Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2-method

OpenSSL run-checker openssl at openssl.org
Sat Mar 27 03:18:48 UTC 2021


Platform and configuration command:

$ uname -a
Linux run 5.4.0-65-generic #73-Ubuntu SMP Mon Jan 18 17:25:17 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
$ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2-method

Commit log since last time:

eb78f95523 Make fipsinstall -out flag optional
b238e78fe8 Rearranged .pdata entries in rsaz-avx512.pl to make them properly ordered.
1f085af02c Add coveralls to CI
c08138e500 Fix compilation under -Werror
0dd19e750f Fix a windows build break
218e1263c4 ec_keymgmt: fix coverity 1474427: resource leak
9d8c53ed16 dh: fix coverty 1474423: resource leak
9ca269af63 apps: fix coverity 1451544: improper use of negative value
66325793cc test: fix coverity 1451534: improper use of negative value
69fb52e028 test: fix coverity 1469427: impropery use of negative value
51d1991ecd test: fix coverity 1454812: improper use of negative value
9ba18520ff test: fix coverity 1451574: improper use of negative value
1634b2df9f enc: fix coverity 1451499, 1451501, 1451506, 1451507, 1351511, 1451514, 1451517, 1451523, 1451526m 1451528, 1451539, 1451441, 1451549, 1451568 & 1451572: improper use of negative value
fe10fa7521 test: fix coverity 1371689 & 1371690: improper use of negative values
5a14bd153a apps: fix coverity 271258: improper use of negative value
a60b533125 err: fix coverity 1452768: dereference after null check
711d7ca594 pem: fix coverity 1474426: uninitialised scalar variable.
a669418c8e Be more selective about copying libcrypto symbols into legacy.so
ccdfcf07d9 Disable fips-securitychecks if no-fips is configured.
6511f686c2 endecode_test: Add file and line arguments to test callbacks
e72dbd8e13 Fix usages of const EVP_MD.
c781eb1c63 Dual 1024-bit exponentiation optimization for Intel IceLake CPU with AVX512_IFMA + AVX512_VL instructions, primarily for RSA CRT private key operations. It uses 256-bit registers to avoid CPU frequency scaling issues. The performance speedup for RSA2k signature on ICL is ~2x.
db89d8f04b APPS: fix load_certs_multifile() interpreting backslashes
251c48183b Fix DER reading from stdin for BIO_f_readbuffer

Build log ended with (last 100 lines):

        # false
        # OPENSSL_TEST_RAND_ORDER=1616814483
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    # OPENSSL_TEST_RAND_ORDER=1616814483
    not ok 56 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/ljm9_UW7JA default ../../../openssl/test/default.cnf => 1
not ok 1 - running sslapitest
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
    # SSL_connect() failed -1, 1
    # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
    # SSL_accept() failed -1, 1
    # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1003
    # false
    # OPENSSL_TEST_RAND_ORDER=1616814496
    not ok 3 - test_large_message_dtls
# ------------------------------------------------------------------------------
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
    # SSL_connect() failed -1, 1
    # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
    # SSL_accept() failed -1, 1
    # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
    # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1484
    # false
    # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1562
    # false
    # OPENSSL_TEST_RAND_ORDER=1616814496
    not ok 4 - test_cleanse_plaintext
# ------------------------------------------------------------------------------
        # INFO:  @ ../openssl/test/helpers/ssltestlib.c:957
        # SSL_connect() failed -1, 1
        # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # INFO:  @ ../openssl/test/helpers/ssltestlib.c:975
        # SSL_accept() failed -1, 1
        # 8011C7A9347F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers
        # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6634
        # false
        # OPENSSL_TEST_RAND_ORDER=1616814496
        not ok 2 - iteration 2
# ------------------------------------------------------------------------------
    # OPENSSL_TEST_RAND_ORDER=1616814496
    not ok 56 - test_ssl_pending
# ------------------------------------------------------------------------------
../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/ljm9_UW7JA fips ../../../openssl/test/fips-and-base.cnf => 1
not ok 2 - running sslapitest
# ------------------------------------------------------------------------------
#   Failed test 'running sslapitest'
#   at ../openssl/test/recipes/90-test_sslapi.t line 38.
# Looks like you failed 2 tests of 2.90-test_sslapi.t ................... 
Dubious, test returned 2 (wstat 512, 0x200)
Failed 2/2 subtests 
90-test_sslbuffers.t ............... ok
90-test_store.t .................... ok
90-test_sysdefault.t ............... ok
90-test_threads.t .................. ok
90-test_time_offset.t .............. ok
90-test_tls13ccs.t ................. ok
90-test_tls13encryption.t .......... ok
90-test_tls13secrets.t ............. ok
90-test_v3name.t ................... ok
91-test_pkey_check.t ............... ok
95-test_external_boringssl.t ....... skipped: No external tests in this configuration
95-test_external_gost_engine.t ..... skipped: No external tests in this configuration
95-test_external_krb5.t ............ skipped: No external tests in this configuration
95-test_external_pyca.t ............ skipped: No external tests in this configuration
99-test_ecstress.t ................. ok
99-test_fuzz_asn1.t ................ ok
99-test_fuzz_asn1parse.t ........... ok
99-test_fuzz_bignum.t .............. ok
99-test_fuzz_bndiv.t ............... ok
99-test_fuzz_client.t .............. ok
99-test_fuzz_cmp.t ................. ok
99-test_fuzz_cms.t ................. ok
99-test_fuzz_conf.t ................ ok
99-test_fuzz_crl.t ................. ok
99-test_fuzz_ct.t .................. ok
99-test_fuzz_server.t .............. ok
99-test_fuzz_x509.t ................ ok

Test Summary Report
-------------------
80-test_dtls.t                   (Wstat: 256 Tests: 1 Failed: 1)
  Failed test:  1
  Non-zero exit status: 1
80-test_ssl_new.t                (Wstat: 768 Tests: 30 Failed: 3)
  Failed tests:  7, 16, 18
  Non-zero exit status: 3
90-test_sslapi.t                 (Wstat: 512 Tests: 2 Failed: 2)
  Failed tests:  1-2
  Non-zero exit status: 2
Files=234, Tests=3293, 973 wallclock secs (14.37 usr  1.33 sys + 883.53 cusr 85.93 csys = 985.16 CPU)
Result: FAIL
make[1]: *** [Makefile:3277: _tests] Error 1
make[1]: Leaving directory '/home/openssl/run-checker/no-dtls1_2-method'
make: *** [Makefile:3274: tests] Error 2


More information about the openssl-commits mailing list