[Pkg-openssl-devel] Bug#898804: myproxy: FTBFS against openssl 1.1.1

Sebastian Andrzej Siewior sebastian at breakpoint.cc
Tue May 15 23:07:24 BST 2018


Source: myproxy
Version: 6.1.28-2
Severity: important
User: pkg-openssl-devel at lists.alioth.debian.org
Usertags: openssl-1.1.1

The new openssl 1.1.1 is currently in experimental [0]. This package
failed to build against this new package [1] while it built fine against
the openssl version currently in unstable [2].
Could you please have a look?

|The Error
|Problem with server credentials. GSS Major Status: General failure GSS Minor Status Error Chain: globus_gsi_gssapi: Error with GSI credential globus_gsi_gssapi: Error with gss credential handle globus_gsi_gssapi: Error with openssl: Couldn't set the certificate to be used for the SSL context OpenSSL Error: ../ssl/ssl_rsa.c:310: in library: SSL routines, function SSL_CTX_use_certificate: ca md too weak  
|FAIL myproxy-test-wrapper (exit status: 1)

is due to:
1.1.1~~pre6-1 changelog):
|   * Increase default security level from 1 to 2. This moves from the 80 bit
|     security level to the 112 bit securit level and will require 2048 bit RSA
|     and DHE keys.

[0] https://lists.debian.org/msgid-search/20180501211400.GA21460@roeckx.be
[1] https://breakpoint.cc/openssl-rebuild/2018-05-03-rebuild-openssl1.1.1-pre6/attempted/myproxy_6.1.28-2_amd64-2018-05-01T20%3A28%3A31Z
[2] https://breakpoint.cc/openssl-rebuild/2018-05-03-rebuild-openssl1.1.1-pre6/successful/myproxy_6.1.28-2_amd64-2018-05-02T18%3A46%3A02Z

Sebastian



More information about the Pkg-openssl-devel mailing list