 proxy 10.10.10.11/9050... 23:30:02 oftc -- | gnutls: connected using 2048-bit Diffie-Hellman shared secret exchange 23:30:02 oftc =!= | gnutls: peer's certificate is NOT trusted 23:30:02 oftc =!= | gnutls: peer's certificate issuer is unknown 23:30:02 oftc -- | gnutls: receiving 4 certificates 23:30:02 oftc -- | - certificate[1] info: 23:30:02 oftc -- | - subject `CN=kilo.oftc.net', issuer `O=Open and Free Technology Community,OU=certification authority for | irc,CN=irc.ca.oftc.net,EMAIL=supp...@oftc.net', RSA key 2048 bits, signed using RSA-SHA1, activated `2012-06-06 14:12:07 UTC', | expires `2013-06-06 14:12:07 UTC', SHA-1 fingerprint `e900dd5d9fcb274b4816ce418f22fb6efc73caab' 23:30:02 oftc -- | - certificate[2] info: 23:30:02 oftc -- | - subject `O=Open and Free Technology Community,OU=certification authority for irc,CN=irc.ca.oftc.net,EMAIL=supp...@oftc.net', | issuer `O=Open and Free Technology Community,OU=Certification Authority,CN=ca.oftc.net,EMAIL=supp...@oftc.net', RSA key 2048 bits, | signed using RSA-SHA1, activated `2008-05-25 00:10:59 UTC', expires `2013-05-24 00:10:59 UTC', SHA-1 fingerprint | `e45b2de35faec3e999209e34f7ce4c05b6adb73c' 23:30:02 oftc -- | - certificate[3] info: 23:30:02 oftc -- | - subject `O=Open and Free Technology Community,OU=Certification Authority,CN=ca.oftc.net,EMAIL=supp...@oftc.net', issuer | `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public Interest,OU=hostmaster,CN=Certificate | Authority,EMAIL=hostmas...@spi-inc.org', RSA key 2048 bits, signed using RSA-SHA1, activated `2008-05-24 23:53:25 UTC', expires | `2013-05-23 23:53:25 UTC', SHA-1 fingerprint `27361360dd639f5ee74b07468345516fc0f052f1' 23:30:02 oftc -- | - certificate[4] info: 23:30:02 oftc -- | - subject `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public Interest,OU=hostmaster,CN=Certificate | Authority,EMAIL=hostmas...@spi-inc.org', issuer `C=US,ST=Indiana,L=Indianapolis,O=Software in the Public | Interest,OU=hostmaster,CN=Certificate Authority,EMAIL=hostmas...@spi-inc.org', RSA key 4096 bits, signed using RSA-SHA1, activated | `2008-05-13 08:07:56 UTC', expires `2018-05-11 08:07:56 UTC', SHA-1 fingerprint `af70884383820215cd61c6bcecfd3724a990431c' 23:30:03 oftc -- | irc: connected to irc.oftc.net/6697 (?) -- System Information: Debian Release: 6.0.6 APT prefers stable APT policy: (990, 'stable'), (500, 'testing'), (400, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages weechat-curses depends on: ii libc6 2.13-35 Embedded GNU C Library: Shared lib ii libcurl3-gnutls 7.28.0-2 easy-to-use client-side URL transf ii libgcrypt11 1.5.0-3 LGPL Crypto library - runtime libr ii libgnutls28 3.1.3-1 GNU TLS library - main runtime lib ii libncursesw5 5.9-10 shared libraries for terminal hand ii libtinfo5 5.9-10 shared low-level terminfo library ii weechat-core 0.3.9-1 Fast, light and extensible chat cl Versions of packages weechat-curses recommends: ii weechat-plugins 0.3.9-1 Fast, light and extensible chat cl Versions of packages weechat-curses suggests: ii weechat-doc 0.3.8-1 Fast, light and extensible chat cl -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org