[openssl-commits] Errored: openssl/openssl#2060 (OpenSSL_1_0_2-stable - c436c99)
Travis CI
builds at travis-ci.org
Wed Feb 24 09:08:18 UTC 2016
Build Update for openssl/openssl
-------------------------------------
Build: #2060
Status: Errored
Duration: 11 minutes and 9 seconds
Commit: c436c99 (OpenSSL_1_0_2-stable)
Author: David Woodhouse
Message: RT4175: Fix PKCS7_verify() regression with Authenticode signatures
This is a partial revert of commit c8491de39 ("GH354: Memory leak fixes"),
which was cherry-picked from commit 55500ea7c in OpenSSL 1.1.
That commit introduced a change in behaviour which is a regression for
software implementing Microsoft Authenticode — which requires a PKCS#7
signature to be validated against explicit external data, even though
it's a non-detached signature with its own embedded data.
The is fixed differently in OpenSSL 1.1 by commit 6b2ebe433 ("Add
PKCS7_NO_DUAL_CONTENT flag"), but that approach isn't viable in the
1.0.2 stable branch, so just comment the offending check back out again.
Signed-off-by: Rich Salz <rsalz at openssl.org>
Reviewed-by: Tim Hudson <tjh at openssl.org>
View the changeset: https://github.com/openssl/openssl/compare/f78baa9d715a...c436c990f689
View the full build log and details: https://travis-ci.org/openssl/openssl/builds/111232422
--
You can configure recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-commits/attachments/20160224/d1370d19/attachment-0001.html>
More information about the openssl-commits
mailing list