Bug#805083: marked as done (polygraph: FTBFS: SSlv3 method)

Mon, 18 Apr 2016 15:16:34 -0700 

Your message dated Mon, 18 Apr 2016 22:13:38 +0000
with message-id <[email protected]>
and subject line Bug#805083: fixed in polygraph 4.3.2-2
has caused the Debian Bug report #805083,
regarding polygraph: FTBFS: SSlv3 method
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
805083: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=805083
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: polygraph
Version: 4.3.2-1.2
Severity: serious
Control: block 797926 by -1

Hi,

The SSLv3 method has been disabled in openssl and as a result your
package no longer build.

The code looks like this:
        switch(protocol) {
                case SSLv2:
#ifndef OPENSSL_NO_SSL2
                        theCtx = ::SSL_CTX_new(::SSLv2_method());
#endif
                        break;
                case TLSv1:
                        theCtx = ::SSL_CTX_new(::TLSv1_method());
                        break;
                case SSLv3:
                        theCtx = ::SSL_CTX_new(::SSLv3_method());
                        break;
                case SSLv23:
                        theCtx = ::SSL_CTX_new(::SSLv23_method());
                        break;
                default:
                        theCtx = ::SSL_CTX_new(::SSLv23_method());
                        Should(false);
        }

I suggest you remove all of that and only use SSLv23_method().
All the other are version specific methods, only SSLv23_* speaks
multiple versions.

If you want to support selection of versions, I suggest you use
SSL_(CTX)_set_options with something like SSL_OP_NO_SSLv3.


Kurt

--- End Message ---
--- Begin Message --- 
Source: polygraph
Source-Version: 4.3.2-2

We believe that the bug you reported is fixed in the latest version of
polygraph, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Sebastian Andrzej Siewior <[email protected]> (supplier of updated 
polygraph package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 18 Apr 2016 23:13:01 +0200
Source: polygraph
Binary: polygraph
Architecture: source
Version: 4.3.2-2
Distribution: unstable
Urgency: medium
Maintainer: Debian QA Group <[email protected]>
Changed-By: Sebastian Andrzej Siewior <[email protected]>
Description:
 polygraph  - performance testing tool for caching proxies and more
Closes: 805083
Changes:
 polygraph (4.3.2-2) unstable; urgency=medium
 .
   * QA upload.
   * Build without using SSLv3 protocol (Closes: #805083).
   * Orphan the package, set maintainer to Debian QA.
Checksums-Sha1:
 33c043670383aa802daff8fb0135f929ce748aff 1760 polygraph_4.3.2-2.dsc
 48f631776e33e40d24952c916f63df0123324c4c 5060 polygraph_4.3.2-2.debian.tar.xz
Checksums-Sha256:
 d99e3a759b3aed5f95fa43347d424ff10216e626909da838956249d58266844b 1760 
polygraph_4.3.2-2.dsc
 dcb88ddcbf6cc43f6cec8d9120f9941358a8e575de0b17d8f7aa5f7a9b8c43bb 5060 
polygraph_4.3.2-2.debian.tar.xz
Files:
 c0e8ff27b32b2d6419a41eeac20c2d88 1760 net optional polygraph_4.3.2-2.dsc
 d9a58f8c610c1f080a8c6292b4981d45 5060 net optional 
polygraph_4.3.2-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=1xyM
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to