libvirt for Xenial failing to build due to gnutls SHA1 restriction
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libvirt (Ubuntu) |
Fix Released
|
Undecided
|
Guilherme G. Piccoli | ||
Xenial |
Fix Released
|
Low
|
Guilherme G. Piccoli |
Bug Description
[Impact]
* Since version 3.4.10-4ubuntu1.6 on Xenial, gnutls considers SHA1 certificates to be insecure - this affects libvirt tests "virnettlsconte
* The fix is available upstream since libvirt v3.7.0, as commit c666661bbc ("Fix TLS test suites with gnutls 3.6.0") [ libvirt.
[Test Case]
* Basic testing consists is spin-up a PPA builder and try to build libvirt - it'll fail in amd64 and i386 architectures. With the proposed patch, it succeeds. Both failure and success buildlogs are attached in the LP.
[Regression Potential]
* The regression potential in this case is minimal, since it only affects testing. Also, this patch is present in all subsequent releases and is hereby introduced only in Xenial after the gnutls change (from version 3.6) was backported to Xenial as well.
Changed in libvirt (Ubuntu Xenial): | |
status: | New → Incomplete |
status: | Incomplete → Confirmed |
Changed in libvirt (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in libvirt (Ubuntu Xenial): | |
assignee: | nobody → Guilherme G. Piccoli (gpiccoli) |
importance: | Undecided → Medium |
Changed in libvirt (Ubuntu Xenial): | |
status: | Incomplete → Fix Committed |
The fix for this LP will be uploaded/handled in LP #1844455.
Thanks,
Guilherme