Issue #6089 has been updated by Vit Ondruch.


Unfortunately, I didn't get very helpful response :/

> Tomas Mraz 2012-02-29 11:03:26 CET
> 
> The change adds support for new types of signatures - namely PSS signatures.
> I suppose in the first case the DSS1 signature is handled as SHA1 signature.
> I'd probably simply skip this test.
> 
> I don't think the second failure is related. Unfortunately I have no idea what
> causes it. I don't know Ruby good enough to find out what it does there wrong.
----------------------------------------
Bug #6089: Test suite fails with OpenSSL 1.0.1
https://bugs.ruby-lang.org/issues/6089

Author: Vit Ondruch
Status: Assigned
Priority: Normal
Assignee: Martin Bosslet
Category: 
Target version: 
ruby -v: 	ruby 1.9.3p125 (2012-02-16 revision 34643) [x86_64-linux]


It seems that the patch [1] changes the behavior of openssl and makes the test_x509cert.rb fail:

  1) Failure:
test_dsig_algorithm_mismatch(OpenSSL::TestX509Certificate) [test/openssl/test_x509cert.rb:175]:
OpenSSL::X509::CertificateError expected but nothing was raised.


I also notified Fedora's openssl maintainer about these issues [2].


[1] http://cvs.openssl.org/filediff?f=openssl/crypto/asn1/a_sign.c&v1=1.21.4.1&v2=1.21.4.2
[2] https://bugzilla.redhat.com/show_bug.cgi?id=797217


-- 
http://bugs.ruby-lang.org/