Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2

OpenSSL run-checker openssl at openssl.org
Fri Sep 25 14:47:12 UTC 2020 

Platform and configuration command:

$ uname -a
Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
$ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2

Commit log since last time:

b0614f0ae3 drbg: revert renamings of the generate and reseed counter
0ce47b35c7 Configurations/unix-Makefile.tmpl: make cleanup kinder
e771249c4f Fix propq in x942kdf
0ecec0fa08 Fix missing propq in sm2
851886b061 Fix missing propq in ffc_params_generate
c4b3ea73a7 Fix missing propq in ecdh_cms_set_shared_info()
8dbef010e7 Fix ecx so that is uses a settable propertyquery
7f80980fb7 Fix ssl_hmac_new() so that it uses the propq
26496f5a5c Fix EVP_KDF_scrypt so that is uses a propq for its fetch.
719523c76d Change rsa gen so it can use the propq from OSSL_PKEY_PARAM_RSA_DIGEST
81777339e9 Fix CID 1466709 : Negative value passed to a function that cant be negative in cms_sd.c
ced5231b04 Fix CID 1466710 : Resource leak in ec_kmgmt due to new call to ossl_prov_is_running()
965d3f36c4 Fix CID 1466712 : Resource leak in ec_kmgmt due to new callto ossl_prov_is_running()
ad2dbfb543 Fix CID 1466713 : Dead code in encode_key2text.c
d65ab22efd Fix CID 1466714 : Null pointer dereference in EVP_PKEY_CTX_ctrl() due to new call to evp_pkey_ctx_store_cached_data()
78ef571707 Fix CID 1467068 : Null pointer dereference in self_test.c
2e9ab56edc rand: add a test case for configuration based random
2ff4e15dc2 list: add capability to print details about the current DRBGs
0ed26fb63c drbg: gettable parameters for cipher/digest/mac type.
c9452d74a4 kdf/mac: add name query calls for KDFs and MACs
d8e52fd05e evp_rand: fix bug in gettable_ctx/settable_ctx calls
44d2482ba6 Add a "random" configuration section.
11b93a1c82 DOC: remove OPENSSL_CTX from OSSL_DECODER_CTX_new
4640cd00c3 rand: reference count the EVP_RAND contexts.
8e3a64fdb6 Add auto-gen SM2 der files into .gitignore
e9aa4a16a6 refactor get params functions
1d03db9085 support PARAM_SECURITY_BITS for SM2
b3d267caac Address review comments
d0b79f8631 Add SM2 signature algorithm to default provider
7ee511d093 Add SM2 key management
6b1428ac12 Added FIPS DEP initialization for the NonStop platform in fips/self_test.c.

Build log ended with (last 100 lines):

    # INFO:  @ ../openssl/test/ssltestlib.c:946
    # SSL_connect() failed -1, 1
    # C0804D12E37F0000:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1324
    # false
    # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1402
    # false
    not ok 4 - test_cleanse_plaintext
# ------------------------------------------------------------------------------
        # INFO:  @ ../openssl/test/ssltestlib.c:964
        # SSL_accept() failed -1, 1
        # C0804D12E37F0000:error::SSL routines::no suitable signature algorithm:../openssl/ssl/t1_lib.c:3325:
        # INFO:  @ ../openssl/test/ssltestlib.c:946
        # SSL_connect() failed -1, 1
        # C0804D12E37F0000:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80
        # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6451
        # false
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    not ok 53 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/g_dIrwGyQe default ../../../openssl/test/default.cnf => 1
not ok 1 - running sslapitest
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/ssltestlib.c:946
    # SSL_connect() failed -1, 1
    # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/ssltestlib.c:964
    # SSL_accept() failed -1, 1
    # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:843
    # false
    not ok 3 - test_large_message_dtls
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/ssltestlib.c:946
    # SSL_connect() failed -1, 1
    # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/ssltestlib.c:964
    # SSL_accept() failed -1, 1
    # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1324
    # false
    # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1402
    # false
    not ok 4 - test_cleanse_plaintext
# ------------------------------------------------------------------------------
        # INFO:  @ ../openssl/test/ssltestlib.c:946
        # SSL_connect() failed -1, 1
        # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # INFO:  @ ../openssl/test/ssltestlib.c:964
        # SSL_accept() failed -1, 1
        # C0D090BBB47F0000:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:123:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6451
        # false
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    not ok 53 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/g_dIrwGyQe fips ../../../openssl/test/fips-and-base.cnf => 1
not ok 3 - running sslapitest
# ------------------------------------------------------------------------------
#   Failed test 'running sslapitest'
#   at ../openssl/test/recipes/90-test_sslapi.t line 45.
# Looks like you failed 2 tests of 3.90-test_sslapi.t ................... 
Dubious, test returned 2 (wstat 512, 0x200)
Failed 2/3 subtests 
90-test_sslbuffers.t ............... ok
90-test_store.t .................... ok
90-test_sysdefault.t ............... ok
90-test_threads.t .................. ok
90-test_time_offset.t .............. ok
90-test_tls13ccs.t ................. ok
90-test_tls13encryption.t .......... ok
90-test_tls13secrets.t ............. ok
90-test_v3name.t ................... ok
95-test_external_boringssl.t ....... skipped: No external tests in this configuration
95-test_external_gost_engine.t ..... skipped: No external tests in this configuration
95-test_external_krb5.t ............ skipped: No external tests in this configuration
95-test_external_pyca.t ............ skipped: No external tests in this configuration
99-test_ecstress.t ................. ok
99-test_fuzz.t ..................... ok

Test Summary Report
-------------------
80-test_dtls.t                   (Wstat: 256 Tests: 1 Failed: 1)
  Failed test:  1
  Non-zero exit status: 1
80-test_ssl_new.t                (Wstat: 1024 Tests: 31 Failed: 4)
  Failed tests:  5, 8, 17, 19
  Non-zero exit status: 4
90-test_sslapi.t                 (Wstat: 512 Tests: 3 Failed: 2)
  Failed tests:  1, 3
  Non-zero exit status: 2
Files=213, Tests=3584, 700 wallclock secs (13.32 usr  1.14 sys + 639.43 cusr 56.90 csys = 710.79 CPU)
Result: FAIL
Makefile:3189: recipe for target '_tests' failed
make[1]: *** [_tests] Error 1
make[1]: Leaving directory '/home/openssl/run-checker/no-dtls1_2'
Makefile:3187: recipe for target 'tests' failed
make: *** [tests] Error 2

More information about the openssl-commits mailing list