Bug #232: [STICKY] Annoying bugs in softwares used by DC
IRCd Ratbox secure S2S support is broken
Linking two irc-ratbox servers fails for an unknown reason. There is no crash but an unclear error in the log. Upstream author was contacted about it on the ML but they said GNUTLS support, which is used in the Debian package for licensing reasons, is not well tested and OpenSSL works well. They do not care much about it. We need to get it working using GNUTLS.
Beware, during preliminary investigation, another bug was found, leading to password leak over the network during the link attempt. A patch was made and included in the Debian package. When this issue is fixed, both patches needs to be submitted upstream.
Updated by Marc Dequènes over 7 years ago
- Help Needed set to No
Jilles Tjoelker said:
In ircd-charybdis which also uses libratbox, I removed gnutls support a while ago because it was broken. Some attempts were made at fixing it, but reliability remained sub-par. Some of these fixes probably apply to upstream libratbox; the repository is at https://github.com/atheme/charybdis/ Most people do not care about GNUTLS support being broken because they use OpenSSL which works fine. The /challenge oper authentication also requires OpenSSL.