Bug#664900: libio-socket-ssl-perl: FTBFS, failing test

Salvatore Bonaccorso carnil at debian.org
Tue Mar 27 17:37:33 UTC 2012


Ciao Alessandro

On Tue, Mar 27, 2012 at 12:53:19PM +0200, Alessandro Ghedini wrote:
> On Sat, Mar 24, 2012 at 12:45:18PM +0100, Salvatore Bonaccorso wrote:
> > 
> > Hi Alessandro
> > 
> > On Wed, Mar 21, 2012 at 11:39:20PM +0100, Alessandro Ghedini wrote:
> > > On Wed, Mar 21, 2012 at 11:19:47PM +0100, Alessandro Ghedini wrote:
> > > > On Wed, Mar 21, 2012 at 10:26:37PM +0100, Salvatore Bonaccorso wrote:
> > > > > On Wed, Mar 21, 2012 at 09:02:54PM +0100, Salvatore Bonaccorso wrote:
> > > > > > > t/dhe.t ....................
> > > > > > > Failed 2/3 subtests
> > > > >
> > > > > In fact this one does not fail in a wheezy build with 1.42-1+b1.
> > > > >
> > > > > Okay to reassign this to libnet-ssleay-perl and add a affects
> > > > > libio-socket-ssl-perl?
> > > >
> > > > I think it is an openssl-related thing. I can reproduce the failure
> > > > with the latest libssl1.0.0 in sid (1.0.1-2) but not with the version
> > > > 1.0.0h-1 and below.
> > > 
> > > Also, having a look at the t/dhe.t file I read:
> > > 
> > > > # openssl 1.0.1(beta2) complains about the rsa key too small, unless
> > > > # we explicitly set version to tlsv1 or sslv3
> > > > # unfortunatly the workaround fails for older openssl versions :(
> > > 
> > > I think that the version check below that comment is the cause:
> > > removing it (but leaving the "SSL_version => 'tlsv1'") solves the
> > > problem for me with libssl 1.0.1 (but would probably break with older
> > > versions).
> > > 
> > > Given that OPENSSL_VERSION_NUMBER is a macro, maybe simply rebuilding
> > > libnet-ssleay-perl against the new libssl would solve the issue?
> > 
> > I looked into this now, and yes you should be right. When recompiling
> > libnet-ssleay-perl against new openssl the issue dissapears then. 
> > 
> > We still have [1] open, but upstream RT contains discussion on
> > resolving that.
> > 
> >  [1] http://bugs.debian.org/661566
> 
> Also, I've tried to build libio-socket-ssl-perl removing the
> Net::SSLeay version test from t/dhe.t as I did before but using OpenSSL
> 1.0.0h this time, and everything works fine (despite what the comment
> in the test says). IMO we should be ok patching the test and uploading
> the package without waiting a rebuild of Net::SSLeay (I'll push a patch
> soon).

Thanks for you research on that. I'm uploading now the new released
version 1.61 together with your patch applied. Seems to build fine
both with versions in Wheezy as the ones in unstable.

Regards
Salvatore
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-perl-maintainers/attachments/20120327/a7edf378/attachment-0001.pgp>


More information about the pkg-perl-maintainers mailing list