Skip to content

PKITS 4.10.7 and 4.10.8 hang on Windows in OpenSSL 3.0 #19643

New issue
New issue
Closed
Closed
PKITS 4.10.7 and 4.10.8 hang on Windows in OpenSSL 3.0#19643
Labels
branch: 3.0Applies to openssl-3.0 branchbranch: 3.1Applies to openssl-3.1 (EOL)branch: masterApplies to master branchhelp wantedtriaged: bugThe issue/pr is/fixes a bug
@brucestephens

Description

@brucestephens
brucestephens
opened on Nov 10, 2022

Presuming TA.pem is the trust anchor from PKITS, the following works fine on GNU/Linux but hangs on Windows:

% openssl cms -verify -CAfile TA.pem -policy anyPolicy -in SignedInvalidMappingFromanyPolicyTest7.eml
CMS Verification failure
0046881801000000:error:17000064:CMS routines:cms_signerinfo_verify_cert:certificate verify error:../crypto/cms/cms_smime.c:289:Verify error: invalid or inconsistent certificate policy extension

Similarly for the next test.

git bisect suggests the problem is 9aa4be6 so I presume the difference is something to do with the way locking works on Windows compared to pthreads.

Metadata

Metadata

Assignees

No one assigned

    Labels

    branch: 3.0Applies to openssl-3.0 branchbranch: 3.1Applies to openssl-3.1 (EOL)branch: masterApplies to master branchhelp wantedtriaged: bugThe issue/pr is/fixes a bug

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions