[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2 Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/20-test_enc_more.t . ok ../../openssl/test/recipes/20-test_passwd.t ... ok ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... ok ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . skipped: test_dtls_mtu needs DTLS and PSK support enabled ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'running ssl_test 18-dtls-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 130. # Looks like you failed 1 test of 3. # Failed test 'Test configuration 18-dtls-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-t
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls1_2
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls1_2 Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t skipped: test_sslcbcpadding needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... skipped: test_sslrecords needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... skipped: test_sslsigalgs needs TLS1.2 or TLS1.3 enabled ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'running ssl_test 17-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 130. # Looks like you failed 1 test of 3. # Failed test 'Test configuration 17-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-test_bioprint.t . ok ../../openssl/test/recipes/90-test_constant_time.t ok ../../openssl/test/recipes/90-test_external.t . skipped: No external tests in this configuration ../../openssl/test/recipes/90-test_gmdiff.t ... ok ../../openssl/test/recipes/90-test_ige.t .. ok ../../openssl/test/recipes/90-test_memleak.t .. ok ../../openssl/test/recipes/90-test_overhead.t . skipped: Only supported
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls1_1
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls1_1 Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... ok ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'Comparing generated sources.' # at ../../openssl/test/recipes/80-test_ssl_new.t line 122. # got: '1' # expected: '0' # Looks like you failed 1 test of 3. # Failed test 'Test configuration 05-sni.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-test_bioprint.t . ok ../../openssl/test/recipes/90-test_constant_time.t ok ../../openssl/test/recipes/90-test_external.t . skipped: N
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. skipped: No TLS/SSL protocols are supported by this OpenSSL build ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. skipped: No TLS/SSL protocols are supported by this OpenSSL build ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t skipped: test_renegotiation needs TLS <= 1.2 enabled ../../openssl/test/recipes/70-test_sslcbcpadding.t skipped: test_sslcbcpadding needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslcertstatus.t skipped: test_sslcertstatus needs TLS enabled ../../openssl/test/recipes/70-test_sslextension.t . skipped: test_sslextension needs TLS enabled ../../openssl/test/recipes/70-test_sslmessages.t .. skipped: test_sslmessages needs TLS enabled ../../openssl/test/recipes/70-test_sslrecords.t ... skipped: test_sslrecords needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslsessiontick.t ... skipped: test_sslsessiontick needs SSLv3, TLSv1, TLSv1.1 or TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslsigalgs.t ... skipped: test_sslsigalgs needs TLS1.2 or TLS1.3 enabled ../../openssl/test/recipes/70-test_sslsignature.t . skipped: test_sslsignature needs TLS enabled ../../openssl/test/recipes/70-test_sslskewith0p.t . skipped: test_sslskewith0p needs TLS enabled ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t skipped: test_sslextension needs TLS enabled ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . skipped: test_tlsextms needs TLSv1.0, TLSv1.1 or TLSv1.2 enabled ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. skipped: No SSL/TLS protocol is supported by this OpenSSL build. ../../openssl/test/recipes/80-test_cipherlist.t ... skipped: No SSL/TLS protocol is supported by this OpenSSL build. ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'Comparing generated sources.' # at ../../openssl/test/recipes/80-test_ssl_new.t line 122. # got: '1' # expected: '0' # Looks like you failed 1 test of 3. # Failed test 'Test co
[openssl-commits] Build completed: openssl master.8278
Build openssl master.8278 completed Commit 8928256631 by Richard Levitte on 2/20/2017 1:49 AM: Test the storeutl searching options Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Build failed: openssl master.8277
Build openssl master.8277 failed Commit dda82fa010 by Richard Levitte on 12/13/2016 12:47 PM: Add documentation for the storeutl app Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Build completed: openssl master.8272
Build openssl master.8272 completed Commit c2925f48ab by Richard Levitte on 11/19/2016 10:23 AM: Add a URI decoder internals test Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Build failed: openssl master.8271
Build openssl master.8271 failed Commit 66eb008d0e by Richard Levitte on 2/25/2017 10:38 PM: Refactor PEM_read_bio_{PrivateKey,Parameters,DHparams} Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-ec
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-ec Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/15-test_dsa.t .. ok ../../openssl/test/recipes/15-test_ec.t ... ok ../../openssl/test/recipes/15-test_ecdh.t . skipped: ec is not supported by this OpenSSL build ../../openssl/test/recipes/15-test_ecdsa.t skipped: ec is not supported by this OpenSSL build ../../openssl/test/recipes/15-test_rsa.t .. ok ../../openssl/test/recipes/20-test_enc.t .. ok ../../openssl/test/recipes/20-test_enc_more.t . ok ../../openssl/test/recipes/20-test_passwd.t ... ok ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. skipped: test_sid needs EC to run ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok # Looks like you planned 16 tests but ran 15. ../../openssl/test/recipes/70-test_sslsigalgs.t ... Dubious, test returned 255 (wstat 65280, 0xff00) Failed 1/16 subtests (less 14 skipped subtests: 1 okay) ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... skipped: ct and ec are not supported by this OpenSSL build ../../openssl/test/recipes/80-test_dane.t . skipped: test_dane uses ec which is not supported by this OpenSSL build ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok ../../openssl/test/recipes/80-test_ssl_new.t .. ok ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/r
[openssl-commits] [openssl] master update
The branch master has been updated via 57d0d048a85d641181ac5aec2792109e15630f96 (commit) from fd910ef9593d4e16dabf4686ecabb351830045b6 (commit) - Log - commit 57d0d048a85d641181ac5aec2792109e15630f96 Author: Richard Levitte Date: Sun Feb 26 00:17:43 2017 +0100 Add a null UI method There are cases when, if you pass a NULL UI_METHOD, the called function will use an internal default. This is well and good, but there may be cases when this is undesirable and one would rather send in a UI that does absolutely nothing (sort of a /dev/null). UI_null() is the UI_METHOD for this purpose. Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/2744) --- Summary of changes: crypto/ui/build.info | 2 +- crypto/ui/ui_null.c | 26 ++ doc/man3/UI_new.pod | 6 +- include/openssl/ui.h | 6 ++ util/libcrypto.num | 1 + 5 files changed, 39 insertions(+), 2 deletions(-) create mode 100644 crypto/ui/ui_null.c diff --git a/crypto/ui/build.info b/crypto/ui/build.info index fcb45af..c5d17fb 100644 --- a/crypto/ui/build.info +++ b/crypto/ui/build.info @@ -1,3 +1,3 @@ LIBS=../../libcrypto SOURCE[../../libcrypto]=\ -ui_err.c ui_lib.c ui_openssl.c ui_util.c +ui_err.c ui_lib.c ui_openssl.c ui_null.c ui_util.c diff --git a/crypto/ui/ui_null.c b/crypto/ui/ui_null.c new file mode 100644 index 000..9e5f6fc --- /dev/null +++ b/crypto/ui/ui_null.c @@ -0,0 +1,26 @@ +/* + * Copyright 2017 The OpenSSL Project Authors. All Rights Reserved. + * + * Licensed under the OpenSSL license (the "License"). You may not use + * this file except in compliance with the License. You can obtain a copy + * in the file LICENSE in the source distribution or at + * https://www.openssl.org/source/license.html + */ + +#include "ui_locl.h" + +static const UI_METHOD ui_null = { +"OpenSSL NULL UI", +NULL,/* opener */ +NULL,/* writer */ +NULL,/* flusher */ +NULL,/* reader */ +NULL,/* closer */ +NULL +}; + +/* The method with all the built-in thingies */ +const UI_METHOD *UI_null(void) +{ +return &ui_null; +} diff --git a/doc/man3/UI_new.pod b/doc/man3/UI_new.pod index dedf4dc..08400d3 100644 --- a/doc/man3/UI_new.pod +++ b/doc/man3/UI_new.pod @@ -9,7 +9,7 @@ UI_dup_input_boolean, UI_add_info_string, UI_dup_info_string, UI_add_error_string, UI_dup_error_string, UI_construct_prompt, UI_add_user_data, UI_get0_user_data, UI_get0_result, UI_process, UI_ctrl, UI_set_default_method, UI_get_default_method, UI_get_method, -UI_set_method, UI_OpenSSL, - user interface +UI_set_method, UI_OpenSSL, UI_null - user interface =head1 SYNOPSIS @@ -59,6 +59,7 @@ UI_set_method, UI_OpenSSL, - user interface const UI_METHOD *UI_set_method(UI *ui, const UI_METHOD *meth); UI_METHOD *UI_OpenSSL(void); + const UI_METHOD *UI_null(void); =head1 DESCRIPTION @@ -177,6 +178,9 @@ UI_set_method() changes the UI method associated with a given UI. UI_OpenSSL() is the default OpenSSL UI method for prompting passphrases on the command line. +UI_null() is a UI method that does nothing. Its use is to avoid +getting internal defaults for passed UI_METHOD pointers. + =head1 COPYRIGHT Copyright 2001-2016 The OpenSSL Project Authors. All Rights Reserved. diff --git a/include/openssl/ui.h b/include/openssl/ui.h index c5718d2..a5fedb5 100644 --- a/include/openssl/ui.h +++ b/include/openssl/ui.h @@ -206,6 +206,12 @@ const UI_METHOD *UI_set_method(UI *ui, const UI_METHOD *meth); /* The method with all the built-in thingies */ UI_METHOD *UI_OpenSSL(void); +/* + * NULL method. Literarily does nothing, but may serve as a placeholder + * to avoid internal default. + */ +const UI_METHOD *UI_null(void); + /* -- For method writers -- */ /*- A method contains a number of functions that implement the low level diff --git a/util/libcrypto.num b/util/libcrypto.num index 791..363ab66 100644 --- a/util/libcrypto.num +++ b/util/libcrypto.num @@ -4252,3 +4252,4 @@ EVP_aria_256_ecb4202 1_1_1 EXIST::FUNCTION:ARIA EVP_aria_256_ctr4203 1_1_1 EXIST::FUNCTION:ARIA EVP_aria_128_ctr4204 1_1_1 EXIST::FUNCTION:ARIA EVP_aria_192_ctr4205 1_1_1 EXIST::FUNCTION:ARIA +UI_null 4206 1_1_1 EXIST::FUNCTION:UI _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-ct
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-ct Commit log since last time: fd910ef poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. 73e8a5c poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. c1e1fc5 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. c749308 Add tests for SHA1 and EC point compression 095a982 For TLS 1.3 reject SHA1 TLS signatures e892e32 Reject compressed point format with TLS 1.3 d09e903 EC certificate with compression point 599b586 Add SuiteB support to tls_choose_sigalg() 9f577cd Add Suite B tests d343c30 Add P-384 root and P-384, P-256 EE certificates. Build log ended with (last 100 lines): ../../openssl/test/recipes/15-test_ecdh.t . ok ../../openssl/test/recipes/15-test_ecdsa.t ok ../../openssl/test/recipes/15-test_rsa.t .. ok ../../openssl/test/recipes/20-test_enc.t .. ok ../../openssl/test/recipes/20-test_enc_more.t . ok ../../openssl/test/recipes/20-test_passwd.t ... ok ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... ok ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok # Failed test 'creating new pre-certificate' # at ../../openssl/test/recipes/80-test_ca.t line 46. # Looks like you failed 1 test of 5. ../../openssl/test/recipes/80-test_ca.t ... Dubious, test returned 1 (wstat 256, 0x100) Failed 1/5 subtests ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... skipped: ct and ec are not supported by this OpenSSL build ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok ../../openssl/test/recipes/80-test_ssl_new.t .. ok ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t ..
[openssl-commits] [openssl] OpenSSL_1_1_0-stable update
The branch OpenSSL_1_1_0-stable has been updated via 5961b15235cc5598c7ec2001aec802ac6724ff18 (commit) via 46e65eebfe6b8565dcfa2430508ea7ccdff202ad (commit) from b5cd178f9dd057a76147ccd307bd3cb0672ac098 (commit) - Log - commit 5961b15235cc5598c7ec2001aec802ac6724ff18 Author: Andy Polyakov Date: Fri Feb 24 16:26:22 2017 +0100 .travis.yml: limit mingw tests' resource consumption. Reviewed-by: Rich Salz Reviewed-by: Richard Levitte (Merged from https://github.com/openssl/openssl/pull/2735) commit 46e65eebfe6b8565dcfa2430508ea7ccdff202ad Author: Andy Polyakov Date: Fri Feb 24 16:25:14 2017 +0100 .travis.yml: make package pulls conditional. Reviewed-by: Rich Salz Reviewed-by: Richard Levitte (Merged from https://github.com/openssl/openssl/pull/2735) --- Summary of changes: .travis.yml | 89 - 1 file changed, 76 insertions(+), 13 deletions(-) diff --git a/.travis.yml b/.travis.yml index cb6066d..4778480 100644 --- a/.travis.yml +++ b/.travis.yml @@ -5,19 +5,14 @@ language: c cache: ccache before_install: -- pip install --user cpp-coveralls +- if [ -n "$COVERALLS" ]; then + pip install --user cpp-coveralls; + fi; addons: apt: packages: - ccache -- clang-3.9 -- gcc-5 -- binutils-mingw-w64 -- gcc-mingw-w64 -sources: -- llvm-toolchain-trusty-3.9 -- ubuntu-toolchain-r-test os: - linux @@ -37,41 +32,109 @@ env: matrix: include: - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="--strict-warnings no-deprecated" BUILDONLY="yes" - os: linux compiler: gcc env: CONFIG_OPTS="--debug --coverage no-asm enable-rc5 enable-md2 enable-ec_nistp_64_gcc_128 enable-ssl3 enable-ssl3-method enable-weak-ssl-ciphers" COVERALLS="yes" - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="enable-asan" - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="enable-msan" - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="no-asm enable-ubsan enable-rc5 enable-md2 enable-ssl3 enable-ssl3-method -fno-sanitize=alignment" - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="no-asm enable-asan enable-rc5 enable-md2" - os: linux + addons: + apt: + packages: + - clang-3.9 + sources: + - llvm-toolchain-trusty-3.9 + - ubuntu-toolchain-r-test compiler: clang-3.9 env: CONFIG_OPTS="no-stdio" - os: linux + addons: + apt: + packages: + - gcc-5 + sources: + - ubuntu-toolchain-r-test compiler: gcc-5 env: CONFIG_OPTS="no-asm enable-ubsan enable-rc5 enable-md2 -DPEDANTIC" - os: linux + addons: + apt: + packages: + - binutils-mingw-w64 + - gcc-mingw-w64 compiler: i686-w64-mingw32-gcc - env: CONFIG_OPTS="no-pic" + env: CONFIG_OPTS="no-pic" TESTS="-test_fuzz" - os: linux + addons: + apt: + packages: + - binutils-mingw-w64 + - gcc-mingw-w64 compiler: i686-w64-mingw32-gcc - env: CONFIG_OPTS="no-stdio" + env: CONFIG_OPTS="no-stdio" BUILDO
[openssl-commits] [openssl] master update
The branch master has been updated via fd910ef9593d4e16dabf4686ecabb351830045b6 (commit) via 73e8a5c8261625a6e90e07e567263c69039e3d17 (commit) via c1e1fc500da910dbf4358f902f6b824a3c34b922 (commit) from c749308fc44a0b33b340e23834320dbef9fbf8de (commit) - Log - commit fd910ef9593d4e16dabf4686ecabb351830045b6 Author: Andy Polyakov Date: Fri Dec 30 00:00:16 2016 +0100 poly1305/asm/poly1305-x86_64.pl: add VPMADD52 code path. This is initial and minimal single-block implementation. Reviewed-by: Rich Salz commit 73e8a5c8261625a6e90e07e567263c69039e3d17 Author: Andy Polyakov Date: Sun Dec 25 13:10:00 2016 +0100 poly1305/asm/poly1305-x86_64.pl: switch to vpermdd in table expansion. Effectively it's minor size optimization, 5-6% per affected subroutine. Reviewed-by: Rich Salz commit c1e1fc500da910dbf4358f902f6b824a3c34b922 Author: Andy Polyakov Date: Sun Dec 25 13:05:35 2016 +0100 poly1305/asm/poly1305-x86_64.pl: optimize AVX512 code path. On pre-Skylake best optimization strategy was balancing port-specific instructions, while on Skylake minimizing the sheer amount appears more sensible. Reviewed-by: Rich Salz --- Summary of changes: crypto/poly1305/asm/poly1305-x86_64.pl | 465 +++-- 1 file changed, 325 insertions(+), 140 deletions(-) diff --git a/crypto/poly1305/asm/poly1305-x86_64.pl b/crypto/poly1305/asm/poly1305-x86_64.pl index baf3c75..ff4efb3 100755 --- a/crypto/poly1305/asm/poly1305-x86_64.pl +++ b/crypto/poly1305/asm/poly1305-x86_64.pl @@ -62,13 +62,13 @@ die "can't locate x86_64-xlate.pl"; if (`$ENV{CC} -Wa,-v -c -o /dev/null -x assembler /dev/null 2>&1` =~ /GNU assembler version ([2-9]\.[0-9]+)/) { - $avx = ($1>=2.19) + ($1>=2.22) + ($1>=2.25); + $avx = ($1>=2.19) + ($1>=2.22) + ($1>=2.25) + ($1>=2.26); } if (!$avx && $win64 && ($flavour =~ /nasm/ || $ENV{ASM} =~ /nasm/) && `nasm -v 2>&1` =~ /NASM version ([2-9]\.[0-9]+)(?:\.([0-9]+))?/) { - $avx = ($1>=2.09) + ($1>=2.10) + ($1>=2.12); - $avx += 1 if ($1==2.11 && $2>=8); + $avx = ($1>=2.09) + ($1>=2.10) + 2 * ($1>=2.12); + $avx += 2 if ($1==2.11 && $2>=8); } if (!$avx && $win64 && ($flavour =~ /masm/ || $ENV{ASM} =~ /ml64/) && @@ -178,6 +178,13 @@ $code.=<<___ if ($avx>1); bt \$`5+32`,%r9# AVX2? cmovc %rax,%r10 ___ +$code.=<<___ if ($avx>3); + mov \$`(1<<31|1<<21|1<<16)`,%rax + shr \$32,%r9 + and %rax,%r9 + cmp %rax,%r9 + je .Linit_base2_44 +___ $code.=<<___; mov \$0x0ffc0fff,%rax mov \$0x0ffc0ffc,%rcx @@ -1631,8 +1638,9 @@ $code.=<<___ if ($win64); .Ldo_avx2_body: ___ $code.=<<___; - lea 48+64($ctx),$ctx# size optimization lea .Lconst(%rip),%rcx + lea 48+64($ctx),$ctx# size optimization + vmovdqa 96(%rcx),$T0# .Lpermd_avx2 # expand and copy pre-calculated table to stack vmovdqu `16*0-64`($ctx),%x#$T2 @@ -1642,36 +1650,28 @@ $code.=<<___; vmovdqu `16*3-64`($ctx),%x#$D0 vmovdqu `16*4-64`($ctx),%x#$D1 vmovdqu `16*5-64`($ctx),%x#$D2 + lea 0x90(%rsp),%rax # size optimization vmovdqu `16*6-64`($ctx),%x#$D3 - vpermq \$0x15,$T2,$T2 # 3412 -> 12343434 + vpermd $T2,$T0,$T2 # 3412 -> 14243444 vmovdqu `16*7-64`($ctx),%x#$D4 - vpermq \$0x15,$T3,$T3 - vpshufd \$0xc8,$T2,$T2 # 12343434 -> 14243444 + vpermd $T3,$T0,$T3 vmovdqu `16*8-64`($ctx),%x#$MASK - vpermq \$0x15,$T4,$T4 - vpshufd \$0xc8,$T3,$T3 + vpermd $T4,$T0,$T4 vmovdqa $T2,0x00(%rsp) - vpermq \$0x15,$D0,$D0 - vpshufd \$0xc8,$T4,$T4 - vmovdqa $T3,0x20(%rsp) - vpermq \$0x15,$D1,$D1 - vpshufd \$0xc8,$D0,$D0 - vmovdqa $T4,0x40(%rsp) - vpermq \$0x15,$D2,$D2 - vpshufd \$0xc8,$D1,$D1 - vmovdqa $D0,0x60(%rsp) - vpermq \$0x15,$D3,$D3 - vpshufd \$0xc8,$D2,$D2 - vmovdqa $D1,0x80(%rsp) - vpermq \$0x15,$D4,$D4 - vpshufd \$0xc8,$D3,$D3 - vmovdqa $D2,0xa0(%rsp) - vpermq \$0x15,$MASK,$MASK - vpshufd \$0xc8,$D4,$D4 - vmovdqa $D3,0xc0(%rsp) - vpshufd \$0xc8,$MASK,$MASK - vmovdqa $D4,0xe0(%rsp) - vmovdqa $MASK,0x100(%rsp) +
[openssl-commits] Build completed: openssl master.8261
Build openssl master.8261 completed Commit c749308fc4 by Dr. Stephen Henson on 2/25/2017 12:46 AM: Add tests for SHA1 and EC point compression Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] [openssl] master update
The branch master has been updated via c749308fc44a0b33b340e23834320dbef9fbf8de (commit) via 095a982bb49879e6dea1e846d744652b2bd30e18 (commit) via e892e3255858b6b8bb79bee9972aa9700a38903b (commit) via d09e903a8600c8ea6ea8e3b48297272f08ee4b3c (commit) from 599b586d8775830ad1d5982382a9bb2d78a40679 (commit) - Log - commit c749308fc44a0b33b340e23834320dbef9fbf8de Author: Dr. Stephen Henson Date: Sat Feb 25 00:40:55 2017 + Add tests for SHA1 and EC point compression Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/2739) commit 095a982bb49879e6dea1e846d744652b2bd30e18 Author: Dr. Stephen Henson Date: Sat Feb 25 00:25:04 2017 + For TLS 1.3 reject SHA1 TLS signatures Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/2739) commit e892e3255858b6b8bb79bee9972aa9700a38903b Author: Dr. Stephen Henson Date: Fri Feb 24 20:43:02 2017 + Reject compressed point format with TLS 1.3 Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/2739) commit d09e903a8600c8ea6ea8e3b48297272f08ee4b3c Author: Dr. Stephen Henson Date: Fri Feb 24 17:29:59 2017 + EC certificate with compression point Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/2739) --- Summary of changes: include/openssl/ssl.h | 1 + ssl/ssl_err.c | 2 + ssl/t1_lib.c | 25 +++-- test/certs/server-cecdsa-cert.pem | 15 +++ test/certs/server-cecdsa-key.pem | 4 + test/ssl-tests/20-cert-select.conf| 172 +++--- test/ssl-tests/20-cert-select.conf.in | 55 +++ 7 files changed, 211 insertions(+), 63 deletions(-) create mode 100644 test/certs/server-cecdsa-cert.pem create mode 100644 test/certs/server-cecdsa-key.pem diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h index 40c58c5..51dbca4 100644 --- a/include/openssl/ssl.h +++ b/include/openssl/ssl.h @@ -2508,6 +2508,7 @@ int ERR_load_SSL_strings(void); # define SSL_R_GOT_A_FIN_BEFORE_A_CCS 154 # define SSL_R_HTTPS_PROXY_REQUEST155 # define SSL_R_HTTP_REQUEST 156 +# define SSL_R_ILLEGAL_POINT_COMPRESSION 162 # define SSL_R_ILLEGAL_SUITEB_DIGEST 380 # define SSL_R_INAPPROPRIATE_FALLBACK 373 # define SSL_R_INCONSISTENT_COMPRESSION 340 diff --git a/ssl/ssl_err.c b/ssl/ssl_err.c index addc3de..444de8e 100644 --- a/ssl/ssl_err.c +++ b/ssl/ssl_err.c @@ -570,6 +570,8 @@ static ERR_STRING_DATA SSL_str_reasons[] = { {ERR_REASON(SSL_R_GOT_A_FIN_BEFORE_A_CCS), "got a fin before a ccs"}, {ERR_REASON(SSL_R_HTTPS_PROXY_REQUEST), "https proxy request"}, {ERR_REASON(SSL_R_HTTP_REQUEST), "http request"}, +{ERR_REASON(SSL_R_ILLEGAL_POINT_COMPRESSION), + "illegal point compression"}, {ERR_REASON(SSL_R_ILLEGAL_SUITEB_DIGEST), "illegal Suite B digest"}, {ERR_REASON(SSL_R_INAPPROPRIATE_FALLBACK), "inappropriate fallback"}, {ERR_REASON(SSL_R_INCONSISTENT_COMPRESSION), "inconsistent compression"}, diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c index 100c97c..099dcdb 100644 --- a/ssl/t1_lib.c +++ b/ssl/t1_lib.c @@ -902,10 +902,11 @@ int tls12_check_peer_sigalg(SSL *s, uint16_t sig, EVP_PKEY *pkey) } lu = tls1_lookup_sigalg(sig); /* - * Check sigalgs is known and key type is consistent with signature: - * RSA keys can be used for RSA-PSS + * Check sigalgs is known. Disallow SHA1 with TLS 1.3. Check key type is + * consistent with signature: RSA keys can be used for RSA-PSS */ -if (lu == NULL || (pkeyid != lu->sig +if (lu == NULL || (SSL_IS_TLS13(s) && lu->hash == NID_sha1) +|| (pkeyid != lu->sig && (lu->sig != EVP_PKEY_RSA_PSS || pkeyid != EVP_PKEY_RSA))) { SSLerr(SSL_F_TLS12_CHECK_PEER_SIGALG, SSL_R_WRONG_SIGNATURE_TYPE); return 0; @@ -916,8 +917,12 @@ int tls12_check_peer_sigalg(SSL *s, uint16_t sig, EVP_PKEY *pkey) int curve = EC_GROUP_get_curve_name(EC_KEY_get0_group(ec)); if (SSL_IS_TLS13(s)) { +if (EC_KEY_get_conv_form(ec) != POINT_CONVERSION_UNCOMPRESSED) { +SSLerr(SSL_F_TLS12_CHECK_PEER_SIGALG, + SSL_R_ILLEGAL_POINT_COMPRESSION); +return 0; +} /* For TLS 1.3 check curve matches signature algorithm */ - if (lu->curve != NID_undef && curve != lu->curve) { SSLerr(SSL_F_TLS12_CHECK_PEER_SIGALG, SSL_R_WRONG_CURVE); return 0; @@ -2237,15 +2242,16 @@ int tls_choose_sigalg(SSL *s, int *al) if (SSL_IS_TLS13(s)) {
[openssl-commits] Build failed: openssl master.8260
Build openssl master.8260 failed Commit 2a9882a976 by Richard Levitte on 2/20/2017 1:49 AM: Test the storeutl searching options Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Build completed: openssl master.8259
Build openssl master.8259 completed Commit 3b66fc60c3 by Richard Levitte on 12/13/2016 12:47 PM: Add documentation for the storeutl app Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Build failed: openssl master.8258
Build openssl master.8258 failed Commit 2bcca89bf7 by Richard Levitte on 12/13/2016 12:47 PM: Add documentation for the storeutl app Configure your notification preferences _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-asm -ansi
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-asm -ansi Commit log since last time: 80770da X509 time: tighten validation per RFC 5280 b169c0e .travis.yml: introduce concept of "extended tests" 31c1db9 .travis.yml: make package pulls conditional. 01b76c2 Add -Wundef to --strict-warnings options. 75c13e7 Tidy up certificate type handling. 8fce04e Increase the size of the stack buffer to prevent an overflow. 4483e23 Fix potential memory leak in ASN1_TIME_to_generalizedtime() 7e999d5 Fix duplicate error codes Build log ended with (last 100 lines): make[1]: Entering directory '/home/openssl/run-checker/no-asm_-ansi' clang -I. -Icrypto/include -Iinclude -I../openssl -I../openssl/crypto/include -I../openssl/include -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSLDIR="\"/usr/local/ssl\"" -DENGINESDIR="\"/usr/local/lib/engines-1.1\"" -Wall -O0 -g -pthread -m64 -DL_ENDIAN -Wextra -Qunused-arguments -DDEBUG_UNUSED -Wswitch -DPEDANTIC -pedantic -Wno-long-long -Wall -Wsign-compare -Wmissing-prototypes -Wshadow -Wformat -Wtype-limits -Wundef -Werror -Qunused-arguments -Wextra -Wswitch-default -Wno-unused-parameter -Wno-parentheses-equality -Wno-missing-field-initializers -Wno-language-extension-token -Wno-extended-offsetof -Wconditional-uninitialized -Wincompatible-pointer-types-discards-qualifiers -Wmissing-variable-declarations -ansi -fPIC -DOPENSSL_USE_NODELETE -MMD -MF crypto/aes/aes_cbc.d.tmp -MT crypto/aes/aes_cbc.o -c -o crypto/aes/aes_cbc.o ../openssl/crypto/aes/aes_cbc.c clang -I. -Icrypto/include -Iinclude -I../openssl -I../openssl/crypto/include -I../openssl/include -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSLDIR="\"/usr/local/ssl\"" -DENGINESDIR="\"/usr/local/lib/engines-1.1\"" -Wall -O0 -g -pthread -m64 -DL_ENDIAN -Wextra -Qunused-arguments -DDEBUG_UNUSED -Wswitch -DPEDANTIC -pedantic -Wno-long-long -Wall -Wsign-compare -Wmissing-prototypes -Wshadow -Wformat -Wtype-limits -Wundef -Werror -Qunused-arguments -Wextra -Wswitch-default -Wno-unused-parameter -Wno-parentheses-equality -Wno-missing-field-initializers -Wno-language-extension-token -Wno-extended-offsetof -Wconditional-uninitialized -Wincompatible-pointer-types-discards-qualifiers -Wmissing-variable-declarations -ansi -fPIC -DOPENSSL_USE_NODELETE -MMD -MF crypto/aes/aes_cfb.d.tmp -MT crypto/aes/aes_cfb.o -c -o crypto/aes/aes_cfb.o ../openssl/crypto/aes/aes_cfb.c clang -I. -Icrypto/include -Iinclude -I../openssl -I../openssl/crypto/include -I../openssl/include -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSLDIR="\"/usr/local/ssl\"" -DENGINESDIR="\"/usr/local/lib/engines-1.1\"" -Wall -O0 -g -pthread -m64 -DL_ENDIAN -Wextra -Qunused-arguments -DDEBUG_UNUSED -Wswitch -DPEDANTIC -pedantic -Wno-long-long -Wall -Wsign-compare -Wmissing-prototypes -Wshadow -Wformat -Wtype-limits -Wundef -Werror -Qunused-arguments -Wextra -Wswitch-default -Wno-unused-parameter -Wno-parentheses-equality -Wno-missing-field-initializers -Wno-language-extension-token -Wno-extended-offsetof -Wconditional-uninitialized -Wincompatible-pointer-types-discards-qualifiers -Wmissing-variable-declarations -ansi -fPIC -DOPENSSL_USE_NODELETE -MMD -MF crypto/aes/aes_core.d.tmp -MT crypto/aes/aes_core.o -c -o crypto/aes/aes_core.o ../openssl/crypto/aes/aes_core.c clang -I. -Icrypto/include -Iinclude -I../openssl -I../openssl/crypto/include -I../openssl/include -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSLDIR="\"/usr/local/ssl\"" -DENGINESDIR="\"/usr/local/lib/engines-1.1\"" -Wall -O0 -g -pthread -m64 -DL_ENDIAN -Wextra -Qunused-arguments -DDEBUG_UNUSED -Wswitch -DPEDANTIC -pedantic -Wno-long-long -Wall -Wsign-compare -Wmissing-prototypes -Wshadow -Wformat -Wtype-limits -Wundef -Werror -Qunused-arguments -Wextra -Wswitch-default -Wno-unused-parameter -Wno-parentheses-equality -Wno-missing-field-initializers -Wno-language-extension-token -Wno-extended-offsetof -Wconditional-uninitialized -Wincompatible-pointer-types-discards-qualifiers -Wmissing-variable-declarations -ansi -fPIC -DOPENSSL_USE_NODELETE -MMD -MF crypto/aes/aes_ecb.d.tmp -MT crypto/aes/aes_ecb.o -c -o crypto/aes/aes_ecb.o ../openssl/crypto/aes/aes_ecb.c clang -I. -Icrypto/include -Iinclude -I../openssl -I../openssl/crypto/include -I../openssl/include -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSLDIR="\"/usr/local/ssl\"" -DENGINESDIR="\"/usr/local/lib/engines-1.1\"" -Wall -O0 -g -pthread -m64 -DL_ENDIAN -Wextra -Qunused-arguments -DDEBUG_UNUSED -Wswitch -DPEDANTIC -pedantic -Wno-long-long -Wall -Wsign-compare -Wmissing-prototypes -Wshadow -Wformat -Wtype-limits -Wun
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2-method
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2-method Commit log since last time: 80770da X509 time: tighten validation per RFC 5280 b169c0e .travis.yml: introduce concept of "extended tests" 31c1db9 .travis.yml: make package pulls conditional. 01b76c2 Add -Wundef to --strict-warnings options. 75c13e7 Tidy up certificate type handling. 8fce04e Increase the size of the stack buffer to prevent an overflow. 4483e23 Fix potential memory leak in ASN1_TIME_to_generalizedtime() 7e999d5 Fix duplicate error codes Build log ended with (last 100 lines): ../../openssl/test/recipes/20-test_enc_more.t . ok ../../openssl/test/recipes/20-test_passwd.t ... ok ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... ok ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . skipped: test_dtls_mtu needs DTLS and PSK support enabled ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'running ssl_test 18-dtls-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 130. # Looks like you failed 1 test of 3. # Failed test 'Test configuration 18-dtls-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-test_bioprint.t . ok ../../openssl/test/recipes/90-test_constant_time.t ok ../../openssl/test/r
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls1_2-method
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls1_2-method Commit log since last time: 80770da X509 time: tighten validation per RFC 5280 b169c0e .travis.yml: introduce concept of "extended tests" 31c1db9 .travis.yml: make package pulls conditional. 01b76c2 Add -Wundef to --strict-warnings options. 75c13e7 Tidy up certificate type handling. 8fce04e Increase the size of the stack buffer to prevent an overflow. 4483e23 Fix potential memory leak in ASN1_TIME_to_generalizedtime() 7e999d5 Fix duplicate error codes Build log ended with (last 100 lines): ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t skipped: test_sslcbcpadding needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... skipped: test_sslrecords needs TLSv1.2 enabled ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... skipped: test_sslsigalgs needs TLS1.2 or TLS1.3 enabled ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'running ssl_test 17-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 130. # Looks like you failed 1 test of 3. # Failed test 'Test configuration 17-renegotiate.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-test_bioprint.t . ok ../../openssl/test/recipes/90-test_constant_time.t ok ../../openssl/test/recipes/90-test_external.t . skipped: No external tests in this configuration ../../openssl/test/recipes/90-test_gmdiff.t ... ok ../../openssl/test/recipes/90-test_ige.t .. ok ../../openssl/test/recipes/90-test_memleak.t .. ok ../../openssl/test/recipes/90-test_overhead.t . skipped: Only supported in no-shared builds ../../openssl/test/recipes/90-test_p5_crpt2.t . ok ../../openssl/test/recipes/9
[openssl-commits] Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls1_1-method
Platform and configuration command: $ uname -a Linux test 4.4.0-64-generic #85-Ubuntu SMP Mon Feb 20 11:50:30 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls1_1-method Commit log since last time: 80770da X509 time: tighten validation per RFC 5280 b169c0e .travis.yml: introduce concept of "extended tests" 31c1db9 .travis.yml: make package pulls conditional. 01b76c2 Add -Wundef to --strict-warnings options. 75c13e7 Tidy up certificate type handling. 8fce04e Increase the size of the stack buffer to prevent an overflow. 4483e23 Fix potential memory leak in ASN1_TIME_to_generalizedtime() 7e999d5 Fix duplicate error codes Build log ended with (last 100 lines): ../../openssl/test/recipes/25-test_crl.t .. ok ../../openssl/test/recipes/25-test_d2i.t .. ok ../../openssl/test/recipes/25-test_pkcs7.t ok ../../openssl/test/recipes/25-test_req.t .. ok ../../openssl/test/recipes/25-test_sid.t .. ok ../../openssl/test/recipes/25-test_verify.t ... ok ../../openssl/test/recipes/25-test_x509.t . ok ../../openssl/test/recipes/30-test_afalg.t ok ../../openssl/test/recipes/30-test_engine.t ... ok ../../openssl/test/recipes/30-test_evp.t .. ok ../../openssl/test/recipes/30-test_evp_extra.t ok ../../openssl/test/recipes/30-test_pbelu.t ok ../../openssl/test/recipes/30-test_pkey_meth.t ok ../../openssl/test/recipes/40-test_rehash.t ... ok ../../openssl/test/recipes/60-test_x509_store.t ... ok ../../openssl/test/recipes/60-test_x509_time.t ok ../../openssl/test/recipes/70-test_asyncio.t .. ok ../../openssl/test/recipes/70-test_bad_dtls.t . ok ../../openssl/test/recipes/70-test_clienthello.t .. ok ../../openssl/test/recipes/70-test_key_share.t skipped: test_key_share needs TLS1.3 enabled ../../openssl/test/recipes/70-test_packet.t ... ok ../../openssl/test/recipes/70-test_renegotiation.t ok ../../openssl/test/recipes/70-test_sslcbcpadding.t ok ../../openssl/test/recipes/70-test_sslcertstatus.t ok ../../openssl/test/recipes/70-test_sslextension.t . ok ../../openssl/test/recipes/70-test_sslmessages.t .. ok ../../openssl/test/recipes/70-test_sslrecords.t ... ok ../../openssl/test/recipes/70-test_sslsessiontick.t ... ok ../../openssl/test/recipes/70-test_sslsigalgs.t ... ok ../../openssl/test/recipes/70-test_sslsignature.t . ok ../../openssl/test/recipes/70-test_sslskewith0p.t . ok ../../openssl/test/recipes/70-test_sslversions.t .. skipped: test_sslversions needs TLS1.3, TLS1.2 and TLS1.1 enabled ../../openssl/test/recipes/70-test_sslvertol.t ok ../../openssl/test/recipes/70-test_tls13kexmodes.t skipped: test_tls13kexmodes needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tls13messages.t skipped: test_tls13messages needs TLSv1.3 enabled ../../openssl/test/recipes/70-test_tlsextms.t . ok ../../openssl/test/recipes/70-test_verify_extra.t . ok ../../openssl/test/recipes/70-test_wpacket.t .. ok ../../openssl/test/recipes/80-test_ca.t ... ok ../../openssl/test/recipes/80-test_cipherbytes.t .. ok ../../openssl/test/recipes/80-test_cipherlist.t ... ok ../../openssl/test/recipes/80-test_cms.t .. ok ../../openssl/test/recipes/80-test_ct.t ... ok ../../openssl/test/recipes/80-test_dane.t . ok ../../openssl/test/recipes/80-test_dtls.t . ok ../../openssl/test/recipes/80-test_dtls_mtu.t . ok ../../openssl/test/recipes/80-test_dtlsv1listen.t . ok ../../openssl/test/recipes/80-test_ocsp.t . ok ../../openssl/test/recipes/80-test_pkcs12.t ... ok # Failed test 'Comparing generated sources.' # at ../../openssl/test/recipes/80-test_ssl_new.t line 122. # got: '1' # expected: '0' # Looks like you failed 1 test of 3. # Failed test 'Test configuration 05-sni.conf' # at ../../openssl/test/recipes/80-test_ssl_new.t line 96. # Looks like you failed 1 test of 21. ../../openssl/test/recipes/80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/21 subtests ../../openssl/test/recipes/80-test_ssl_old.t .. ok ../../openssl/test/recipes/80-test_ssl_test_ctx.t . ok ../../openssl/test/recipes/80-test_sslcorrupt.t ... ok ../../openssl/test/recipes/80-test_tsa.t .. ok ../../openssl/test/recipes/80-test_x509aux.t .. ok ../../openssl/test/recipes/90-test_async.t ok ../../openssl/test/recipes/90-test_bio_enc.t .. ok ../../openssl/test/recipes/90-test_bioprint.t . ok ../../openssl/test/recipes/90-test_constant_time.t ok ../../openssl/test/recipes/90-test_external.t . skipped: No external tests in this configuration ../../openssl/test/recipes/90-test_gmdiff.t ... ok ../../op