Bug#1064034: marked as done (FTBFS: Expired test certificate)
Your message dated Sun, 05 May 2024 18:49:19 + with message-id and subject line Bug#1064034: fixed in ruby3.1 3.1.2-7+deb12u1 has caused the Debian Bug report #1064034, regarding FTBFS: Expired test certificate to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1064034: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064034 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: ruby3.1 Version: 3.1.2-8 Severity: serious Tags: ftbfs A build of ruby3.1 fails on the test stage, since multiple test/net/http/test_https.rb tests return > "ERROR OpenSSL::SSL::SSLError: SSL_accept returned=1 errno=0 peeraddr=(null) state=error: sslv3 alert certificate expired\n" where no error was expected. Failing tests: TestNetHTTPS#test_get, TestNetHTTPS#test_skip_hostname_verification, TestNetHTTPS#test_skip_hostname_verification, TestNetHTTPS#test_post, TestNetHTTPS#test_min_version, TestNetHTTPS#test_get_SNI, TestNetHTTPS#test_get, TestNetHTTPS#test_post, TestNetHTTPS#test_min_version, TestNetHTTPS#test_get_SNI The actual reason is that the certificate it uses (file test/net/fixtures/server.crt) *IS* expired: $ openssl x509 -in test/net/fixtures/server.crt -text Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: C = JP, ST = Shimane, L = Matz-e city, O = Ruby Core Team, CN = Ruby Test CA, emailAddress = secur...@ruby-lang.org Validity Not Before: Jan 2 03:27:13 2019 GMT Not After : Jan 1 03:27:13 2024 GMT Subject: C = JP, ST = Shimane, O = Ruby Core Team, OU = Ruby Test, CN = localhost This was fixed upstream on https://github.com/ruby/ruby/commit/d3933fc753187a055a4904af82f5f3794c88c416 --- End Message --- --- Begin Message --- Source: ruby3.1 Source-Version: 3.1.2-7+deb12u1 Done: Moritz Mühlenhoff We believe that the bug you reported is fixed in the latest version of ruby3.1, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1064...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Moritz Mühlenhoff (supplier of updated ruby3.1 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 26 Apr 2024 09:47:47 +0200 Source: ruby3.1 Architecture: source Version: 3.1.2-7+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: Debian Ruby Team Changed-By: Moritz Mühlenhoff Closes: 1064034 Changes: ruby3.1 (3.1.2-7+deb12u1) bookworm-security; urgency=medium . * CVE-2024-27280 / CVE-2024-27281 / CVE-2024-27282 * Cherrypick changes from 3.1.2-8.2 upload to sid: * Update test certificates from ruby 3.2.3. (Closes: #1064034) * Disable test needing a working DNS resolver. Checksums-Sha1: 7f14017ddc58d15190bf308efcb60030ec3c0b26 2595 ruby3.1_3.1.2-7+deb12u1.dsc 9a0840a5a26dcdbd9e9eebe3354598375a4a6b6d 12885596 ruby3.1_3.1.2.orig.tar.xz dcf086fd43032b9ec0b8c975e2e6baa810408749 80764 ruby3.1_3.1.2-7+deb12u1.debian.tar.xz bf19498a307a05e8e312fe33bb9a525a25706a7f 8628 ruby3.1_3.1.2-7+deb12u1_amd64.buildinfo Checksums-Sha256: a04e26298ae7202d46a45587dc7ce4fb696aa2d3df2699e1684ccf126b6f6840 2595 ruby3.1_3.1.2-7+deb12u1.dsc 350013ef6640f15c42eae48d25c035999dcbb32e4be038d27ad891cb48d685a5 12885596 ruby3.1_3.1.2.orig.tar.xz c2687c741a45046b9652f84734ceb83554b1583c88acc6ac94660d1d504d14a8 80764 ruby3.1_3.1.2-7+deb12u1.debian.tar.xz b92d271efacaa6c4bbeb7e8a06d58a90eb0a0848f4445a17d11c7ce65601b17f 8628 ruby3.1_3.1.2-7+deb12u1_amd64.buildinfo Files: 7bd09d163012362edf54a117ff937926 2595 ruby optional ruby3.1_3.1.2-7+deb12u1.dsc 69cf9ca520a804bff39ab22e1b798b4b 12885596 ruby optional ruby3.1_3.1.2.orig.tar.xz 85e50f242976d9f3706fcada55d13f24 80764 ruby optional ruby3.1_3.1.2-7+deb12u1.debian.tar.xz a6b17b3f8bf8f52363eaad9234e5bf38 8628 ruby optional ruby3.1_3.1.2-7+deb12u1_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmYraMcACgkQEMKTtsN8 TjaHJg//YH99gZzNbYuqw9kkhZ9yxCjLirfgOOMRKpQLZvqYcDzcDvyDnfClat7A VHMfXPpYl9WcPu6agx0r4JMXGBouY27W1DvSZRNl+Eg1CANos5Zg/gTfeS58QUDh
Bug#1064034: marked as done (FTBFS: Expired test certificate)
Your message dated Sun, 17 Mar 2024 12:04:03 + with message-id and subject line Bug#1064034: fixed in ruby3.1 3.1.2-8.2 has caused the Debian Bug report #1064034, regarding FTBFS: Expired test certificate to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1064034: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064034 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: ruby3.1 Version: 3.1.2-8 Severity: serious Tags: ftbfs A build of ruby3.1 fails on the test stage, since multiple test/net/http/test_https.rb tests return > "ERROR OpenSSL::SSL::SSLError: SSL_accept returned=1 errno=0 peeraddr=(null) state=error: sslv3 alert certificate expired\n" where no error was expected. Failing tests: TestNetHTTPS#test_get, TestNetHTTPS#test_skip_hostname_verification, TestNetHTTPS#test_skip_hostname_verification, TestNetHTTPS#test_post, TestNetHTTPS#test_min_version, TestNetHTTPS#test_get_SNI, TestNetHTTPS#test_get, TestNetHTTPS#test_post, TestNetHTTPS#test_min_version, TestNetHTTPS#test_get_SNI The actual reason is that the certificate it uses (file test/net/fixtures/server.crt) *IS* expired: $ openssl x509 -in test/net/fixtures/server.crt -text Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: C = JP, ST = Shimane, L = Matz-e city, O = Ruby Core Team, CN = Ruby Test CA, emailAddress = secur...@ruby-lang.org Validity Not Before: Jan 2 03:27:13 2019 GMT Not After : Jan 1 03:27:13 2024 GMT Subject: C = JP, ST = Shimane, O = Ruby Core Team, OU = Ruby Test, CN = localhost This was fixed upstream on https://github.com/ruby/ruby/commit/d3933fc753187a055a4904af82f5f3794c88c416 --- End Message --- --- Begin Message --- Source: ruby3.1 Source-Version: 3.1.2-8.2 Done: Chris Hofstaedtler We believe that the bug you reported is fixed in the latest version of ruby3.1, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1064...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Chris Hofstaedtler (supplier of updated ruby3.1 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 15 Mar 2024 17:44:11 +0100 Source: ruby3.1 Binary: libruby3.1t64 libruby3.1t64-dbgsym ruby3.1 ruby3.1-dbgsym ruby3.1-dev ruby3.1-doc Architecture: source arm64 all Version: 3.1.2-8.2 Distribution: unstable Urgency: medium Maintainer: Debian Ruby Team Changed-By: Chris Hofstaedtler Description: libruby3.1t64 - Libraries necessary to run Ruby 3.1 ruby3.1- Interpreter of object-oriented scripting language Ruby ruby3.1-dev - Header files for compiling extension modules for the Ruby 3.1 ruby3.1-doc - Documentation for Ruby 3.1 Closes: 1062873 1064034 Changes: ruby3.1 (3.1.2-8.2) unstable; urgency=medium . * Non-maintainer upload. * Release to unstable. * Update test certificates from ruby 3.2.3. (Closes: #1064034) * Disable test needing a working DNS resolver. * Build-Depend on new dpkg-dev to ensure getting time_t 64bit flags. (Closes: #1062873) Checksums-Sha1: f8178b070df664c0e1450f3631753d12acc0c6cf 2599 ruby3.1_3.1.2-8.2.dsc 9a0840a5a26dcdbd9e9eebe3354598375a4a6b6d 12885596 ruby3.1_3.1.2.orig.tar.xz 17472d7bb6003e422a46a0686f1b9d0317a3 80044 ruby3.1_3.1.2-8.2.debian.tar.xz f114adcfb223609b3ea2fe229d5822f1b0fd8a9d 8921116 libruby3.1t64-dbgsym_3.1.2-8.2_arm64.deb 5d21fa89841bef670d49350ea7c0b1a5415c99b4 5254800 libruby3.1t64_3.1.2-8.2_arm64.deb 83ff2c8c98d69c60621452714973c1383b4695bf 3632 ruby3.1-dbgsym_3.1.2-8.2_arm64.deb 1eae309c8e45133fc2d9bbbf71c47c10aa9d8073 1004772 ruby3.1-dev_3.1.2-8.2_arm64.deb 6d64a386e01d2c6fc7c2073d9849f3c4169883ed 2449440 ruby3.1-doc_3.1.2-8.2_all.deb 332fa41f21c86fd6a66aa576a18bf820f496c9be 8666 ruby3.1_3.1.2-8.2_arm64.buildinfo 9ef6727b222546f682f34061bedef244e612c3c5 663676 ruby3.1_3.1.2-8.2_arm64.deb Checksums-Sha256: 86860fbe7da4d7940afb6e6ab1552517384f88938f82ba6c13fa4c7f86891cf4 2599 ruby3.1_3.1.2-8.2.dsc 350013ef6640f15c42eae48d25c035999dcbb32e4be038d27ad891cb48d685a5 12885596