Bug#912239: ruby-httparty FTBFS: SSL_CTX_use_certificate: ee key too small

Helmut Grohne Mon, 29 Oct 2018 08:28:10 -0700

Source: ruby-httparty
Version: 0.16.2+dfsg1-1
Severity: serious
Tags: ftbfs


ruby-httparty fails to build from source in unstable:


| 
GEM_PATH=debian/ruby-httparty/usr/share/rubygems-integration/all:/var/lib/gems/2.5.0:/usr/lib/x86_64-linux-gnu/rubygems-integration/2.5.0:/usr/share/rubygems-integration/2.5.0:/usr/share/rubygems-integration/all
 ruby2.5 -e gem\ \"httparty\"
| 
| 
┌──────────────────────────────────────────────────────────────────────────────┐
| │ Run tests for ruby2.5 from debian/ruby-tests.rake                           
 │
| 
└──────────────────────────────────────────────────────────────────────────────┘
| 
| RUBYLIB=/<<PKGBUILDDIR>>/debian/ruby-httparty/usr/lib/ruby/vendor_ruby:. 
GEM_PATH=debian/ruby-httparty/usr/share/rubygems-integration/all:/var/lib/gems/2.5.0:/usr/lib/x86_64-linux-gnu/rubygems-integration/2.5.0:/usr/share/rubygems-integration/2.5.0:/usr/share/rubygems-integration/all
 ruby2.5 -S rake -f debian/ruby-tests.rake
| /usr/bin/ruby2.5 /usr/bin/rspec --pattern spec/\*\*/\*_spec.rb
| /<<PKGBUILDDIR>>/spec/httparty/request/body_spec.rb:3: warning: setting 
Encoding.default_external
| Run options: include {:focus=>true}
| 
| All examples were filtered out; ignoring {:focus=>true}
| 
| Randomized with seed 46039
| 
........................................................................................................*.................................................................................................................................................................................................................................................#<Thread:0x000056193f451dd0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.#<Thread:0x000056193f43fdb0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.#<Thread:0x000056193f42df70@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
F#<Thread:0x000056193f41c338@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
F#<Thread:0x000056193f4066f0@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.#<Thread:0x000056193f3f4900@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
F#<Thread:0x000056193f3da820@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.#<Thread:0x000056193f3cca18@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
F#<Thread:0x000056193f3b2a00@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.#<Thread:0x000056193f3a0c88@/<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34
 run> terminated with exception (report_on_exception is true):
| /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `initialize': 
SSL_CTX_use_certificate: ee key too small (OpenSSL::SSL::SSLError)
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `new'
|       from /usr/lib/ruby/2.5.0/openssl/ssl.rb:483:in `accept'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in 
`thread_main'
|       from /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
| 
.............................................................................................................................................................................................................................................................
| 
| Pending: (Failures listed here are expected and do not affect your suite's 
status)
| 
|   1) HTTParty::Request parsing responses with non-200 responses 3xx responses 
calls block given to perform with each redirect
|      # Temporarily skipped with xit
|      # /<<PKGBUILDDIR>>/spec/httparty/request_spec.rb:605
| 
| Failures:
| 
|   1) HTTParty::Request SSL certificate verification should work when no 
trusted CA list is specified, even with a bogus hostname, when the verify 
option is set to true
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # OpenSSL::SSL::SSLError:
|      #   SSL_connect SYSCALL returned=5 errno=0 state=SSLv3/TLS write client 
hello
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   2) HTTParty::Request SSL certificate verification should work when no 
trusted CA list is specified, when the verify option is set to false
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   3) HTTParty::Request SSL certificate verification should work when using 
ssl_ca_file with a self-signed CA
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
| 
|   4) HTTParty::Request SSL certificate verification should work when using 
ssl_ca_file with a certificate authority
|      Failure/Error: socket = @ssl_server.accept
| 
|      OpenSSL::SSL::SSLError:
|        SSL_CTX_use_certificate: ee key too small
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:56:in `thread_main'
|      # /<<PKGBUILDDIR>>/spec/support/ssl_test_server.rb:34:in `block (2 
levels) in start'
|      # ------------------
|      # --- Caused by: ---
|      # Errno::ECONNRESET:
|      #   Connection reset by peer - SSL_connect
|      #   /<<PKGBUILDDIR>>/lib/httparty/request.rb:143:in `perform'
...
| Failed examples:
| 
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:29 # HTTParty::Request SSL 
certificate verification should work when no trusted CA list is specified, even 
with a bogus hostname, when the verify option is set to true
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:19 # HTTParty::Request SSL 
certificate verification should work when no trusted CA list is specified, when 
the verify option is set to false
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:33 # HTTParty::Request SSL 
certificate verification should work when using ssl_ca_file with a self-signed 
CA
| rspec /<<PKGBUILDDIR>>/spec/httparty/ssl_spec.rb:37 # HTTParty::Request SSL 
certificate verification should work when using ssl_ca_file with a certificate 
authority
| 
| Randomized with seed 46039
| 
| Coverage report generated for RSpec to /<<PKGBUILDDIR>>/coverage. 869 / 902 
LOC (96.34%) covered.
| /usr/bin/ruby2.5 /usr/bin/rspec --pattern spec/\*\*/\*_spec.rb failed
| ERROR: Test "ruby2.5" failed. Exiting.
| dh_auto_install: dh_ruby --install 
/<<BUILDDIR>>/ruby-httparty-0.16.2\+dfsg1/debian/ruby-httparty returned exit 
code 1
| make: *** [debian/rules:8: binary] Error 1
| dpkg-buildpackage: error: fakeroot debian/rules binary subprocess returned 
exit status 2

Helmut

Bug#912239: ruby-httparty FTBFS: SSL_CTX_use_certificate: ee key too small

Reply via email to