Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2

OpenSSL run-checker openssl at openssl.org
Wed Mar 3 02:01:29 UTC 2021


Platform and configuration command:

$ uname -a
Linux run 5.4.0-52-generic #57-Ubuntu SMP Thu Oct 15 10:57:00 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
$ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2

Commit log since last time:

e60e974414 apps/x509.c: Fix mem leaks in processing of -next_serial in print loop
46a11faf3b apps/x509.c: Improve print_name() and coding style of large print loop in x509_main()
859e5f1621 apps/x509.c: Improve indentation of the large print loop in x509_main()
ed0a5ac920 apps/x509.c: Fix too eager call to X509_set_issuer_name() introduced recently
d5a936c5b1 rand: use params argument on instantiate call
dbf299f73d core: add params argument to DRBG instantiate call
f8a5822cff doc: update documenation with params argument on DRBG instantiate calls
7198bd1a8f test: update tests to allow for params argument for the instantiate call on EVP_RAND_CTXs
b98d550d80 prov: update rand implementations to have a params argument for the instantiate call
8d5b197b28 fips: update DRBG KATs for the extra instantiate argument
671ff5c74e evp: add params argument to EVP_RAND_instantiate()
6980e36a2a doc: document additional argument to KDF derive calls
f5081be376 prov: add additional argument to KDF derive call in key exchange
6bcd32a43f fips: add additional argument to KDF derive call in self test
36fae6e85a crypto: add additional argument to KDF derive calls
bb0ab821f3 apps: add addition argument to KDF derive call
3469b38816 prov: add extra params argument to KDF implementations
5cceedb583 tls: adjust for extra argument to KDF derive call
05cdec396b test: adjust tests to include extra argument to KDF derive call
7c75f2daf8 evp: add param argument to KDF derive call
a9603292fb core: add param argument to KDF derive call
dc567dc746 doc: update provider-mac documentation to account for the additional init() arguments
9258f7efa7 doc: update KMAC doc to not say that the `KEY\' parameter needs to be set before the init call
7f7640c455 apps: update speed to use the additional arguments to MAC_init
afa44486c5 doc: note the additional parameters to EVP_MAC_init()
1dfe97530f update poly1305 to have additional init arguments
80ba2526fa update BLAKE2 to have additional init arguments
ac238428ce prov: update kmac to have additional init arguments
c23f96f3f6 prov: update hmac to have additional init arguments
0a56b3c2e5 prov: update gmac to have additional init arguments
005b190297 prov: update cmac to have additional init arguments
cf5784aa03 prov: use new MAC_init arguments in HMAC-DRBG
91593b3784 prov: use new MAC_init arguments in signature legacy code
19ea8a8a21 prov: update provider util to be less agressive about changing things unnecessarily
fbff75caaa fips: update to use the extra MAC init arguments
b58e1f7490 core: update to use the extra MAC init arguments
77e4ae58ea test: updates for the new additional MAC_init arguments
41df96efc1 evp_test: updates for the new additional MAC_init arguments
0edb819441 tls: updates for the new additional MAC_init arguments
cc2314a9f6 evp: updates for the new additional MAC_init arguments
1dc28e742d crmf: updates for the new additional MAC_init arguments
4a5d8c0cb7 apps: updates for the new additional MAC_init arguments
2211bf6bb7 apps: update mac to work with additional MAC_init arguments.  This doesn't include the creation of new 'key' arguments.
ebf8274c55 apps: update fipsinstall to work with additional MAC_init arguments
2524ec1ac2 prov kdf: update to use the extra MAC init arguments
8f5d64b102 prov: update SipHash to new init function
ae7d90a159 siphash: Add the C and D round parameters for SipHash.
1d73e2adae crypto/asn1/i2d_evp.c: Fix i2d_provided() to return a proper length
c8182743a7 PROV: Implement an EC key -> blob encoder, to get the public key
8ab9c4ddc4 Modify i2d_PublicKey() so it can get an EC public key as a blob
3d36472660 test_ecpub: test that we can decode the DER we encoded
ad7cb0bf5c test_ecpub: verify returned length after encoding
c0ff1932e4 Add test for EC pubkey export/import
4ef70dbcf4 Code cleanup mostly in crypto/x509/v3_purp.c
90b4247cc5 Check ASN1_item_ndef_i2d() return value.
d2ccfb9caa evp_pkey_provided_test: Improve diagnostic output
4519ea90eb tests: Always print errors before test verdict
db7fbd54cf fuzzer: add ctx gettable/settable to the fuzzer RNG
2e36321aec test: add ctx gettable/settable to the generic fake random number generator
e79fb279df core: support modified gettable/settable ctx calls for ciphers
fe20a66ed4 changes to match the updated context gettable/settable calls for ciphers
292b4184d6 evp: upport modified gettable/settable ctx calls for ciphers
644c5dd366 prov: upport modified gettable/settable ctx calls for ciphers
35c76a528b evp: support modified gettable/settable ctx calls for MACs
8dd233bb07 doc: changes to match the updated context gettable/settable calls for MACs
5a7134ee10 core: core: support modified gettable/settable ctx calls for MACs
eee323c339 prov: support modified gettable/settable ctx calls for MACs
1e8e5c6092 prov: support modified gettable/settable ctx calls for KDFs
de43d82b6d core: support modified gettable/settable ctx calls for KDFs
a5120afda3 evp: support modified gettable/settable ctx calls for KDFs
530cacb56f doc: changes to match the updated context gettable/settable calls
caa60428cd evp: support modified gettable/settable ctx calls for RNGs
1c9eaf4251 core: update RNG gettable/settable ctx param calls
a3f091fddd prov: update RNGs to support modified gettable/settable CTX params
90fec26dc6 doc: note changes to rand gettable/settable provider call
d618ac6fd7 doc: note changes to digest gettable/settable provider calls
6de3a06dd4 modify EVP to support digest gettable/settable calls
aa95e08b29 core: update digest gettable/settable ctx params calls
e772f25ca8 prov: update digests to support modified ctx params
5a6a6d59a6 Makefile: Only update doc/build.info when there's an actual change
32ab57cbb4 Fix external symbols related to ec & sm2 keys
5af02212a5 Fix external symbols related to dsa keys
19dbb742cd Fix external symbols related to dh keys
94553e85b6 Fix external symbols for bn
2d96895122 Fix filename escaping in c_rehash
1cba86234a evp_extra_test: Do not manipulate providers in default context
8cdc3425af fake_random: Do not overwrite the callback on instatiation
0c84139c98 Ensure that the fake rand is initialized
75de543635 Fix an integer overflow in o_time.c
5eb73cfb37 Add a test for a names_do_all function
d84f5515fa Don't hold a lock when calling a callback in ossl_namemap_doall_names

Build log ended with (last 100 lines):

        # false
        # OPENSSL_TEST_RAND_ORDER=1614736215
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    # OPENSSL_TEST_RAND_ORDER=1614736215
    not ok 54 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/muDx33hleT default ../../../openssl/test/default.cnf => 1
not ok 1 - running sslapitest
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
    # SSL_connect() failed -1, 1
    # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
    # SSL_accept() failed -1, 1
    # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:944
    # false
    # OPENSSL_TEST_RAND_ORDER=1614736229
    not ok 3 - test_large_message_dtls
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
    # SSL_connect() failed -1, 1
    # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
    # SSL_accept() failed -1, 1
    # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1425
    # false
    # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1503
    # false
    # OPENSSL_TEST_RAND_ORDER=1614736229
    not ok 4 - test_cleanse_plaintext
# ------------------------------------------------------------------------------
        # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
        # SSL_connect() failed -1, 1
        # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
        # SSL_accept() failed -1, 1
        # 8021F4050A7F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6574
        # false
        # OPENSSL_TEST_RAND_ORDER=1614736229
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    # OPENSSL_TEST_RAND_ORDER=1614736229
    not ok 54 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/muDx33hleT fips ../../../openssl/test/fips-and-base.cnf => 1
not ok 3 - running sslapitest
# ------------------------------------------------------------------------------
#   Failed test 'running sslapitest'
#   at ../openssl/test/recipes/90-test_sslapi.t line 45.
# Looks like you failed 2 tests of 3.90-test_sslapi.t ................... 
Dubious, test returned 2 (wstat 512, 0x200)
Failed 2/3 subtests 
90-test_sslbuffers.t ............... ok
90-test_store.t .................... ok
90-test_sysdefault.t ............... ok
90-test_threads.t .................. ok
90-test_time_offset.t .............. ok
90-test_tls13ccs.t ................. ok
90-test_tls13encryption.t .......... ok
90-test_tls13secrets.t ............. ok
90-test_v3name.t ................... ok
91-test_pkey_check.t ............... ok
95-test_external_boringssl.t ....... skipped: No external tests in this configuration
95-test_external_gost_engine.t ..... skipped: No external tests in this configuration
95-test_external_krb5.t ............ skipped: No external tests in this configuration
95-test_external_pyca.t ............ skipped: No external tests in this configuration
99-test_ecstress.t ................. ok
99-test_fuzz_asn1.t ................ ok
99-test_fuzz_asn1parse.t ........... ok
99-test_fuzz_bignum.t .............. ok
99-test_fuzz_bndiv.t ............... ok
99-test_fuzz_client.t .............. ok
99-test_fuzz_cmp.t ................. ok
99-test_fuzz_cms.t ................. ok
99-test_fuzz_conf.t ................ ok
99-test_fuzz_crl.t ................. ok
99-test_fuzz_ct.t .................. ok
99-test_fuzz_server.t .............. ok
99-test_fuzz_x509.t ................ ok

Test Summary Report
-------------------
80-test_dtls.t                   (Wstat: 256 Tests: 1 Failed: 1)
  Failed test:  1
  Non-zero exit status: 1
80-test_ssl_new.t                (Wstat: 768 Tests: 31 Failed: 3)
  Failed tests:  8, 17, 19
  Non-zero exit status: 3
90-test_sslapi.t                 (Wstat: 512 Tests: 3 Failed: 2)
  Failed tests:  1, 3
  Non-zero exit status: 2
Files=232, Tests=3301, 938 wallclock secs (14.37 usr  1.44 sys + 846.65 cusr 90.46 csys = 952.92 CPU)
Result: FAIL
make[1]: *** [Makefile:3290: _tests] Error 1
make[1]: Leaving directory '/home/openssl/run-checker/no-dtls1_2'
make: *** [Makefile:3287: tests] Error 2


More information about the openssl-commits mailing list