[openssl/openssl] bio_dgram vs IPv6
Michael Wojcik
Michael.Wojcik at microfocus.com
Thu Mar 31 21:23:04 UTC 2022
> From: openssl-users <openssl-users-bounces at openssl.org> On Behalf Of
> Michael Richardson
> Sent: Thursday, 31 March, 2022 14:19
>
> The clang-9 test fails with:
>
> # ERROR: @ test/bio_dgram_test_helpers.c:150
> # failed to v6 bind socket: Permission denied
> #
> #
> # OPENSSL_TEST_RAND_ORDER=1648577511
> not ok 2 - iteration 1
>
> https://github.com/mcr/openssl/runs/5741887864?check_suite_focus=true
>
> The other clang-XX tests seem to run fine.
> This smells like the problem with TRAVIS where IPv6 was not enabled in the
> Google VMs, but we aren't using those anymore.
>
> It does not bind specific sockets (lets kernel choose), so there shouldn't
> a
> conflict between test cases. Anyway, if that were the case, I'd expect to
> see in-use error rather than permission denied.
>
> Smells to me like someone has restricted network sockets in order to avoid
> being used as an attack system.
Yes, the EPERM certainly suggests that.
Are these running on Linux VMs? SELinux or similar in use, perhaps?
--
Michael Wojcik
More information about the openssl-users
mailing list