Added skip pkcs test patch to avoid CI error on ubi8 for #213

related to CVE 2023-45290
golang-fips · Jul 15, 2024 · 01847f6 · 01847f6
1 parent cb4c9af
commit 01847f6
Showing 1 changed file with 15 additions and 0 deletions.
diff --git a/patches/006-skip-pkcs-test.patch b/patches/006-skip-pkcs-test.patch
@@ -0,0 +1,15 @@
+diff --git a/src/crypto/rsa/pkcs1v15_test.go b/src/crypto/rsa/pkcs1v15_test.go
+index f6afc363ea..c164ec5706 100644
+--- a/src/crypto/rsa/pkcs1v15_test.go
++++ b/src/crypto/rsa/pkcs1v15_test.go
+@@ -245,6 +245,10 @@ func TestVerifyPKCS1v15(t *testing.T) {
+ }
+
+ func TestOverlongMessagePKCS1v15(t *testing.T) {
++	// OpenSSL now returns a random string instead of an error
++	if boring.Enabled() {
++		t.Skip("Not relevant in boring mode")
++	}
+ 	ciphertext := decodeBase64("fjOVdirUzFoLlukv80dBllMLjXythIf22feqPrNo0YoIjzyzyoMFiLjAc/Y4krkeZ11XFThIrEvw\nkRiZcCq5ng==")
+ 	_, err := DecryptPKCS1v15(nil, rsaPrivateKey, ciphertext)
+ 	if err == nil {