On Mon, 2014-05-05 at 12:34 -0500, Jon Ciesla wrote: > I've got a pair of odd build failures that I'm probably missing something > obvious on. I'm trying to update both openvpn and dietlibc to their latest > upstreams for rawhide. They build fine locally on f20, in mock for f20, > and fail locally in rawhide and mock for rawhide. Looking at the logs, the > code actually seems to build, but the tests are failing. > > Openvpn: > http://kojipkgs.fedoraproject.org//work/tasks/8039/6808039/build.log > > dietlibc: > http://kojipkgs.fedoraproject.org//work/tasks/5251/6815251/build.log > > I'm probably just overbusy and missed something obvious, but if someone > could point me in the right direction I'd appreciate it. > > Thanks in advance, > > -J For the record: RhBug[0] (opened when doesn't work one of my connections)
> Tomas Mraz 2014-03-31 05:35:25 EDT > I suppose the certificate is signed with use of MD5 hash. This was disabled > in Rawhide as certificates signed with MD5 hashes are not secure. Please > update your certificates to be signed with at least SHA1 or even better > SHA256. Upstream Bug[1] (Jon opened after some discussion in chat) > Or even better, replace them with a script that generates a test certificate > chain. Such scripts should then indeed use stronger algorithms and larger key > sizes. > Will be fixed 'soonish'. [0]https://bugzilla.redhat.com/show_bug.cgi?id=1081708 [1]https://community.openvpn.net/openvpn/ticket/400 -- -Igor Gnatenko -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
