Your message dated Thu, 11 Apr 2024 15:50:00 +0000
with message-id <[email protected]>
and subject line Bug#1063874: fixed in m2crypto 0.40.1-3
has caused the Debian Bug report #1063874,
regarding m2crypto: Testsuite fails with OpenSSL 3.2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1063874: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063874
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: m2crypto
Version: 0.40.1-1
Severity: important
Tags: sid patch
control: affects -1 src:openssl
User: [email protected]
Usertags: openssl-3.2
OpenSSL had an optimisation for PKCS7_verify() where it kept the memory
BIO around. This optimisation is gone in OpenSSL 3.2 and so the test for
verify fails because the memory BIO "ended".
The attached patch fixes the issue.
Sebastian
>From 08308043d7ce8bb645996c8cb29655a23ead43a4 Mon Sep 17 00:00:00 2001
From: Sebastian Andrzej Siewior <[email protected]>
Date: Tue, 13 Feb 2024 17:47:22 +0100
Subject: [PATCH] test/smime: Rewind BIO before repeadetly invoking verify.
OpenSSL had an optimisation for PKCS7_verify() where it kept the memory
BIO around. This optimisation is gone in OpenSSL 3.2 and so the test for
verify fails because the memory BIO "ended".
Rewind the BIO before invoking verify again on the same data.
Signed-off-by: Sebastian Andrzej Siewior <[email protected]>
---
tests/test_smime.py | 2 ++
1 file changed, 2 insertions(+)
diff --git a/tests/test_smime.py b/tests/test_smime.py
index 6014315353824..1fe7e954fcb89 100644
--- a/tests/test_smime.py
+++ b/tests/test_smime.py
@@ -162,10 +162,12 @@ from tests import unittest
with self.assertRaises(SMIME.PKCS7_Error):
s.verify(p7, data)
+ data.seek(0)
st.set_verify_cb(verify_cb_dummy_function)
v = s.verify(p7, data)
self.assertEqual(v, self.cleartext)
+ data.seek(0)
st.set_verify_cb()
v = s.verify(p7, data)
self.assertEqual(v, self.cleartext)
--
2.43.0
--- End Message ---
--- Begin Message ---
Source: m2crypto
Source-Version: 0.40.1-3
Done: Andreas Beckmann <[email protected]>
We believe that the bug you reported is fixed in the latest version of
m2crypto, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <[email protected]> (supplier of updated m2crypto package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 11 Apr 2024 17:29:26 +0200
Source: m2crypto
Architecture: source
Version: 0.40.1-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Python Team <[email protected]>,
Changed-By: Andreas Beckmann <[email protected]>
Closes: 1063874
Changes:
m2crypto (0.40.1-3) unstable; urgency=medium
.
* QA upload.
* Cherry-pick upstream patch to fix testsuite with OpenSSL 3.2.
(Closes: #1063874)
* Declare Rules-Requires-Root: no.
* Update Lintian overrides.
Checksums-Sha1:
81c27e4c02d341c96d762cb80de325646f56c9f3 2292 m2crypto_0.40.1-3.dsc
8afdd16130d47048847aaeb26a00213f2222dc82 59176 m2crypto_0.40.1-3.debian.tar.xz
8b968b0e7eac2aab8fb859f7c75ca9a6d2d70bce 7993
m2crypto_0.40.1-3_source.buildinfo
Checksums-Sha256:
1437cf2405f0a6a959f4ef1f92758cfb750dcf37b47ebabc633f8893ee70c76e 2292
m2crypto_0.40.1-3.dsc
dbff5bf8a74beff89bc635fc94d9d744c0f0fc7d157b208768f4b9c05eaeaa63 59176
m2crypto_0.40.1-3.debian.tar.xz
0b9185ad1131c5464fe7a514e4886aa3bee8a449731bd8f34f25b06f05b85745 7993
m2crypto_0.40.1-3_source.buildinfo
Files:
8e7fa2d3152ae7ccfa8b253ee4f6a671 2292 python optional m2crypto_0.40.1-3.dsc
2aabbfd9d18d4918d25dd94a4d29252c 59176 python optional
m2crypto_0.40.1-3.debian.tar.xz
79b6857d48a888be5e3fbb6fd7c8d1d4 7993 python optional
m2crypto_0.40.1-3_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=jxJk
-----END PGP SIGNATURE-----
pgpRA1Kf2dW9i.pgp
Description: PGP signature
--- End Message ---
