Your message dated Wed, 11 Nov 2015 00:21:09 +0000 with message-id <e1zwj9x-0006rd...@franck.debian.org> and subject line Bug#804363: fixed in mumble 1.2.10-3 has caused the Debian Bug report #804363, regarding mumble: SSL connection aborts with "unable to allocate SSL_CTX" to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 804363: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804363 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: mumble Version: 1.2.10-2+b1 Severity: grave Justification: renders package unusable Dear Maintainer, Since last upgrade (the rebuild, +b1, oddly enough) Mumble aborts trying to connect to any server: > OpenSSL Support: 1 (OpenSSL 1.0.2d 9 Jul 2015) > MumbleSSL: unable to allocate SSL_CTX > Invalid 'net/sslciphers' config option. Either the cipher string is invalid > or none of the ciphers are available:: "EECDH+AESGCM:AES256-SHA:AES128-SHA" > Abandon I do not have altered the net/sslciphers option, and ciphers look fine: > $ openssl ciphers "EECDH+AESGCM:AES256-SHA:AES128-SHA" > ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:AES256-SHA:AES128-SHA Anyway, after digging a lot, it appears that Mumble forgets to call `SSL_library_init()` [1]. Injecting such a call early in the run fixes the issue: > $ gdb mumble > GNU gdb (Debian 7.10-1) 7.10 > [...snip...] > Reading symbols from mumble...Reading symbols from > /usr/lib/debug/.build-id/d7/713cd5f7d3cbaaa65bcdbe9bb1cc45b6478eb1.debug...done. > done. > (gdb) break main > Breakpoint 1 at 0x43eda0: file main.cpp, line 136. > (gdb) run > Starting program: /usr/bin/mumble > [Thread debugging using libthread_db enabled] > Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". > > Breakpoint 1, main (argc=1, argv=0x7fffffffe028) at main.cpp:136 > 136 main.cpp: No such file or directory. > (gdb) call SSL_library_init() > $1 = 1 > (gdb) continue > Continuing. > [...snip...] > OpenSSL Support: 1 (OpenSSL 1.0.2d 9 Jul 2015) > ServerHandler: TLS cipher preference is > "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:AES256-SHA:AES128-SHA" And everything seem to work fine. Without this, not only Mumble aborts trying to connect to servers, but it also fails to check and generate user certificates. This throws the existing user certificate away on each startup, losing some unreproducible and potentially important data. So, please fix the code to properly init LibSSL as required -- or whatever the proper fix is. Regards, Colomban [1] https://wiki.openssl.org/index.php/SSL/TLS_Client#Initialization -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages mumble depends on: ii libasound2 1.0.29-1 ii libavahi-client3 0.6.32~rc+dfsg-1 ii libavahi-common3 0.6.32~rc+dfsg-1 ii libavahi-compat-libdnssd1 0.6.32~rc+dfsg-1 ii libc6 2.19-22 ii libg15daemon-client1 1.9.5.3-8.3 ii libgcc1 1:5.2.1-23 ii libopus0 1.1-2 ii libprotobuf9v5 2.6.1-1.3 ii libpulse0 7.1-2 ii libqt4-dbus 4:4.8.7+dfsg-3 ii libqt4-network 4:4.8.7+dfsg-3 ii libqt4-sql 4:4.8.7+dfsg-3 ii libqt4-sql-sqlite 4:4.8.7+dfsg-3 ii libqt4-svg 4:4.8.7+dfsg-3 ii libqt4-xml 4:4.8.7+dfsg-3 ii libqtcore4 4:4.8.7+dfsg-3 ii libqtgui4 4:4.8.7+dfsg-3 ii libsndfile1 1.0.25-9.1 ii libspeechd2 0.8-7 ii libspeex1 1.2~rc1.2-1 ii libspeexdsp1 1.2~rc1.2-1 ii libssl1.0.2 1.0.2d-3 ii libstdc++6 5.2.1-23 ii libx11-6 2:1.6.3-1 ii libxi6 2:1.7.5-1 ii lsb-release 9.20150917 mumble recommends no packages. Versions of packages mumble suggests: pn mumble-server <none> ii speech-dispatcher 0.8-7 -- no debconf information
--- End Message ---
--- Begin Message ---Source: mumble Source-Version: 1.2.10-3 We believe that the bug you reported is fixed in the latest version of mumble, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 804...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Christopher Knadle <chris.kna...@coredump.us> (supplier of updated mumble package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 10 Nov 2015 13:06:43 -0500 Source: mumble Binary: mumble mumble-server mumble-dbg Architecture: source amd64 Version: 1.2.10-3 Distribution: unstable Urgency: high Maintainer: Christopher Knadle <chris.kna...@coredump.us> Changed-By: Christopher Knadle <chris.kna...@coredump.us> Description: mumble - Low latency encrypted VoIP client mumble-dbg - Low latency encrypted VoIP client (debugging symbols) mumble-server - Low latency encrypted VoIP server Closes: 804363 Changes: mumble (1.2.10-3) unstable; urgency=high . * debian/patches: - Add 43-initialize-SSL.diff to fix SSL breakage on startup Closes: #804363 Thanks very much to Colomban Wendling <lists....@herbesfolles.org> for reporting the bug and offering a fix. Checksums-Sha1: 8995361bc8fcf8f99f0bea964013031c27d887e9 2201 mumble_1.2.10-3.dsc 38d592531fd48a3b6e5b6bdbc82ec0be9fdcff7e 38356 mumble_1.2.10-3.debian.tar.xz e1db7d31b81748d5333fa369bbbc86babed46202 25891634 mumble-dbg_1.2.10-3_amd64.deb 394281b18587dcd79bef0a1df0fe59eb0c61d581 724360 mumble-server_1.2.10-3_amd64.deb bd6f70fafa37feaf4c5df55f3d3a123789ddd8d3 2594446 mumble_1.2.10-3_amd64.deb Checksums-Sha256: b0587fc7560caa29827240d7baed0e3a757736ec5087101b2c3da7c290a47c8c 2201 mumble_1.2.10-3.dsc fe8eb56949e0073a722e9fb80da86c47e1d7d7f106bf7ac95a1f32f4944847b2 38356 mumble_1.2.10-3.debian.tar.xz d5189fafb7d808cd7b1ade9b3d35d1741bda756039922d40c346289fbbf0ecc0 25891634 mumble-dbg_1.2.10-3_amd64.deb a1d140438076f4e426b36ff9b4077e62c3f6fdd4b9defa7048950bc48440ec79 724360 mumble-server_1.2.10-3_amd64.deb 9fb5bc07fcc8b7313e9440ad051e9598a191b24886734a0bac4fa3d7e5e71b50 2594446 mumble_1.2.10-3_amd64.deb Files: 29580d17181226367e3f7cdc51312e17 2201 sound optional mumble_1.2.10-3.dsc 214c39d0421ffc7943400ecf1af37f3d 38356 sound optional mumble_1.2.10-3.debian.tar.xz f08f5d3773f964c12e27ece39368eb84 25891634 debug extra mumble-dbg_1.2.10-3_amd64.deb 25ae00709101f121edfa28b92b56eef4 724360 sound optional mumble-server_1.2.10-3_amd64.deb 1030ecbad764078ad0ea73121368aafb 2594446 sound optional mumble_1.2.10-3_amd64.deb -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJWQoPXAAoJEEkSKbZEGfmqkUcP/RMugRIwKBQ9SqRfc8R6tTZV /eoYOQQ7HuW1K7TKJwy3ykTbQb/YrfQLaN6l5i5cWMsSuCrpcSyXvxAvr7Nf6E+p 9rgJEEFCk2xTSNY9pjmSoLjp6L+tJRQVh4ALTjgqSMyKH2tECOh4rNOMRpQy22hb iC/zjXC2hwY3uO6uUmjgpMeFk9cV2pa0z0ARy8dwUknVsWMylELvpUEOfDdcixI0 EcczXuaX886+2tVugdLb8ytR9AcMmsUpO+2DYiy98a2R4G1anIlcgQusJ+qhZPT0 KkyWwThlIHU1Yk7FXEQaWkYegcDzz9rROurjE2uAWdxRagX7cdleWZxJetweoBFK pprwgjyCWMyUfDMR+EZlUNcVZly+YAsKjhMBhiiwfFms1RDXqGmQ9CF/B2wgN/FZ 5sewT4Lkttm0L5u9dH/rZFUnpmqLt2ayW7yRghIKAEi0AY0EuczieqauDZxpEbEC hhwKiXt/4V8o9hsXw21QVf7tYfDolizTSz7RMNdBWUQ0KTs8rOyQJqduaXs7uSLv GbvKKl8UGyMiWsCn0PoVY4fA5ls0AxT+bJUWzRDXnXJ8MSpEuMZQztg5y9dOLQtV 7YM2RK7W+Wwm0pfyfKqkbwXi3HA6h1iF4FnjCR74JJhJWzKxuKdrByx2RhHcn3x4 7yIYOIIl3RQEmsBtTQVP =8y2n -----END PGP SIGNATURE-----
--- End Message ---
