debcrafters-packages team mailing list archive

[Ural Tunaboyu <2113361@xxxxxxxxxxxxxxxxxx>]

I spent some time digging into the original rationale for why the change
was implemented, and it appears the root cause was that Fedora stopped
supporting SHA1 signed certificates:
https://bugzilla.redhat.com/show_bug.cgi?id=2124349

Given there are no such changes planned for Noble, this backport would
strictly be a nice-to-have. Even though I agree using SHA256 over SHA1
is preferred, it's unfortunately not a justification for an SRU.

** Bug watch added: Red Hat Bugzilla #2124349
   https://bugzilla.redhat.com/show_bug.cgi?id=2124349

** Changed in: libimobiledevice (Ubuntu)
       Status: In Progress => Invalid

** Changed in: libimobiledevice (Ubuntu)
     Assignee: Ural Tunaboyu (uralt) => (unassigned)

** Tags removed: dcr-incoming

-- 
You received this bug notification because you are a member of
Debcrafters packages, which is subscribed to libimobiledevice in Ubuntu.
https://bugs.launchpad.net/bugs/2113361

Title:
  [SRU - Noble] Backport SHA256 signature fix

Status in libimobiledevice package in Ubuntu:
  Invalid

Bug description:
  libimobiledevice does not support SHA256 pairing signatures in Ubuntu
  24.04 (and 25.04). This causes incompatibility with newer iOS devices
  that require SHA256 signatures for pairing (instead of old SHA-1).

  This was already fixed in Debian in the libimobiledevice package
  version 1.3.0+git20250228-2 by the following commit (downstream
  patch):

  
  https://salsa.debian.org/imobiledevice-team/libimobiledevice/-/commit/6cad52895ef1a8dacce9f83723c7c87e6b7dc309

  Please, consider backporting the patch as a SRU into Ubuntu 24.04 (and
  25.04) to make the pairing and file shares work correctly with newer
  iOS devices.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libimobiledevice/+bug/2113361/+subscriptions