Platform and configuration command: $ uname -a Linux run 5.4.0-65-generic #73-Ubuntu SMP Mon Jan 18 17:25:17 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2-method
Commit log since last time: 91bd45eb9a keymgmt_meth: remove two TODO 3.0 3711f4c3fb Fix option description for PKCS#12 export 703c4d669d Convert a TODO(3.0) in OPENSSL_thread_stop_ex to a comment fadb77ce6d Remove a TODO from async_delete_thread_state() 0fc39c9030 Remove TODO in rsa_ameth.c 8bfb8f3458 Remove TODO in test/acvp_test.c related to setting AES-GCM iv. cd3f8c1b11 Always check CRYPTO_LOCK_{read,write}_lock f62846b703 apps/ts.c: Allow -untrusted arg to refer to multiple sources c89fd035d5 TS ESS: Let TS_RESP_verify_signature() make use of untrusted certs also from token response 234261f3a1 ssl: fix format specifier for size_t argument to BIO_printf 0413b7bb9c acvp_test: Do not expect exact number of self tests 061ae2f6a2 Remove the RAND_get0_public() from fips provider initialization 12b4e5821d Use OPENSSL_init_crypto(OPENSSL_INIT_BASE_ONLY, NULL) in libcrypto 343475126e Update CHANGES with info about AuthEnvelopedData addition 8f08957674 rename ossl_provider_forall_loaded to ossl_provider_doall_activated 3c5ce1ce81 doc: describe the return from ossl_provider_forall_loaded() 7bbfbc8239 core: modify ossl_provider_forall_loaded() to avoid locking for the callbacks 3d0b56785a Don't crash if the pkeyopt doesn't have a value 8bf611bc7f update set_ctx_param store management calls to return 1 for a NULL params 20b8dc6fb1 update set_ctx_param DRBG calls to return 1 for a NULL params 5a6b62bb42 update set_ctx_param MAC calls to return 1 for a NULL params c983a0e521 prov: add extra params argument to KDF implementations f59612fed8 doc: note that get_params and set_params calls should return true if the param array is null f187d4f9f8 doc: document the additional params argument to the various init() calls 12ddfa6b34 support params argument to AES cipher init calls 1036bb64a7 doc: update cipher documentation to include the new init functions with params 83da94ffa8 prov: support params argument to common cipher init calls deee967272 prov: support param argument to DES cipher init calls 8b81a89d06 prov: support param argument to null cipher init calls f336f98dbf prov: support params argument to CHACHA20 ciphers 8f42380a21 prov: support params argument to RCx ciphers 556b8937d0 prov: support params arguments to signature init calls 5506cd0bbd prov: update digests to support modified ctx params 5a7e999114 doc: update digest documentation to include the new init functions with params d7ec1dda2e prov: support param argument to digest init calls 408def8b30 doc: document param argument to RSA calls 8ea34a6efa doc: document param argument to cipher init calls af6171b35a test: support params arguments to init functions d38b6ae96f ssl: support params arguments to init functions ebbf3563bd apps: support param argument to init functions 5a084c5f0b prov: update KEM to support params on init() 2b2f4f9b1b prov: update exchange algorithms to support params on the init call 1666eec837 misc: other init function param additions ee22fca5ce doc: update PKEY documentation to include the new init functions with params 4b58d9b41b evp: add params arguments to init functions 480c8ef8b5 core: add params arguments to init calls cbdeb04c90 prov: asym ciphers take an extra init() params argument c4c422e0cc doc: add params argument to key manager's gen_init call 2faea85380 core: add params argument to key manager's gen_init call f9562909b7 provider: add params argument to key manager's gen_init call 1be63b3e96 evp: add params argument to key manager's gen_init call 10ffdda420 test: add params argument to key manager's gen_init call 3d8905f859 Fix error-checking compiles for mutex 0a8e6c1fb7 Increase the upper limit on group name length 92e9359b24 TEST: Stop the cleanup in test/recipes/20-test_mac.t c9d01f4186 PROV: use EVP_CIPHER_CTX_set_params() rather than EVP_CIPHER_CTX_ctrl() 6bbff162f1 openssl-cmp.pod.in and apps/cmp.c: Various minor do improvements e66682a838 Prepare for 3.0 alpha 14 88df2c0b3d Prepare for release of 3.0 alpha 13 8020d79b40 Update copyright year f70863d9dd Use read/write locking on Windows 1aa7ecd0d3 Check SSL_set1_chain error in set_cert_cb bf23b9a163 Fix reason code: EVP_R_OPERATON_NOT_INITIALIZED 903a655847 test: convert store test to use relative paths 925b5360f7 core: add up_ref callback for OSSL_CORE_BIO 141cc94e44 Add a real type for OSSL_CORE_BIO which is distinct from and not castable to BIO 7a45d51ce3 Use BIO_f_readbuffer() in the decoder to support stdin. a30823c80f Add new filter BIO BIO_f_readbuffer() Build log ended with (last 100 lines): # false # OPENSSL_TEST_RAND_ORDER=1615953547 not ok 2 - iteration 2 # ------------------------------------------------------------------------------ # OPENSSL_TEST_RAND_ORDER=1615953547 not ok 56 - test_ssl_pending # ------------------------------------------------------------------------------ ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/GlSRmTf8ZO default ../../../openssl/test/default.cnf => 1 not ok 1 - running sslapitest # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:999 # false # OPENSSL_TEST_RAND_ORDER=1615953561 not ok 3 - test_large_message_dtls # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1480 # false # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1558 # false # OPENSSL_TEST_RAND_ORDER=1615953561 not ok 4 - test_cleanse_plaintext # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80B1C147267F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6629 # false # OPENSSL_TEST_RAND_ORDER=1615953561 not ok 2 - iteration 2 # ------------------------------------------------------------------------------ # OPENSSL_TEST_RAND_ORDER=1615953561 not ok 56 - test_ssl_pending # ------------------------------------------------------------------------------ ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/GlSRmTf8ZO fips ../../../openssl/test/fips-and-base.cnf => 1 not ok 2 - running sslapitest # ------------------------------------------------------------------------------ # Failed test 'running sslapitest' # at ../openssl/test/recipes/90-test_sslapi.t line 38. # Looks like you failed 2 tests of 2.90-test_sslapi.t ................... Dubious, test returned 2 (wstat 512, 0x200) Failed 2/2 subtests 90-test_sslbuffers.t ............... ok 90-test_store.t .................... ok 90-test_sysdefault.t ............... ok 90-test_threads.t .................. ok 90-test_time_offset.t .............. ok 90-test_tls13ccs.t ................. ok 90-test_tls13encryption.t .......... ok 90-test_tls13secrets.t ............. ok 90-test_v3name.t ................... ok 91-test_pkey_check.t ............... ok 95-test_external_boringssl.t ....... skipped: No external tests in this configuration 95-test_external_gost_engine.t ..... skipped: No external tests in this configuration 95-test_external_krb5.t ............ skipped: No external tests in this configuration 95-test_external_pyca.t ............ skipped: No external tests in this configuration 99-test_ecstress.t ................. ok 99-test_fuzz_asn1.t ................ ok 99-test_fuzz_asn1parse.t ........... ok 99-test_fuzz_bignum.t .............. ok 99-test_fuzz_bndiv.t ............... ok 99-test_fuzz_client.t .............. ok 99-test_fuzz_cmp.t ................. ok 99-test_fuzz_cms.t ................. ok 99-test_fuzz_conf.t ................ ok 99-test_fuzz_crl.t ................. ok 99-test_fuzz_ct.t .................. ok 99-test_fuzz_server.t .............. ok 99-test_fuzz_x509.t ................ ok Test Summary Report ------------------- 80-test_dtls.t (Wstat: 256 Tests: 1 Failed: 1) Failed test: 1 Non-zero exit status: 1 80-test_ssl_new.t (Wstat: 768 Tests: 30 Failed: 3) Failed tests: 7, 16, 18 Non-zero exit status: 3 90-test_sslapi.t (Wstat: 512 Tests: 2 Failed: 2) Failed tests: 1-2 Non-zero exit status: 2 Files=233, Tests=3282, 927 wallclock secs (14.24 usr 1.40 sys + 838.16 cusr 89.33 csys = 943.13 CPU) Result: FAIL make[1]: *** [Makefile:3274: _tests] Error 1 make[1]: Leaving directory '/home/openssl/run-checker/no-dtls1_2-method' make: *** [Makefile:3271: tests] Error 2