[SRU] ship new public cert
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pollinate (Ubuntu) |
Fix Released
|
High
|
Dustin Kirkland | ||
Trusty |
Fix Released
|
High
|
Dustin Kirkland | ||
Vivid |
Fix Released
|
High
|
Dustin Kirkland | ||
Wily |
Fix Released
|
High
|
Dustin Kirkland |
Bug Description
Pollinate ships entropy.
This certificate has been updated and pollinate needs to be updated. The previous certificate is expiring at Thursday, October 15, 2015 at 11:10:53 AM.
[Impact]
Any new 14.04 (Trusty) cloud instance with a down-level version of pollinate will fail to seed their PRNG from entropy.ubuntu.com, after Thursday, October 15, 2015 at 11:10:53 AM.
[Test Case]
Run:
$ sudo pollinate -r
to reseed your PRNG. If you have the old version of pollinate, you'll get certificate errors (See Comment #1), and it will exit non-zero. If you have the new version (already uploaded to ppa:pollinate/ppa, utopic, trusty-proposed), it will work again and exit zero (see Comment #2).
[Regression Potential]
Negligible. A single file is updated with a new public SSL certificate for https:/
Related branches
description: | updated |
Changed in pollinate (Ubuntu): | |
importance: | Undecided → High |
status: | New → In Progress |
Changed in pollinate (Ubuntu Trusty): | |
status: | New → In Progress |
Changed in pollinate (Ubuntu Vivid): | |
status: | New → In Progress |
Changed in pollinate (Ubuntu Trusty): | |
importance: | Undecided → High |
Changed in pollinate (Ubuntu Vivid): | |
importance: | Undecided → High |
Changed in pollinate (Ubuntu Trusty): | |
assignee: | nobody → Dustin Kirkland (kirkland) |
Changed in pollinate (Ubuntu Vivid): | |
assignee: | nobody → Dustin Kirkland (kirkland) |
Changed in pollinate (Ubuntu Wily): | |
assignee: | nobody → Dustin Kirkland (kirkland) |
Changed in pollinate (Ubuntu Wily): | |
status: | In Progress → Fix Committed |
information type: | Public → Public Security |
Attaching a patch for trusty.