[DRE-maint] Bug#912239: ruby-httparty FTBFS: SSL_CTX_use_certificate: ee key too small

Helmut Grohne helmut at subdivi.de
Mon Oct 29 15:22:55 GMT 2018 

Source: ruby-httparty
Version: 0.16.2+dfsg1-1
Severity: serious
Tags: ftbfs

ruby-httparty fails to build from source in unstable:


| GEM_PATH=debian/ruby-httparty/usr/share/rubygems-integration/all:/var/lib/gems/2.5.0:/usr/lib/x86_64-linux-gnu/rubygems-integration/2.5.0:/usr/share/rubygems-integration/2.5.0:/usr/share/rubygems-integration/all ruby2.5 -e gem\ \"httparty\"
| 
| ┌──────────────────────────────────────────────────────────────────────────────┐
| │ Run tests for ruby2.5 from debian/ruby-tests.rake                            │
| └──────────────────────────────────────────────────────────────────────────────┘
| 
| RUBYLIB=/<<PKGBUILDDIR>>/debian/ruby-httparty/usr/lib/ruby/vendor_ruby:. GEM_PATH=debian/ruby-httparty/usr/share/rubygems-integration/all:/var/lib/gems/2.5.0:/usr/lib/x86_64-linux-gnu/rubygems-integration/2.5.0:/usr/share/rubygems-integration/2.5.0:/usr/share/rubygems-integration/all ruby2.5 -S rake -f debian/ruby-tests.rake
| /usr/bin/ruby2.5 /usr/bin/rspec --pattern spec/\*\*/\*_spec.rb
| /<<PKGBUILDDIR>>/spec/httparty/request/body_spec.rb:3: warning: setting Encoding.default_external
| Run options: include {:focus=>true}
| 
| All examples were filtered out; ignoring {:focus=>true}
| 
| Randomized with seed 46039
| ........................................................................................................*.................................................................................................................................................................................................................................................#<Thread:0x000056193f451dd0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .#<Thread:0x000056193f43fdb0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .#<Thread:0x000056193f42df70@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| F#<Thread:0x000056193f41c338@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| F#<Thread:0x000056193f4066f0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .#<Thread:0x000056193f3f4900@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| F#<Thread:0x000056193f3da820@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .#<Thread:0x000056193f3cca18@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| F#<Thread:0x000056193f3b2a00@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .#<Thread:0x000056193f3a0c88@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
| 	from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
| 	from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
| .............................................................................................................................................................................................................................................................
| 
| Pending: (Failures listed here are expected and do not affect your suite's status)
| 
|   1) HTTParty::Request parsing responses with non-200 responses 3xx responses calls block given to perform with each redirect
|      # Temporarily skipped with xit
|      # /<<PKGBUILDDIR>>/spec/httparty/request_spec.rb:605
| 
| Failures:
| 
|   1) HTTParty::Request SSL certificate verification should work when no trusted CA list is specified, even with a bogus hostname, when the verify option is set to true
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # OpenSSL::SSL::SSLError:
|      #   SSL_connect SYSCALL returned=5 errno=0 state=SSLv3/TLS write client hello
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   2) HTTParty::Request SSL certificate verification should work when no trusted CA list is specified, when the verify option is set to false
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   3) HTTParty::Request SSL certificate verification should work when using ssl_ca_file with a self-signed CA
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   4) HTTParty::Request SSL certificate verification should work when using ssl_ca_file with a certificate authority
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
...
| Failed examples:
| 
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:29 # HTTParty::Request SSL certificate verification should work when no trusted CA list is specified, even with a bogus hostname, when the verify option is set to true
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:19 # HTTParty::Request SSL certificate verification should work when no trusted CA list is specified, when the verify option is set to false
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:33 # HTTParty::Request SSL certificate verification should work when using ssl_ca_file with a self-signed CA
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:37 # HTTParty::Request SSL certificate verification should work when using ssl_ca_file with a certificate authority
| 
| Randomized with seed 46039
| 
| Coverage report generated for RSpec to /<<PKGBUILDDIR>>/coverage. 869 / 902 LOC (96.34%) covered.
| /usr/bin/ruby2.5 /usr/bin/rspec --pattern spec/\*\*/\*_spec.rb failed
| ERROR: Test "ruby2.5" failed. Exiting.
| dh_auto_install: dh_ruby --install /<<BUILDDIR>>/ruby-httparty-0.16.2\+dfsg1/debian/ruby-httparty returned exit code 1
| make: *** [debian/rules:8: binary] Error 1
| dpkg-buildpackage: error: fakeroot debian/rules binary subprocess returned exit status 2

Helmut

More information about the Pkg-ruby-extras-maintainers mailing list