eserte
commented
6 years ago Another one: UNCLEANDY/GPLVote-SignDoc-Client-0.9.tgz
Closed eserte closed 5 years ago
eserte
commented
6 years ago Another one: UNCLEANDY/GPLVote-SignDoc-Client-0.9.tgz
eserte
commented
6 years ago Also fails with Crypt::OpenSSL::RSA 0.30: ANTHONYU/Mail-DomainKeys-1.0.tar.gz
eserte
commented
6 years ago Also: KGRENNAN/Net-OAuth-0.28.tar.gz (mentioned in https://rt.cpan.org/Ticket/Display.html?id=125482 )
toddr
commented
6 years ago I highly suspect the root cause is https://github.com/toddr/Crypt-OpenSSL-RSA/commit/1149369250b667ff22df50c72a3fce4476636315
jwittkoski
commented
6 years ago @toddr Did you mean 13df4d34e7cbc9d067f863ddb94260a26df3c9e6 ?
toddr
commented
6 years ago Yes. Guess I need to get back to this. Sorry it fell through the cracks. It's possible the previously mentioned tests are too rigid. I'd need to look at them but have not found the time to do so.
jwittkoski
commented
6 years ago I think this is a duplicate of #14.
I suspect many other modules that use Crypt::OpenSSL::RSA didn't set the hash algorithm explicitly and so relied on the default setting (sha1). When the Crypt::OpenSSL::RSA default was changed to sha256 many tests which expected test results based on using sha1 broke.
toddr
commented
6 years ago I'm going to switch the default back to its original and provide an easier way to specify it. The new method should be encouraged not enforced.
toddr
commented
5 years ago This has been fixed in 65ff114cae2ed17abea12304d195614f5dec01dd and released to CPAN as 0.31
I already opened an issue for a new failure of Authen-NZRealMe (https://github.com/catalyst/Authen-NZRealMe/issues/5) and now stumbled over the next failure: RIZEN/AWS-SNS-Verify-0.0102.tar.gz fails, according to statistical analysis also because of Crypt::OpenSSL::RSA 0.30.