Description of problem: The changelog of OpenSSL says just "minor upstream release" but it break Ruby's build [1] with message: "SSL_connect returned=1 errno=0 state=error: dh key too small". What was actually changed? Could you give me some pointers? Version-Release number of selected component (if applicable): openssl-1.0.2c-1.fc23 How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info: [1] http://koschei.cloud.fedoraproject.org/package/ruby/622355
I reported this issue also against RubyGems upstream [1], since I expect that there will be necessary some fix on their side. Thanks for help. [1] https://github.com/rubygems/rubygems/issues/1289
Might this [1] be the reason for the error? [1] https://github.com/rubygems/rubygems/blob/v2.4.5/test/rubygems/test_gem_remote_fetcher.rb#L857
Aha, found [1] explaining that the minimum key size was increased and send PR upstream fixing this issue [2]. [1] https://www.openssl.org/blog/blog/2015/05/20/logjam-freak-upcoming-changes/ [2] https://github.com/rubygems/rubygems/commit/71a4198783ebe3087f0cae7db8a4db8558e0f042