projects / qt6-base.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
qt6-base.git
2 years agocve-2023-32762
commit | commitdiff | tree
Debian Qt/KDE Maintainers [Sat, 28 Oct 2023 09:26:45 +0000 (11:26 +0200)]
cve-2023-32762

Gbp-Pq: Name cve-2023-32762.diff

2 years ago[PATCH] Schannel: Reject certificate not signed by a configured CA certificate
commit | commitdiff | tree
Mårten Nordheim [Wed, 10 May 2023 14:43:41 +0000 (16:43 +0200)]
[PATCH] Schannel: Reject certificate not signed by a configured CA certificate

Not entirely clear why, but when building the certificate chain for a
peer the system certificate store is searched for root certificates.
General expectation is that after calling
`sslConfiguration.setCaCertificates()` the system certificates will
not be taken into consideration.

To work around this behavior, we do a manual check that the root of the
chain is part of the configured CA certificates.

Pick-to: 6.5 6.2 5.15
Change-Id: I03666a4d9b0eac39ae97e150b4743120611a11b3
Reviewed-by: Edward Welbourne <edward.welbourne@qt.io>
Reviewed-by: Volker Hilsheimer <volker.hilsheimer@qt.io>
Gbp-Pq: Name cve-2023-34410-ada2c57.diff

2 years ago[PATCH] Ssl: Copy the on-demand cert loading bool from default config
commit | commitdiff | tree
Mårten Nordheim [Thu, 25 May 2023 12:40:29 +0000 (14:40 +0200)]
[PATCH] Ssl: Copy the on-demand cert loading bool from default config

Otherwise individual sockets will still load system certificates when
a chain doesn't match against the configured CA certificates.
That's not intended behavior, since specifically setting the CA
certificates means you don't want the system certificates to be used.

Follow-up to/amends ada2c573c1a25f8d96577734968fe317ddfa292a

This is potentially a breaking change because now, if you ever add a
CA to the default config, it will disable loading system certificates
on demand for all sockets. And the only way to re-enable it is to
create a null-QSslConfiguration and set it as the new default.

Pick-to: 6.5 6.2 5.15
Change-Id: Ic3b2ab125c0cdd58ad654af1cb36173960ce2d1e
Reviewed-by: Timur Pocheptsov <timur.pocheptsov@qt.io>
Gbp-Pq: Name cve-2023-34410-57ba626.diff

2 years ago[PATCH] xkb: fix build with libxkbcommon 1.6.0 and later
commit | commitdiff | tree
Liang Qi [Tue, 10 Oct 2023 12:08:48 +0000 (14:08 +0200)]
[PATCH] xkb: fix build with libxkbcommon 1.6.0 and later

A few XKB_KEY_dead_* defines got removed from 1.6.0. See also
https://github.com/xkbcommon/libxkbcommon/blob/6073565903488cb5b9a8d37fdc4a7c2f9d7ad04d/NEWS#L9-L14
https://gitlab.freedesktop.org/xorg/proto/xorgproto/-/merge_requests/70/diffs?commit_id=cb44799b72f611eb4c9d7cc185bc3b09e070be08

Pick-to: 6.6 6.5 6.2 5.15
Fixes: QTBUG-117950
Change-Id: I55861868f2bb29c553d68365fa9b9b6ed01c9aea
Reviewed-by: Tor Arne Vestbø <tor.arne.vestbo@qt.io>
Gbp-Pq: Name libxkbcommon_1.6.0.diff

2 years agoqt6-base (6.4.2+dfsg-19) unstable; urgency=medium
commit | commitdiff | tree
Patrick Franz [Sat, 28 Oct 2023 09:26:45 +0000 (11:26 +0200)]
qt6-base (6.4.2+dfsg-19) unstable; urgency=medium

  [ Patrick Franz ]
  * Backport upstream patch to fix build with libxkbcommon 1.6.0
    (Closes: #1054674).

[dgit import unpatched qt6-base 6.4.2+dfsg-19]

2 years agoImport qt6-base_6.4.2+dfsg-19.debian.tar.xz
commit | commitdiff | tree
Patrick Franz [Sat, 28 Oct 2023 09:26:45 +0000 (11:26 +0200)]
Import qt6-base_6.4.2+dfsg-19.debian.tar.xz

[dgit import tarball qt6-base 6.4.2+dfsg-19 qt6-base_6.4.2+dfsg-19.debian.tar.xz]

2 years agoImport qt6-base_6.4.2+dfsg.orig.tar.xz
commit | commitdiff | tree
Patrick Franz [Tue, 31 Jan 2023 18:16:32 +0000 (19:16 +0100)]
Import qt6-base_6.4.2+dfsg.orig.tar.xz

[dgit import orig qt6-base_6.4.2+dfsg.orig.tar.xz]

Unnamed repository; edit this file 'description' to name the repository.