CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2025/12/20 00:22:43
Modified files:
lib/libcrypto/man: PKCS7_verify.3
lib/libcrypto/pkcs7: pk7_smime.c pkcs7.h
Log message:
pkcs7: add PKCS7_NO_DUAL_CONTENT flag/behavior
What Netscape fucked up just had to be embraced by secure boot and
other nonsense. First OpenSSL wanted to be strict (which we inherited)
then Rich Salz Postel-ized this and made OpenSSL bypass this check by
default and added a flag to be strict 10 years ago.
Now sthen found that PHP 8.5 uses/exposes this flag.
Follows OpenSSL 6b2ebe43 (2016)
ok kenjiro
