Platform and configuration command: $ uname -a Linux run 5.4.0-65-generic #73-Ubuntu SMP Mon Jan 18 17:25:17 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2
Commit log since last time: 2145ba5e83 Implement EVP_PKEY_dup() function c464583483 Remove RSA bignum_data that is not used anywhere 7f2fa88519 doc: fix style problems with this man page e7aa284e68 Fix X509_PUBKEY_dup() to not leak memory 808c63c5d0 test: add test case for X508_PUBKEY_dup() function 239ff7f769 doc: add documentation for the X509_PUBKEY_dup() function f0800c7c22 Allocates and initializes pubkey in X509_PUBKEY_dup() a638fb9413 Fix Build issue on Oracle Linux x64 ed2e5b612d Disable cmp_http test on AIX 53eecb5de5 TEST: Cleanup test recipes bf5b37cedf Make the SM2 group the default group for the SM2 algorithm cede07dc51 Remove the external BoringSSL test 6b2e51dd36 ssl/ssl_ciph.c: update format string, again 6466cc97e8 HTTP: Fix mem leak of OSSL_HTTP_REQ_CTX_transfer(), rename to ossl_http_req_ctx_transfer() 1c8505fb7d HTTP: Rename OSSL_HTTP_REQ_CTX_i2d() to OSSL_HTTP_REQ_CTX_set1_req() 814581bb7a RSA-PSS: When printing parameters, always print the trailerfield ASN.1 value 4551763efc doc: life-cycle descritpion for MACs 10b63e9756 doc: note that MAC lifecycle transitions will be enforced at some point b0b63654e9 doc: life-cycle descritpion for RANDs 632bc4dff3 doc: note that RAND lifecycle transitions will be enforced at some point 77d12ae049 doc: life-cycle description for KDFs/PRFs 2e1a40d037 doc: note that KDF/PRF transitions will be enforced at some future point 4aac71f705 doc: add life-cycle source files 8c63532002 test: fix coverity 1473609 & 1473610: unchecked return values 8eca93f8fb evp: fix coverity 1473378: unchecked return value 27f37279df params: fix coverity 1473069: unchecked return values 40d6e05cf8 evp: fix coverity 1467500 & 1467502: unchecked return values 8cdcb63fc0 apps: fix coverity 1455340: unchecked return value 3352a4f6fa test: fix coverity 1451550: unchecked return value f47865156a test: fix coverity 1429210: unchecked return value b8cb90cdb6 test: fix coverity 1416888: unchecked return value 0d2b8bd261 test: fix coverity 1414451: unchecked return value a02d70dd51 apps: fix coverity 1358776, 1451513, 1451519, 1451531 & 1473387: unchecked return values 6a6844a219 test: fix coverity 1338157: unchecked return value 3c4c8dd84a encoder: fix coverity 1473235: null dereference 26d5244253 apps: fix coverity 1470781: explicit null dereference fbe286a36e sm2: fix coverity 1467503: explicit null dereference 993237a8b6 rsa: fix coverity 1463571: explicit null dereference 8f4cddbc90 rand: fix coverity 1473636: data race condition 9aa4be691f x509: fix coverity 1474424: data race condition 96a68f21c3 x509: fix coverity 1461225: data race condition 4f0831b837 EVP_PKCS82PKEY: Create provided keys if possible 468d9d5564 Update CHANGES.md and NEWS.md for new release 39a140597d Ensure buffer/length pairs are always in sync 02b1636fe3 ssl sigalg extension: fix NULL pointer dereference 112580c27b Add a test for CVE-2021-3449 ae937a096c Teach TLSProxy how to encrypt <= TLSv1.2 ETM records Build log ended with (last 100 lines): # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6634 # false # OPENSSL_TEST_RAND_ORDER=1617145751 not ok 2 - iteration 2 # ------------------------------------------------------------------------------ # OPENSSL_TEST_RAND_ORDER=1617145751 not ok 56 - test_ssl_pending # ------------------------------------------------------------------------------ ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/WtsOeKOfrN default ../../../openssl/test/default.cnf => 1 not ok 1 - running sslapitest # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1003 # false # OPENSSL_TEST_RAND_ORDER=1617145764 not ok 3 - test_large_message_dtls # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1484 # false # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1562 # false # OPENSSL_TEST_RAND_ORDER=1617145764 not ok 4 - test_cleanse_plaintext # ------------------------------------------------------------------------------ # INFO: @ ../openssl/test/helpers/ssltestlib.c:957 # SSL_connect() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/helpers/ssltestlib.c:975 # SSL_accept() failed -1, 1 # 80715931627F0000:error:0A000129:SSL routines:tls_setup_handshake:no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:121:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6634 # false # OPENSSL_TEST_RAND_ORDER=1617145764 not ok 2 - iteration 2 # ------------------------------------------------------------------------------ # OPENSSL_TEST_RAND_ORDER=1617145764 not ok 56 - test_ssl_pending # ------------------------------------------------------------------------------ ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/WtsOeKOfrN fips ../../../openssl/test/fips-and-base.cnf => 1 not ok 2 - running sslapitest # ------------------------------------------------------------------------------ # Failed test 'running sslapitest' # at ../openssl/test/recipes/90-test_sslapi.t line 38. # Looks like you failed 2 tests of 2.90-test_sslapi.t ................... Dubious, test returned 2 (wstat 512, 0x200) Failed 2/2 subtests 90-test_sslbuffers.t ............... ok 90-test_store.t .................... ok 90-test_sysdefault.t ............... ok 90-test_threads.t .................. ok 90-test_time_offset.t .............. ok 90-test_tls13ccs.t ................. ok 90-test_tls13encryption.t .......... ok 90-test_tls13secrets.t ............. ok 90-test_v3name.t ................... ok 91-test_pkey_check.t ............... ok 95-test_external_gost_engine.t ..... skipped: No external tests in this configuration 95-test_external_krb5.t ............ skipped: No external tests in this configuration 95-test_external_pyca.t ............ skipped: No external tests in this configuration 99-test_ecstress.t ................. ok 99-test_fuzz_asn1.t ................ ok 99-test_fuzz_asn1parse.t ........... ok 99-test_fuzz_bignum.t .............. ok 99-test_fuzz_bndiv.t ............... ok 99-test_fuzz_client.t .............. ok 99-test_fuzz_cmp.t ................. ok 99-test_fuzz_cms.t ................. ok 99-test_fuzz_conf.t ................ ok 99-test_fuzz_crl.t ................. ok 99-test_fuzz_ct.t .................. ok 99-test_fuzz_server.t .............. ok 99-test_fuzz_x509.t ................ ok Test Summary Report ------------------- 80-test_dtls.t (Wstat: 256 Tests: 1 Failed: 1) Failed test: 1 Non-zero exit status: 1 80-test_ssl_new.t (Wstat: 768 Tests: 30 Failed: 3) Failed tests: 7, 16, 18 Non-zero exit status: 3 90-test_sslapi.t (Wstat: 512 Tests: 2 Failed: 2) Failed tests: 1-2 Non-zero exit status: 2 Files=233, Tests=3294, 942 wallclock secs (14.48 usr 1.33 sys + 850.89 cusr 88.36 csys = 955.06 CPU) Result: FAIL make[1]: *** [Makefile:3285: _tests] Error 1 make[1]: Leaving directory '/home/openssl/run-checker/no-dtls1_2' make: *** [Makefile:3282: tests] Error 2