Bug#536017: libio-socket-ssl-perl: FTBFS in lenny
Dominic Hargreaves
dom at earth.li
Mon Jul 6 21:42:37 UTC 2009
On Mon, Jul 06, 2009 at 11:37:47PM +0300, Niko Tyni wrote:
> I think the problem is this:
>
> % openssl x509 -text -in certs/server-wildcard.pem|grep -A2 Validity
> Validity
> Not Before: Feb 22 08:06:33 2008 GMT
> Not After : Feb 21 08:06:33 2009 GMT
>
> Looking at the changelog, the test certificates were renewed upstream
> in 1.23 and 1.24. That doesn't help us much, cherry-picking those will
> only lead to another timebomb in the future.
>
> I suggest disabling (most of?) the tests for the lenny security upload.
Hmm, difficult one. I think I marginally prefer leaving the tests enabled
- disabling them is almost inviting missing a real test failure :) But
it's also inviting a repeat of this and wasting people's time in future.
> As for sid/squeeze, I think the best thing to do would be to work
> with upstream to make the test suite automatically generate the test
> certificates during the build.
On the other hand, the new certs expire in 2019, so perhaps this is
long enough that the timebomb will never be reached again (famous
last words).
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
More information about the pkg-perl-maintainers
mailing list