-
Notifications
You must be signed in to change notification settings - Fork 163
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Test failure with OpenSSL 3.1.0 #606
Comments
A tentative measures fo ruby#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`.
A tentative measures fo ruby/openssl#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`. ruby/openssl@fc4629d246
A tentative measures fo ruby/openssl#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`. ruby/openssl@fc4629d246
I haven't been able to reproduce this locally with OpenSSL 3.1.0 on Linux. The message contains The test case
|
|
The man page of SSL_get_error() says:
Also, Google search "SSL_connect SYSCALL returned=5 errno=0 state=error: certificate verify failed" gives many hits of articles written several years ago; this may not be new in OpenSSL 3.1.0. #640 should fix this... but since I haven't reproduced the error in my local environment, it's not been tested. |
A tentative measures fo ruby/openssl#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`. ruby/openssl@fc4629d246
A tentative measures fo ruby/openssl#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`. ruby/openssl@fc4629d246
A tentative measures fo ruby#606. With OpenSSL 3.1.0, the error message at connection using "self-signed certificate" seems to return `SSL_R_TLSV1_ALERT_UNKNOWN_CA` instead of `SSL_R_CERTIFICATE_VERIFY_FAILED`.
In
OpenSSL::TestSSL#test_connect_certificate_verify_failed_exception_message
,Seems like
SSL_R_TLSV1_ALERT_UNKNOWN_CA
is returned instead ofSSL_R_CERTIFICATE_VERIFY_FAILED
?The text was updated successfully, but these errors were encountered: