Your message dated Mon, 05 Feb 2024 16:34:51 +0000
with message-id <[email protected]>
and subject line Bug#1062003: fixed in easy-rsa 3.1.7-2
has caused the Debian Bug report #1062003,
regarding easy-rsa: Testsuite breaks with OpenSSL 3.2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1062003: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1062003
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: src:easy-rsa
Version: 3.1.7-1
Severity: important
Tags: sid patch
control: affects -1 src:openssl
User: [email protected]
Usertags: openssl-3.2
The default value for the -nameopt option changed in OpenSSL 3.2 from
`oneline' to `utf8'. The `oneline' option also included a space around
the fields which is not the case for `utf8'.
Patch attaches fixes the issue for OpenSSL 3.2 while it still works with
earlier versions.
Sebastian
From: Sebastian Andrzej Siewior <[email protected]>
Date: Tue, 30 Jan 2024 22:03:19 +0100
Subject: [PATCH] debian/tests: Pass -nameopt to openssl.
The default value for the -nameopt option changed in OpenSSL 3.2 from
`oneline' to `utf8'. The `oneline' option also included a space around
the fields which is not the case for `utf8'. This means that
CN = domain.tld
changed to
CN=domain.tld
and is now longer recognized, leading to test failure.
This can be fixed by either going back to `oneline' or keeping `utf8'
and adding additionally `space_eq'. Anoter way would be to teach the
expect that the space is optional.
Add explicit -nameopt option with `utf8,space_eq' which is understood by
by OpenSSL 3.2 and earlier to make it explicit.
Signed-off-by: Sebastian Andrzej Siewior <[email protected]>
---
debian/tests/basic-usage | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/debian/tests/basic-usage b/debian/tests/basic-usage
index c9af11767c3a..6b633703ee26 100755
--- a/debian/tests/basic-usage
+++ b/debian/tests/basic-usage
@@ -89,7 +89,7 @@ cert_pubkey_size() {
| sed -n -e '/Public-Key: /s/^[[:space:]]*Public-Key:[[:space:]]*(\([0-9]*\) bit)$/\1/p'
}
cert_subject() {
- openssl x509 -noout -subject -in "${1:?}" | sed 's/^subject=//'
+ openssl x509 -noout -nameopt utf8,space_eq -subject -in "${1:?}" | sed 's/^subject=//'
}
--
2.43.0
--- End Message ---
--- Begin Message ---
Source: easy-rsa
Source-Version: 3.1.7-2
Done: Lance Lin <[email protected]>
We believe that the bug you reported is fixed in the latest version of
easy-rsa, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Lance Lin <[email protected]> (supplier of updated easy-rsa package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 05 Feb 2024 23:05:26 +0700
Source: easy-rsa
Architecture: source
Version: 3.1.7-2
Distribution: unstable
Urgency: medium
Maintainer: Lance Lin <[email protected]>
Changed-By: Lance Lin <[email protected]>
Closes: 1062003
Changes:
easy-rsa (3.1.7-2) unstable; urgency=medium
.
* d/tests/basic-usage: Pass -nameopt to openssl (Closes: #1062003).
Checksums-Sha1:
ba75ee04c49759af444f566a05bf52cebfd6ac80 2117 easy-rsa_3.1.7-2.dsc
b3f87cf9738118246764344965539ef0d98c8843 13548 easy-rsa_3.1.7-2.debian.tar.xz
3df29e85ece44cff5059f9a4957db85accba32ba 6424 easy-rsa_3.1.7-2_amd64.buildinfo
Checksums-Sha256:
bacfea2f3830b53c420054533a4c87ae7d5edc9470f2cb57660f795b066b2a18 2117
easy-rsa_3.1.7-2.dsc
a88784029d0a52606e9ddb545a9ddfd6a3ce46f94e8ae629482831d124e767f5 13548
easy-rsa_3.1.7-2.debian.tar.xz
5ba39ea8bd21733e00f9b17e201225fe4ce195e32bc27121754c7ef506fbb5a4 6424
easy-rsa_3.1.7-2_amd64.buildinfo
Files:
0500142942140c3b54a1dc7d4f602d97 2117 utils optional easy-rsa_3.1.7-2.dsc
bea174eaee85bf826cc3527af0e268ac 13548 utils optional
easy-rsa_3.1.7-2.debian.tar.xz
fc0f39ab2c1d78ca4fff04432b0d5117 6424 utils optional
easy-rsa_3.1.7-2_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=AuDh
-----END PGP SIGNATURE-----
--- End Message ---
