ktls-utils - Debian Package Tracker

general

source: ktls-utils (main)
version: 1.0.0-1
maintainer: Debian kernel team (archive) (DMD)
uploaders: Ben Hutchings [DMD]
arch: any
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

testing: 1.0.0-1
unstable: 1.0.0-1

versioned links

1.0.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ktls-utils

action needed

A new upstream version is available: 1.1.0 high

A new upstream version 1.1.0 is available, you should consider packaging it.

Created: 2025-06-06 Last update: 2025-06-13 13:30

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1.1.0-1, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 0a4fd718f33b5ed075076be949a2fd8528c623e1
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Mon Jun 2 21:29:39 2025 +0200

    d/changelog, d/patches: Update for version 1.1.0
    
    - Drop "tlshd: fix a regression for certificate verification"
      which was included in this release
    - Refresh "configure: Disable currently broken QUIC implementation"
      and delete reference to one bug that is now closed

commit e091b077c84e6f3ee8b831a9f83345e04003719e
Merge: b09b60d 8e93cc2
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Mon Jun 2 21:26:12 2025 +0200

    Merge tag 'ktls-utils-1.1.0' into debian/latest
    
    ktls-utils 1.1.0 2025-06-02
     * Return to the old release process
     * Update the contribution process
     * Accept alternate keyrings during handshake upcall
     * Initial support for building ktls-utils with MUSL

commit b09b60d242ff19131a3e22b462c4809d8e6bbb81
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Mon Jun 2 21:19:50 2025 +0200

    Revert "d/watch: Disable tag signature check as recent tags were not signed"
    
    This reverts commit 1384808e8f003a76c142271e5917b63a1e785546.
    Upstream has decided to use signed tags again.

commit 6a318a7ea85f9c3fa04b1eb64ee28acc2dc4cc4c
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Mon Jun 2 21:23:11 2025 +0200

    d/upstream/signing-key.asc: Update expired signing key
    
    The signing key expired, but was not used for the 1.0 release or
    release candidates.
    
    Since the 1.1 release is signed, import an updated version of the
    signing key with no expiry.

commit 846dadfcf8e239c9ad41316c42edd1976a77c978
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Mon Jun 2 21:17:33 2025 +0200

    Revert "d/watch: Update upstream tag regex"
    
    This reverts commit eade95f2866732cd4072dbd982ea3d99a6393bc7.  After
    further discussion, upstream has decided to revert to the previous
    tag format.

commit 8e93cc211ea9dbb13cd20cdca57b48732fe0bb2c
Author: Chuck Lever <chuck.lever@oracle.com>
Date:   Mon Jun 2 13:02:13 2025 -0400

    Release ktls-utils 1.1.0
    
    Signed-off-by: Chuck Lever <chuck.lever@oracle.com>

commit dce339105d02252fc7762fc713276b89ebc54796
Author: Chuck Lever <chuck.lever@oracle.com>
Date:   Thu May 29 16:42:52 2025 -0400

    configure: Bump ktls-utils release version for next
    
    Signed-off-by: Chuck Lever <chuck.lever@oracle.com>

commit c1406bbbd23f5182a5a7e614f3ae8e98de512d7f
Author: Chuck Lever <chuck.lever@oracle.com>
Date:   Thu May 29 16:28:11 2025 -0400

    CONTRIBUTING: Change the contribution process
    
    Now that contributors are no longer required to be signatories of
    the OCA, there's no need to require them to use GitHub at all. Our
    community has decided to adopt an email review process rather than
    using GitHub pull requests.
    
    Signed-off-by: Chuck Lever <chuck.lever@oracle.com>

commit eade95f2866732cd4072dbd982ea3d99a6393bc7
Author: Ben Hutchings <ben@decadent.org.uk>
Date:   Thu May 29 22:39:55 2025 +0200

    d/watch: Update upstream tag regex
    
    As discussed in <https://github.com/oracle/ktls-utils/issues/104>,
    the upstream tag prefix has changed from 'ktls-utils-' to 'v'.

commit 75d5c7489e0e15f64daded752a4d104e6c0aaef3
Author: Xin Long <lucien.xin@gmail.com>
Date:   Tue May 20 11:30:58 2025 -0400

    tlshd: remove redundant gnutls_global_deinit()
    
    The call to gnutls_global_deinit() in tlshd_quic_clienthello_handshake()
    and tlshd_quic_serverhello_handshake() is redundant, as it is already
    invoked by their common caller tlshd_service_socket(). Remove these
    unbalanced deinitialization calls to avoid potential misuse or double
    deinitialization.
    
    Additionally, fix the error handling to assign -ret to session_status
    instead of ret for consistency with other error paths.
    
    Signed-off-by: Xin Long <lucien.xin@gmail.com>

commit 2f609c509e8c9087c584be96fe07a53e929a0746
Author: Benjamin Coddington <bcodding@redhat.com>
Date:   Tue May 20 09:06:19 2025 -0400

    tlshd: fix a regression for certificate verification
    
    Commit b010190cfed2 left session_status unset for
    GNUTLS_E_CERTIFICATE_VERIFICATION_ERROR.  Fix this by always setting
    EACCESS in the error handling switch statement.
    
    Fixes: b010190cfed2 ("tlshd: Pass ETIMEDOUT from gnutls to kernel")
    Closes: #98
    Signed-off-by: Benjamin Coddington <bcodding@redhat.com>

commit 1152ef7367f7b49d1d98bf86cb75bafea38c4856
Author: Alistair Francis <alistair.francis@wdc.com>
Date:   Thu Apr 10 13:15:16 2025 +1000

    tlshd: configure.ac: Use AC_CHECK_HEADER instead of AC_CHECK_FILE
    
    AC_CHECK_FILE doesn't work when cross-compiling [1], which breaks a lot of
    use cases (like OpenEmbedded for one). Autoconf supports AC_CHECK_HEADER
    which can be used instead and is more robust [2] so let's use that
    instead.
    
    1: https://www.gnu.org/software/autoconf/manual/autoconf-2.68/html_node/Files.html
    2: https://www.gnu.org/software/autoconf/manual/autoconf-2.69/html_node/Generic-Headers.html
    
    Signed-off-by: Alistair Francis <alistair.francis@wdc.com>

commit 3b419faa9f67cc053031524cb3b079f054c6b029
Author: Alistair Francis <alistair.francis@wdc.com>
Date:   Wed Apr 9 11:14:52 2025 +1000

    tlshd: Define TLSHD_ACCESSPERMS instead of using ALLPERMS to fix musl build
    
    ALLPERMS exists in glibc, but not on musl, so we manually define
    TLSHD_ACCESSPERMS and use that instaed. This fixes building on musl systems.
    
    Signed-off-by: Alistair Francis <alistair.francis@wdc.com>

commit e9b0b68439a497c3055f3be32aaf58e5a6765c30
Merge: cfc3d5a cd6f434
Author: Greg Marsden <greg.marsden@oracle.com>
Date:   Fri May 16 13:44:32 2025 -0700

    Merge pull request #96 from gregmarsden/contrib
    
    Update CONTRIBUTING

commit cd6f434301e716aa63e5883be73226493e914d71
Author: Greg Marsden <greg.marsden@oracle.com>
Date:   Fri May 16 09:21:39 2025 -0700

    Update CONTRIBUTING
    
    Update CONTRIBUTING to specify that contributions are
    accepted under the project license, with a Developer
    Certificate of Origin (DCO). Removes OCA requirement.
    
    Signed-off-by: Greg Marsden <greg.marsden@oracle.com>

commit cfc3d5a991397ee25d9d4887aa2c9fd18228acd0
Author: Hannes Reinecke <hare@suse.de>
Date:   Wed May 7 09:00:05 2025 +0200

    tlshd: add 'keyring' handshake accept parameter
    
    Add a new handshake parameter 'keyring' which holds the id of
    the keyring to use for looking up keys. This avoids having to
    hard-code the expected keyring in the configuration file.
    
    Signed-off-by: Hannes Reinecke <hare@suse.de>

commit 0cf7fe2da1db8b05f3e678aa5a88d31bc86da0ac
Author: Hannes Reinecke <hare@suse.de>
Date:   Wed May 7 10:56:47 2025 +0200

    keyring: fixup function description for tlshd_keyring_link_session()
    
    Fixup description to refer to the correct argument name.
    
    Signed-off-by: Hannes Reinecke <hare@suse.de>

Created: 2025-05-29 Last update: 2025-06-09 03:30

lintian reports 3 warnings normal

Lintian reports 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2024-05-16 Last update: 2025-05-30 12:00

debian/patches: 1 patch to forward upstream low

Among the 3 debian patches available in version 1.0.0-1 of the package, we noticed the following issues:

1 patch where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2025-05-30 Last update: 2025-05-30 06:26

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.2).

Created: 2024-04-07 Last update: 2025-05-30 02:00

news

[rss feed]

[2025-06-04] ktls-utils 1.0.0-1 MIGRATED to testing (Debian testing watch)
[2025-05-29] Accepted ktls-utils 1.0.0-1 (source) into unstable (Ben Hutchings)
[2024-07-16] ktls-utils 0.11-1 MIGRATED to testing (Debian testing watch)
[2024-07-10] Accepted ktls-utils 0.11-1 (source) into unstable (Ben Hutchings)
[2024-05-21] ktls-utils 0.10-1 MIGRATED to testing (Debian testing watch)
[2024-05-15] Accepted ktls-utils 0.10-1 (source) into unstable (Ben Hutchings)
[2023-11-25] Accepted ktls-utils 0.9-3 (source) into experimental (Ben Hutchings)
[2023-08-01] ktls-utils 0.9-2 MIGRATED to testing (Debian testing watch)
[2023-07-27] Accepted ktls-utils 0.9-2 (source) into unstable (Ben Hutchings)
[2023-07-26] Accepted ktls-utils 0.9-1 (amd64 source) into unstable (Debian FTP Masters) (signed by: Ben Hutchings)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 3)
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
screenshots
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.0.0-1