Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 517260 - net-voip/linphone-3.5.2 - ortp-error-eXosip: Couldn't read CA list
Summary: net-voip/linphone-3.5.2 - ortp-error-eXosip: Couldn't read CA list
Status: RESOLVED OBSOLETE
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Andrew Savchenko
URL:
Whiteboard: Pending removal: 2018-12-01
Keywords: PATCH, PMASKED
Depends on: 504114
Blocks:
  Show dependency tree
 
Reported: 2014-07-16 16:49 UTC by igel
Modified: 2019-03-13 09:47 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
patch for linphone-3.5.2 to fix certificate handling (linphone_certs.patch,533 bytes, patch)
2014-07-16 16:49 UTC, igel 		Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description igel 2014-07-16 16:49:24 UTC 
Created attachment 380828 [details, diff]
patch for linphone-3.5.2 to fix certificate handling

When contacting sip.linphone.org:5061 via linphonec, the certificate is rejected with

ortp-error-eXosip: Couldn't read CA list

This also causes the gtk-gui to not connect properly. When tested without TLS, linphone does connect fine. Both

openssl s_client -connect sip.linphone.org:5061

and

gnutls-cli -V sip.linphone.org -p 5061

validate the certificate of sip.linphone.org fine. I can attach the log of 

linphonec -d 6 -s sip:igel@sip.linphone.org

but it's almost the same as in the issue described here: http://lists.gnu.org/archive/html/linphone-users/2013-07/msg00107.html where a patch is proposed. I took the liberty of porting it to gentoo. Since the ebuild unfortunately doesn't call epatch_user, I had to make a local ebuild, but it seems to work with the patch, so I'll attach it.
Comment 1 Michał Górny archtester Gentoo Infrastructure gentoo-dev Security 2019-03-13 09:47:42 UTC 
Package removed as a result of vulnerable dependency removal.