[openssl-commits] Errored: openssl/openssl#2060 (OpenSSL_1_0_2-stable - c436c99)

Travis CI builds at travis-ci.org
Wed Feb 24 09:08:18 UTC 2016

Build Update for openssl/openssl

Build: #2060
Status: Errored

Duration: 11 minutes and 9 seconds
Commit: c436c99 (OpenSSL_1_0_2-stable)
Author: David Woodhouse
Message: RT4175: Fix PKCS7_verify() regression with Authenticode signatures

This is a partial revert of commit c8491de39 ("GH354: Memory leak fixes"),
which was cherry-picked from commit 55500ea7c in OpenSSL 1.1.

That commit introduced a change in behaviour which is a regression for
software implementing Microsoft Authenticode — which requires a PKCS#7
signature to be validated against explicit external data, even though
it's a non-detached signature with its own embedded data.

The is fixed differently in OpenSSL 1.1 by commit 6b2ebe433 ("Add
PKCS7_NO_DUAL_CONTENT flag"), but that approach isn't viable in the
1.0.2 stable branch, so just comment the offending check back out again.

Signed-off-by: Rich Salz <rsalz at openssl.org>
Reviewed-by: Tim Hudson <tjh at openssl.org>

View the changeset: https://github.com/openssl/openssl/compare/f78baa9d715a...c436c990f689

View the full build log and details: https://travis-ci.org/openssl/openssl/builds/111232422


You can configure recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-commits/attachments/20160224/d1370d19/attachment-0001.html>

More information about the openssl-commits mailing list