FS#48496 : [nss] removal of legacy certs patch breaks google through gnome-online-accounts

FS#48496 - [nss] removal of legacy certs patch breaks google through gnome-online-accounts

Attached to Project: Arch Linux
Opened by Hussam Al-Tayeb (hussam) - Monday, 07 March 2016, 18:31 GMT
Last edited by Jan de Groot (JGC) - Wednesday, 13 April 2016, 13:19 GMT

Task Type	Bug Report
Category	Packages: Testing
Status	Closed
Assigned To	Jan de Groot (JGC) Jan Alexander Steffens (heftig)
Architecture	All
Severity	Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

nss 3.23 package doesn't contain the legacy certs patch.
Now evolution/empathy say google certificate is self signed and ask to manually accept it.
reverting to nss 3.22.1 fixes it.
Note that (nss 3.22.1 without the patch exhibits the same issue).

This task depends upon

Closed by Jan de Groot (JGC)
Wednesday, 13 April 2016, 13:19 GMT
Reason for closing: Fixed
Additional comments about closing: Re-added legacy certs.

Comment by Jan de Groot (JGC) - Tuesday, 08 March 2016, 08:35 GMT

This should not be an issue with glib-networking 2.47.90 which is also in testing. Can you give an example of a host that doesn't work so we can look at this issue? Epiphany should also be affected, so a HTTPS website would be nice also.

Comment by Hussam Al-Tayeb (hussam) - Tuesday, 08 March 2016, 08:50 GMT

Websites work fine.
Only gmail on evolution and empathy are affected so I guess imap.google.com and talk.google.com?

Comment by Jan Alexander Steffens (heftig) - Monday, 14 March 2016, 09:01 GMT

telepathy-gabble has its own TLS code and doesn't make use of glib-networking; great.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#48496 - [nss] removal of legacy certs patch breaks google through gnome-online-accounts

Details

Loading...