[Bug 279942] security/rubygem-cose: Unbreak security/rubygem-webauthn with OpenSSL 3.0 for GitLab

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 24 Jun 2024 09:22:53 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=279942

            Bug ID: 279942
           Summary: security/rubygem-cose: Unbreak
                    security/rubygem-webauthn with OpenSSL 3.0 for GitLab
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: mfechner@FreeBSD.org
          Reporter: ruben@verweg.com
             Flags: maintainer-feedback?(mfechner@FreeBSD.org)
          Assignee: mfechner@FreeBSD.org

Created attachment 251665
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=251665&action=edit
Upgrade security/rubygem-cose to 1.2.1

GitLab using security/rubygem-cose trough security/rubygem-webauthn required by
GitLab will throw 500 internal server errors on FreeBSD 14 using OpenSSL.

This is caused by 

OpenSSL::PKey::PKeyError (pkeys are immutable on OpenSSL 3.0):

cose (1.2.0) lib/cose/key/ec2.rb:74:in `public_key='
cose (1.2.0) lib/cose/key/ec2.rb:74:in `to_pkey'

And has been addressed in rubygem-cose 1.2.1

https://github.com/cedarcode/cose-ruby/commit/28ee497fa7d9d49e72d5a5e97a567c0b58fdd822

Attached are patches for security/rubygem-cose and security/rubygem-webauthn

-- 
You are receiving this mail because:
You are the assignee for the bug.