Still Failing: openssl/openssl#27859 (OpenSSL_1_1_1-stable - 9757a5a)
builds at travis-ci.org
Wed Sep 4 14:39:20 UTC 2019
Build Update for openssl/openssl
Status: Still Failing
Duration: 18 mins and 2 secs
Commit: 9757a5a (OpenSSL_1_1_1-stable)
Author: David Woodhouse
Message: Fix bogus check for EVP_PKEY mandatory digest in check_cert_usable()
In commit 6aca8d1a5 ("Honour mandatory digest on private key in
has_usable_cert()") I added two checks for the capabilities of the
EVP_PKEY being used. One of them was wrong, as it should only be
checking the signature of the X.509 cert (by its issuer) against the
sigalgs given in a TLS v1.3 signature_algorithms_cert extension.
Reviewed-by: Matt Caswell <matt at openssl.org>
Reviewed-by: Ben Kaduk <kaduk at mit.edu>
Reviewed-by: Tomas Mraz <tmraz at fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9705)
View the changeset: https://github.com/openssl/openssl/compare/1bf29d497e66...9757a5ad8a3b
View the full build log and details: https://travis-ci.org/openssl/openssl/builds/580750891?utm_medium=notification&utm_source=email
You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.org/account/preferences/unsubscribe?repository=5849220&utm_medium=notification&utm_source=email.
Or unsubscribe from *all* email updating your settings at https://travis-ci.org/account/preferences/unsubscribe?utm_medium=notification&utm_source=email.
Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-commits