[Pkg-bareos-devel] Bug#819807: bareos: TLS completely broken
Felix Geyer
fgeyer at debian.org
Sat Apr 2 14:16:34 UTC 2016
Package: bareos
Version: 14.2.1+20141017gitc6c5b56-3
Tags: patch
Hi Evgeni,
I finally figured out why the GnuTLS backend doesn't work at all.
Bareos initalizes the crypto backend and then daemonizes itself and closes
all fds.
Unfortunately GnuTLS opens /dev/urandom in its init method and relies upon
it staying open.
Turns out this is already fixed in 15.2 but was never backported.
Attached are git patches against the debian branch to add the fix and some
tests.
Cheers,
Felix
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Fix-GnuTLS-backend-by-postponing-initialization-afte.patch
Type: text/x-diff
Size: 4280 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-bareos-devel/attachments/20160402/4227017b/attachment-0003.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0002-Add-autopkgtests-for-TLS.patch
Type: text/x-diff
Size: 21556 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-bareos-devel/attachments/20160402/4227017b/attachment-0004.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0003-Add-breaks-testbed-to-all-tests.patch
Type: text/x-diff
Size: 1341 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-bareos-devel/attachments/20160402/4227017b/attachment-0005.patch>
More information about the Pkg-bareos-devel
mailing list