Package: ruby-certificate-authority Followup-For: Bug #1011734 User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu kinetic ubuntu-patch Control: tags -1 patch
Hi, This was caused by a string format change in openssl >= 3.0. I created an upstream issue with more information [1]. In Ubuntu, we applied this patch to resolve the FTBFS: * debian/patches/0004-remove-keyid-prefix-from-test-string.patch: Remove 'keyid:' prefix from test string to fix build with openssl >= 3.0. (LP: #1981458) Thanks, Nick [1] https://github.com/cchandler/certificate_authority/issues/62
diff -Nru ruby-certificate-authority-1.0.0/debian/patches/0004-remove-keyid-prefix-from-test-string.patch ruby-certificate-authority-1.0.0/debian/patches/0004-remove-keyid-prefix-from-test-string.patch --- ruby-certificate-authority-1.0.0/debian/patches/0004-remove-keyid-prefix-from-test-string.patch 1969-12-31 19:00:00.000000000 -0500 +++ ruby-certificate-authority-1.0.0/debian/patches/0004-remove-keyid-prefix-from-test-string.patch 2022-07-12 11:00:53.000000000 -0400 @@ -0,0 +1,21 @@ +Description: Remove 'keyid:' prefix from x509 v3 authorityKeyIdentifier test + This test case does a simple check for the expected authorityKeyIdentifier value + on a certificate, which includes a 'keyid:' prefix. This prefix was removed in + OpenSSL 3.0, which causes this test case to fail. Just remove the prefix from the + expected string to fix the test. +Author: Nick Rosbrook <nick.rosbr...@canonical.com> +Bug: https://github.com/cchandler/certificate_authority/issues/62 +Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/ruby-certificate-authority/+bug/1981458 +Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011734 +Last-Update: 2022-07-12 +--- a/spec/units/certificate_spec.rb ++++ b/spec/units/certificate_spec.rb +@@ -423,7 +423,7 @@ + expect(@cert_with_extensions.extensions["subjectKeyIdentifier"]).to eq(expected_subjectKeyIdentifier) + + expected_authorityKeyIdentifier = CertificateAuthority::Extensions::AuthorityKeyIdentifier.new +- expected_authorityKeyIdentifier.identifier = "keyid:4C:58:CB:25:F0:41:4F:52:F4:28:C8:81:43:9B:A6:A8:A0:E6:92:E5" ++ expected_authorityKeyIdentifier.identifier = "4C:58:CB:25:F0:41:4F:52:F4:28:C8:81:43:9B:A6:A8:A0:E6:92:E5" + expect(@cert_with_extensions.extensions["authorityKeyIdentifier"]).to eq(expected_authorityKeyIdentifier) + + expected_authorityInfoAccess = CertificateAuthority::Extensions::AuthorityInfoAccess.new diff -Nru ruby-certificate-authority-1.0.0/debian/patches/series ruby-certificate-authority-1.0.0/debian/patches/series --- ruby-certificate-authority-1.0.0/debian/patches/series 2022-02-20 17:24:24.000000000 -0500 +++ ruby-certificate-authority-1.0.0/debian/patches/series 2022-07-12 11:00:53.000000000 -0400 @@ -1,3 +1,4 @@ 0001-Build-a-string-config-for-OpenSSL-Config-as-opposed-.patch 0002-gemspec-don-t-use-git-to-get-list-of-files.patch 0003-gemspec-don-t-load-file-from-lib-explicitly.patch +0004-remove-keyid-prefix-from-test-string.patch