Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-posix-io
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-posix-io Commit log since last time: 610e2b3b70 Configure: Check source and build dir equality a little more thoroughly 9576c498ca [test/README.md] minor fix of examples missing the test target af3e8c298a Travis: default to HARNESS_JOBS=4 a20c9075d6 Run tests in parallel 587e4e53f8 Fix memory leaks on OSSL_SERIALIZER_CTX_new_by_EVP_PKEY 94941cada2 Free pre_proc_exts in SSL_free() 69f982679e doc: remove reference to the predecessor of SHA-1. 0577959cea Don't forget our provider ctx when resetting b4cb9498c9 X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' 0d8dbb52e3 Add X509_self_signed(), extending and improving documenation and tests 4cec750c2f Move doc of X509{,_REQ,_CRL}_verify{,_ex}() from X509_sign.pod to new X509_verify.pod 0e7b1383e1 Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() d18c7ad66a Optimization and safety precaution in find_issuer() of x509_vfy.c: candidate issuer cert cannot be the same as the subject cert 'x' da1f88bf53 Add four more verify test cases on the self-signed Ed25519 and self-issed X25519 certs 4acd484d55 Make x509 -force_pubkey test case with self-issued cert more realistic by adding CA basic constraints, CA key usage, and key IDs to the cert and by add -partial_chain to the verify call that trusts this cert 023697870b Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} ade08735f9 Improve documentation, layout, and code comments regarding self-issued certs etc. 5188d0d55c Fix a typo on the SSL_dup page 9beffaf695 Fix CID-1464802 2c9ba46c90 Force ssl/tls protocol flags to use stream sockets 64fdea12be rand: include the CPU source in a build. 7f791b25eb rand: fix CPU and timer sources. 3121425830 Add --fips-key configuration parameter to fipsinstall application. Build log ended with (last 100 lines): rm -f doc/html/man1/CA.pl.html doc/html/man1/openssl-asn1parse.html doc/html/man1/openssl-ca.html doc/html/man1/openssl-ciphers.html doc/html/man1/openssl-cmds.html doc/html/man1/openssl-cmp.html doc/html/man1/openssl-cms.html doc/html/man1/openssl-crl.html doc/html/man1/openssl-crl2pkcs7.html doc/html/man1/openssl-dgst.html doc/html/man1/openssl-dhparam.html doc/html/man1/openssl-dsa.html doc/html/man1/openssl-dsaparam.html doc/html/man1/openssl-ec.html doc/html/man1/openssl-ecparam.html doc/html/man1/openssl-enc.html doc/html/man1/openssl-engine.html doc/html/man1/openssl-errstr.html doc/html/man1/openssl-fipsinstall.html doc/html/man1/openssl-gendsa.html doc/html/man1/openssl-genpkey.html doc/html/man1/openssl-genrsa.html doc/html/man1/openssl-info.html doc/html/man1/openssl-kdf.html doc/html/man1/openssl-list.html doc/html/man1/openssl-mac.html doc/html/man1/openssl-nseq.html doc/html/man1/openssl-ocsp.html doc/html/man1/openssl-passwd.html doc/html/man1/openssl-pkcs12.html doc/h tml/man1/openssl-pkcs7.html doc/html/man1/openssl-pkcs8.html doc/html/man1/openssl-pkey.html doc/html/man1/openssl-pkeyparam.html doc/html/man1/openssl-pkeyutl.html doc/html/man1/openssl-prime.html doc/html/man1/openssl-provider.html doc/html/man1/openssl-rand.html doc/html/man1/openssl-rehash.html doc/html/man1/openssl-req.html doc/html/man1/openssl-rsa.html doc/html/man1/openssl-rsautl.html doc/html/man1/openssl-s_client.html doc/html/man1/openssl-s_server.html doc/html/man1/openssl-s_time.html doc/html/man1/openssl-sess_id.html doc/html/man1/openssl-smime.html doc/html/man1/openssl-speed.html doc/html/man1/openssl-spkac.html doc/html/man1/openssl-srp.html doc/html/man1/openssl-storeutl.html doc/html/man1/openssl-ts.html doc/html/man1/openssl-verify.html doc/html/man1/openssl-version.html doc/html/man1/openssl-x509.html doc/html/man1/openssl.html doc/html/man1/tsget.html doc/html/man3/ADMISSIONS.html doc/html/man3/ASN1_INTEGER_get_int64.html doc/html/man3/ASN1_INTEGER_new.html doc /html/man3/ASN1_ITEM_lookup.html doc/html/man3/ASN1_OBJECT_new.html doc/html/man3/ASN1_STRING_TABLE_add.html doc/html/man3/ASN1_STRING_length.html doc/html/man3/ASN1_STRING_new.html doc/html/man3/ASN1_STRING_print_ex.html doc/html/man3/ASN1_TIME_set.html doc/html/man3/ASN1_TYPE_get.html doc/html/man3/ASN1_generate_nconf.html doc/html/man3/ASYNC_WAIT_CTX_new.html doc/html/man3/ASYNC_start_job.html doc/html/man3/BF_encrypt.html doc/html/man3/BIO_ADDR.html doc/html/man3/BIO_ADDRINFO.html doc/html/man3/BIO_connect.html doc/html/man3/BIO_ctrl.html doc/html/man3/BIO_f_base64.html doc/html/man3/BIO_f_buffer.html doc/html/man3/BIO_f_cipher.html doc/html/man3/BIO_f_md.html doc/html/man3/BIO_f_null.html doc/html/man3/BIO_f_prefix.html doc/html/man3/BIO_f_ssl.html doc/html/man3/BIO_find_type.html doc/html/man3/BIO_get_data.html doc/html/man3/BIO_get_ex_new_index.html
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-ui-console
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-ui-console Commit log since last time: 610e2b3b70 Configure: Check source and build dir equality a little more thoroughly 9576c498ca [test/README.md] minor fix of examples missing the test target af3e8c298a Travis: default to HARNESS_JOBS=4 a20c9075d6 Run tests in parallel 587e4e53f8 Fix memory leaks on OSSL_SERIALIZER_CTX_new_by_EVP_PKEY 94941cada2 Free pre_proc_exts in SSL_free() 69f982679e doc: remove reference to the predecessor of SHA-1. 0577959cea Don't forget our provider ctx when resetting b4cb9498c9 X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' 0d8dbb52e3 Add X509_self_signed(), extending and improving documenation and tests 4cec750c2f Move doc of X509{,_REQ,_CRL}_verify{,_ex}() from X509_sign.pod to new X509_verify.pod 0e7b1383e1 Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() d18c7ad66a Optimization and safety precaution in find_issuer() of x509_vfy.c: candidate issuer cert cannot be the same as the subject cert 'x' da1f88bf53 Add four more verify test cases on the self-signed Ed25519 and self-issed X25519 certs 4acd484d55 Make x509 -force_pubkey test case with self-issued cert more realistic by adding CA basic constraints, CA key usage, and key IDs to the cert and by add -partial_chain to the verify call that trusts this cert 023697870b Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} ade08735f9 Improve documentation, layout, and code comments regarding self-issued certs etc. 5188d0d55c Fix a typo on the SSL_dup page 9beffaf695 Fix CID-1464802 2c9ba46c90 Force ssl/tls protocol flags to use stream sockets 64fdea12be rand: include the CPU source in a build. 7f791b25eb rand: fix CPU and timer sources. 3121425830 Add --fips-key configuration parameter to fipsinstall application. Build log ended with (last 100 lines): 65-test_cmp_status.t ... ok 65-test_cmp_vfy.t .. ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . ok 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok 81-test_cmp_cli.t .. Dubious, test returned 5 (wstat 1280, 0x500) Failed 5/7 subtests 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t
Still Failing: openssl/openssl#35937 (master - bb2d726)
Build Update for openssl/openssl - Build: #35937 Status: Still Failing Duration: 1 hr, 2 mins, and 59 secs Commit: bb2d726 (master) Author: Matt Caswell Message: Fix a typo in the i2d_TYPE_fp documentation Thanks to Michael Mueller on the openssl-users list for the suggested improvement. Reviewed-by: Nicola Tuveri (Merged from https://github.com/openssl/openssl/pull/12338) View the changeset: https://github.com/openssl/openssl/compare/5b393802ede7...bb2d726d75c0 View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/174231643?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
Still Failing: openssl/openssl#35936 (master - 5b39380)
Build Update for openssl/openssl - Build: #35936 Status: Still Failing Duration: 11 mins and 19 secs Commit: 5b39380 (master) Author: Matt Caswell Message: Don't run the cmp_cli tests if using FUZZING_BUILD_MODE [extended tests] Reviewed-by: David von Oheimb Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/12275) View the changeset: https://github.com/openssl/openssl/compare/64bb6276d17c...5b393802ede7 View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/174231322?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
[openssl] master update
The branch master has been updated via bb2d726d75c062513b796d6c76c2a1ea9ff27e24 (commit) from 5b393802ede77d6b5678e69c3ba9854042726aa1 (commit) - Log - commit bb2d726d75c062513b796d6c76c2a1ea9ff27e24 Author: Matt Caswell Date: Wed Jul 1 09:30:53 2020 +0100 Fix a typo in the i2d_TYPE_fp documentation Thanks to Michael Mueller on the openssl-users list for the suggested improvement. Reviewed-by: Nicola Tuveri (Merged from https://github.com/openssl/openssl/pull/12338) --- Summary of changes: doc/man3/d2i_X509.pod | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/doc/man3/d2i_X509.pod b/doc/man3/d2i_X509.pod index 4dea774fb6..fdf6c1d669 100644 --- a/doc/man3/d2i_X509.pod +++ b/doc/man3/d2i_X509.pod @@ -453,7 +453,7 @@ the encoding of the structure I to BIO I and it returns 1 for success and 0 for failure. B_fp>() is similar to B>() except it writes -the encoding of the structure I to BIO I and it +the encoding of the structure I to FILE pointer I and it returns 1 for success and 0 for failure. These routines do not encrypt private keys and therefore offer no
[openssl] master update
The branch master has been updated via 5b393802ede77d6b5678e69c3ba9854042726aa1 (commit) via ca3245a61989009a99931748723d12e30d0a66b2 (commit) via 5a640713f34d4b9b6bf9520a46b0c8ee3334d8bf (commit) from 64bb6276d17cc78c15e0bbea2cce899ba9b6778d (commit) - Log - commit 5b393802ede77d6b5678e69c3ba9854042726aa1 Author: Matt Caswell Date: Wed Jul 1 11:19:58 2020 +0100 Don't run the cmp_cli tests if using FUZZING_BUILD_MODE [extended tests] Reviewed-by: David von Oheimb Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/12275) commit ca3245a61989009a99931748723d12e30d0a66b2 Author: Matt Caswell Date: Thu Jun 25 16:10:54 2020 +0100 If an empty password is supplied still try to use it If an empty password was supplied we ignored it and were trying to use the fallback method to read the password instead (i.e. read from stdin). However if that failed (which it always does if the cmp option -batch is used) then we were reporting that we had successfully read the password without actually setting one. Instead, if an empty password is explicitly provided we should use it. If no password is supplied explicitly and we have no fallback method then we assume the empty password. [extended tests] Reviewed-by: David von Oheimb Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/12275) commit 5a640713f34d4b9b6bf9520a46b0c8ee3334d8bf Author: Matt Caswell Date: Thu Jun 25 12:21:07 2020 +0100 Ensure a string is properly terminated in http_client.c In HTTP_new_bio(), if the host has a trailing '/' we took a copy of the hostname but failed to terminate it properly. Reviewed-by: David von Oheimb Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/12275) --- Summary of changes: apps/lib/apps_ui.c | 15 +-- crypto/http/http_client.c | 13 + test/recipes/81-test_cmp_cli.t | 11 --- 3 files changed, 26 insertions(+), 13 deletions(-) diff --git a/apps/lib/apps_ui.c b/apps/lib/apps_ui.c index 2a6e01ec10..13f8670d9f 100644 --- a/apps/lib/apps_ui.c +++ b/apps/lib/apps_ui.c @@ -20,7 +20,7 @@ static int ui_open(UI *ui) { int (*opener)(UI *ui) = UI_method_get_opener(ui_fallback_method); -if (opener) +if (opener != NULL) return opener(ui); return 1; } @@ -37,7 +37,8 @@ static int ui_read(UI *ui, UI_STRING *uis) { const char *password = ((PW_CB_DATA *)UI_get0_user_data(ui))->password; -if (password && password[0] != '\0') { + +if (password != NULL) { UI_set_result(ui, uis, password); return 1; } @@ -52,8 +53,10 @@ static int ui_read(UI *ui, UI_STRING *uis) } reader = UI_method_get_reader(ui_fallback_method); -if (reader) +if (reader != NULL) return reader(ui, uis); +/* Default to the empty password if we've got nothing better */ +UI_set_result(ui, uis, ""); return 1; } @@ -82,7 +85,7 @@ static int ui_write(UI *ui, UI_STRING *uis) } writer = UI_method_get_writer(ui_fallback_method); -if (writer) +if (writer != NULL) return writer(ui, uis); return 1; } @@ -91,7 +94,7 @@ static int ui_close(UI *ui) { int (*closer)(UI *ui) = UI_method_get_closer(ui_fallback_method); -if (closer) +if (closer != NULL) return closer(ui); return 1; } @@ -112,7 +115,7 @@ int setup_ui_method(void) void destroy_ui_method(void) { -if (ui_method) { +if (ui_method != NULL) { UI_destroy_method(ui_method); ui_method = NULL; } diff --git a/crypto/http/http_client.c b/crypto/http/http_client.c index a8dda0050a..3e1be1f569 100644 --- a/crypto/http/http_client.c +++ b/crypto/http/http_client.c @@ -712,10 +712,15 @@ static BIO *HTTP_new_bio(const char *server /* optionally includes ":port" */, } host_end = strchr(host, '/'); -if (host_end != NULL && (size_t)(host_end - host) < sizeof(host_name)) { -/* chop trailing string starting with '/' */ -strncpy(host_name, host, host_end - host + 1); -host = host_name; +if (host_end != NULL) { +size_t host_len = host_end - host; + +if (host_len < sizeof(host_name)) { +/* chop trailing string starting with '/' */ +strncpy(host_name, host, host_len); +host_name[host_len] = '\0'; +host = host_name; +} } cbio = BIO_new_connect(host /* optionally includes ":port" */); diff --git a/test/recipes/81-test_cmp_cli.t b/test/recipes/81-test_cmp_cli.t index
Failed: openssl/openssl#35934 (master - 64bb627)
Build Update for openssl/openssl - Build: #35934 Status: Failed Duration: 58 mins and 8 secs Commit: 64bb627 (master) Author: Dr. David von Oheimb Message: 81-test_cmp_cli.t: Correct subroutine quote_spc_empty and its use Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/openssl/pull/12280) View the changeset: https://github.com/openssl/openssl/compare/94fcec0902ec...64bb6276d17c View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/174199549?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-err
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-err Commit log since last time: 610e2b3b70 Configure: Check source and build dir equality a little more thoroughly 9576c498ca [test/README.md] minor fix of examples missing the test target af3e8c298a Travis: default to HARNESS_JOBS=4 a20c9075d6 Run tests in parallel 587e4e53f8 Fix memory leaks on OSSL_SERIALIZER_CTX_new_by_EVP_PKEY 94941cada2 Free pre_proc_exts in SSL_free() 69f982679e doc: remove reference to the predecessor of SHA-1. 0577959cea Don't forget our provider ctx when resetting b4cb9498c9 X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' 0d8dbb52e3 Add X509_self_signed(), extending and improving documenation and tests 4cec750c2f Move doc of X509{,_REQ,_CRL}_verify{,_ex}() from X509_sign.pod to new X509_verify.pod 0e7b1383e1 Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() d18c7ad66a Optimization and safety precaution in find_issuer() of x509_vfy.c: candidate issuer cert cannot be the same as the subject cert 'x' da1f88bf53 Add four more verify test cases on the self-signed Ed25519 and self-issed X25519 certs 4acd484d55 Make x509 -force_pubkey test case with self-issued cert more realistic by adding CA basic constraints, CA key usage, and key IDs to the cert and by add -partial_chain to the verify call that trusts this cert 023697870b Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} ade08735f9 Improve documentation, layout, and code comments regarding self-issued certs etc. 5188d0d55c Fix a typo on the SSL_dup page 9beffaf695 Fix CID-1464802 2c9ba46c90 Force ssl/tls protocol flags to use stream sockets 64fdea12be rand: include the CPU source in a build. 7f791b25eb rand: fix CPU and timer sources. 3121425830 Add --fips-key configuration parameter to fipsinstall application. Build log ended with (last 100 lines): 65-test_cmp_protect.t .. ok 65-test_cmp_server.t ... ok 65-test_cmp_status.t ... ok 65-test_cmp_vfy.t .. ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . ok 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t
[openssl] master update
The branch master has been updated via 64bb6276d17cc78c15e0bbea2cce899ba9b6778d (commit) via 89137609606a1195091c1edb4741c67c06f878a5 (commit) from 94fcec0902ec6df54a6286f61e35fa6f93815fd6 (commit) - Log - commit 64bb6276d17cc78c15e0bbea2cce899ba9b6778d Author: Dr. David von Oheimb Date: Tue Jun 23 08:04:54 2020 +0200 81-test_cmp_cli.t: Correct subroutine quote_spc_empty and its use Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/openssl/pull/12280) commit 89137609606a1195091c1edb4741c67c06f878a5 Author: Dr. David von Oheimb Date: Tue Jun 23 08:03:59 2020 +0200 81-test_cmp_cli.t: Streamline {start,stop}_mock_server and improve port setting Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/openssl/pull/12280) --- Summary of changes: test/recipes/81-test_cmp_cli.t | 29 +++-- 1 file changed, 15 insertions(+), 14 deletions(-) diff --git a/test/recipes/81-test_cmp_cli.t b/test/recipes/81-test_cmp_cli.t index 82441327fe..385c259729 100644 --- a/test/recipes/81-test_cmp_cli.t +++ b/test/recipes/81-test_cmp_cli.t @@ -55,7 +55,6 @@ my @cmp_basic_tests = ( my $rsp_cert = "signer_only.crt"; my $outfile = "test.cert.pem"; my $secret = "pass:test"; -my $localport = 1700; # this uses the mock server directly in the cmp app, without TCP sub use_mock_srv_internally @@ -163,8 +162,8 @@ sub test_cmp_cli { my $actual_exit = shift; my $OK = $actual_exit == $expected_exit; if ($faillog && !$OK) { -sub quote_spc_empty(_) { $_ eq "" ? '""' : $_ =~ m/ / ? '"'.$_.'"' : $_ }; -my $invocation = ("$path_app ").join(' ', map quote_spc_empty @$params); +my $quote_spc_empty = sub { $_ eq "" ? '""' : $_ =~ m/ / ? '"'.$_.'"' : $_ }; +my $invocation = "$path_app ".join(' ', map $quote_spc_empty->($_), @$params); print $faillog "$server_name $aspect \"$title\" ($i/$n)". " expected=$expected_exit actual=$actual_exit\n"; print $faillog "$invocation\n\n"; @@ -206,11 +205,11 @@ indir data_dir() => sub { foreach my $server_name (@server_configurations) { $server_name = chop_dblquot($server_name); load_config($server_name, $server_name); -my $launch_mock = $server_name eq "Mock" && !$ENV{OPENSSL_CMP_CONFIG}; -if ($launch_mock) { +my $pid; +if ($server_name eq "Mock") { indir "Mock" => sub { -stop_mock_server(); # in case a previous run did not exit properly -start_mock_server("") || die "Cannot start CMP mock server"; +$pid = start_mock_server(""); +die "Cannot start CMP mock server" unless $pid; } } foreach my $aspect (@all_aspects) { @@ -222,7 +221,7 @@ indir data_dir() => sub { test_cmp_cli_aspect($server_name, $aspect, $tests); }; }; -stop_mock_server() if $launch_mock; +stop_mock_server($pid) if $pid; }; }; @@ -285,19 +284,21 @@ sub load_tests { } sub mock_server_pid { -return `lsof -iTCP:$localport -sTCP:LISTEN | tail -n 1 | awk '{ print \$2 }'`; +return `lsof -iTCP:$server_port -sTCP:LISTEN | tail -n 1 | awk '{ print \$2 }'`; } sub start_mock_server { -return 0 if mock_server_pid(); # already running my $args = $_[0]; # optional further CLI arguments my $dir = bldtop_dir(""); -return system("LD_LIBRARY_PATH=$dir DYLD_LIBRARY_PATH=$dir " . - bldtop_dir($app) . " -config server.cnf " . - "$args &") == 0; # start in background, check for success +my $cmd = "LD_LIBRARY_PATH=$dir DYLD_LIBRARY_PATH=$dir " . +bldtop_dir($app) . " -config server.cnf $args"; +my $pid = mock_server_pid(); +return $pid if $pid; # already running +return system("$cmd &") == 0 # start in background, check for success +? (sleep 1, mock_server_pid()) : 0; } sub stop_mock_server { -my $pid = mock_server_pid(); +my $pid = $_[0]; system("kill $pid") if $pid; }
Errored: openssl/openssl#35931 (master - 94fcec0)
Build Update for openssl/openssl - Build: #35931 Status: Errored Duration: 2 hrs, 0 mins, and 26 secs Commit: 94fcec0 (master) Author: Dr. David von Oheimb Message: test/run_tests.pl: Add alias REPORT_FAILURES{,_PROGRESS} for VF and VFP Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12279) View the changeset: https://github.com/openssl/openssl/compare/ea4ee152a7aa...94fcec0902ec View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/174175604?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
Errored: openssl/openssl#35930 (master - ea4ee15)
Build Update for openssl/openssl - Build: #35930 Status: Errored Duration: 1 hr, 20 mins, and 24 secs Commit: ea4ee15 (master) Author: Richard Levitte Message: Configure: fix handling of build.info attributes with value This line wasn't properly handled: SCRIPTS{misc,linkname=tsget}=tsget.pl It generated an attribute "linkname=tsget" with the value 1, instead of what it should have, an attribute "linkname" with the value "tsget". Fixes #12341 Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12344) View the changeset: https://github.com/openssl/openssl/compare/e7869ef13749...ea4ee152a7aa View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/174169290?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
[openssl] master update
The branch master has been updated via 94fcec0902ec6df54a6286f61e35fa6f93815fd6 (commit) via a812549108150b53023ed62e92e8b43c9414a15e (commit) via e4522e1059a4ab32024277706f271200e0cb601b (commit) from ea4ee152a7aa022dd87f193cc6e16a7ffbfb455a (commit) - Log - commit 94fcec0902ec6df54a6286f61e35fa6f93815fd6 Author: Dr. David von Oheimb Date: Sat Jun 27 15:45:58 2020 +0200 test/run_tests.pl: Add alias REPORT_FAILURES{,_PROGRESS} for VF and VFP Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12279) commit a812549108150b53023ed62e92e8b43c9414a15e Author: Dr. David von Oheimb Date: Wed Jun 24 12:13:38 2020 +0200 test/run_tests.pl: Add visual separator after failed test case for VFP and VFP modes Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12279) commit e4522e1059a4ab32024277706f271200e0cb601b Author: Dr. David von Oheimb Date: Wed Jun 24 12:12:20 2020 +0200 test/run_tests.pl: Enhance the semantics of HARNESS_VERBOSE_FAILURES (VF) Make the improved semantics of VFO replace the previous VF and remove VFO Add warnings about overriding use of HARNESS_VERBOSE* variables Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12279) --- Summary of changes: INSTALL.md| 6 +++--- test/README.md| 13 + test/run_tests.pl | 32 ++-- 3 files changed, 26 insertions(+), 25 deletions(-) diff --git a/INSTALL.md b/INSTALL.md index 3b993585d2..6989410e87 100644 --- a/INSTALL.md +++ b/INSTALL.md @@ -1603,9 +1603,9 @@ that isn't a problem in OpenSSL itself (like an OS malfunction or a Perl issue). You may want increased verbosity, that can be accomplished as described in section [Test Failures of test/README.md](test/README.md#test-failures). -You may want to selectively specify which test(s) to perform. This can be done -sing the `make` variable `TESTS` as described in section [Running Selected Tests -of test/README.md](test/README.md#running-selected-tests). +You may also want to selectively specify which test(s) to perform. This can be +done using the `make` variable `TESTS` as described in section [Running +Selected Tests of test/README.md](test/README.md#running-selected-tests). If you find a problem with OpenSSL itself, try removing any compiler optimization flags from the `CFLAGS` line in the Makefile and diff --git a/test/README.md b/test/README.md index 76bf1b17aa..a9e0c827d1 100644 --- a/test/README.md +++ b/test/README.md @@ -27,21 +27,18 @@ Full verbosity, showing full output of all successful and failed test cases $ mms /macro=(V=1) test ! OpenVMS $ nmake V=1 test # Windows -Verbosity on test failure (`VERBOSE_FAILURE` or `VF`, Unix example shown): +Verbosity on failed (sub-)tests only +(`VERBOSE_FAILURE` or `VF` or `REPORT_FAILURES`): $ make test VF=1 -Verbosity on failed (sub-)tests only (`VERBOSE_FAILURES_ONLY` or `VFO`): - -$ make test VFO=1 - Verbosity on failed (sub-)tests, in addition progress on succeeded (sub-)tests -(`VERBOSE_FAILURES_PROGRESS` or `VFP`): +(`VERBOSE_FAILURE_PROGRESS` or `VFP` or `REPORT_FAILURES_PROGRESS`): $ make test VFP=1 If you want to run just one or a few specific tests, you can use -the `make` variable `TESTS` to specify them, like this: +the make variable TESTS to specify them, like this: $ make TESTS='test_rsa test_dsa' test# Unix $ mms/macro="TESTS=test_rsa test_dsa" test ! OpenVMS @@ -50,7 +47,7 @@ the `make` variable `TESTS` to specify them, like this: And of course, you can combine (Unix examples shown): $ make test TESTS='test_rsa test_dsa' VF=1 -$ make test TESTS="test_cmp_*" VFO=1 +$ make test TESTS="test_cmp_*" VFP=1 You can find the list of available tests like this: diff --git a/test/run_tests.pl b/test/run_tests.pl index 5eddaf8468..d47f7cf1e6 100644 --- a/test/run_tests.pl +++ b/test/run_tests.pl @@ -9,15 +9,16 @@ use strict; use warnings; -# Recognise VERBOSE and V which is common on other projects. -# Additionally, also recognise VERBOSE_FAILURE and VF. +# Recognise VERBOSE aka V which is common on other projects. +# Additionally, recognise VERBOSE_FAILURE aka VF aka REPORT_FAILURES +# and recognise VERBOSE_FAILURE_PROGRESS aka VFP aka REPORT_FAILURES_PROGRESS. BEGIN { $ENV{HARNESS_VERBOSE} = "yes" if $ENV{VERBOSE} || $ENV{V}; -$ENV{HARNESS_VERBOSE_FAILURE} = "yes" if $ENV{VERBOSE_FAILURE} || $ENV{VF}; -$ENV{HARNESS_VERBOSE_FAILURES_ONLY} = "yes" -if $ENV{VERBOSE_FAILURES_ONLY} || $ENV{VFO}; -$ENV{HARNESS_VERBOSE_FAILURES_PROGRESS} = "yes" -if $ENV{VERBOSE_FAILURES_PROGRESS} || $ENV{VFP}; +
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dgram
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dgram Commit log since last time: 610e2b3b70 Configure: Check source and build dir equality a little more thoroughly 9576c498ca [test/README.md] minor fix of examples missing the test target af3e8c298a Travis: default to HARNESS_JOBS=4 a20c9075d6 Run tests in parallel 587e4e53f8 Fix memory leaks on OSSL_SERIALIZER_CTX_new_by_EVP_PKEY 94941cada2 Free pre_proc_exts in SSL_free() 69f982679e doc: remove reference to the predecessor of SHA-1. 0577959cea Don't forget our provider ctx when resetting b4cb9498c9 X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' 0d8dbb52e3 Add X509_self_signed(), extending and improving documenation and tests 4cec750c2f Move doc of X509{,_REQ,_CRL}_verify{,_ex}() from X509_sign.pod to new X509_verify.pod 0e7b1383e1 Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() d18c7ad66a Optimization and safety precaution in find_issuer() of x509_vfy.c: candidate issuer cert cannot be the same as the subject cert 'x' da1f88bf53 Add four more verify test cases on the self-signed Ed25519 and self-issed X25519 certs 4acd484d55 Make x509 -force_pubkey test case with self-issued cert more realistic by adding CA basic constraints, CA key usage, and key IDs to the cert and by add -partial_chain to the verify call that trusts this cert 023697870b Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} ade08735f9 Improve documentation, layout, and code comments regarding self-issued certs etc. 5188d0d55c Fix a typo on the SSL_dup page 9beffaf695 Fix CID-1464802 2c9ba46c90 Force ssl/tls protocol flags to use stream sockets 64fdea12be rand: include the CPU source in a build. 7f791b25eb rand: fix CPU and timer sources. 3121425830 Add --fips-key configuration parameter to fipsinstall application. Build log ended with (last 100 lines): 65-test_cmp_status.t ... ok 65-test_cmp_vfy.t .. ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . skipped: DTLSv1 is not supported by this OpenSSL build 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . skipped: No DTLS protocols are supported by this OpenSSL build 80-test_dtls_mtu.t . skipped: test_dtls_mtu needs DTLS and PSK support enabled 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok 80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/31 subtests 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t
[openssl] master update
The branch master has been updated via ea4ee152a7aa022dd87f193cc6e16a7ffbfb455a (commit) from e7869ef137491213753166edd23f7ba33fb34446 (commit) - Log - commit ea4ee152a7aa022dd87f193cc6e16a7ffbfb455a Author: Richard Levitte Date: Thu Jul 2 00:08:45 2020 +0200 Configure: fix handling of build.info attributes with value This line wasn't properly handled: SCRIPTS{misc,linkname=tsget}=tsget.pl It generated an attribute "linkname=tsget" with the value 1, instead of what it should have, an attribute "linkname" with the value "tsget". Fixes #12341 Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/12344) --- Summary of changes: Configure | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/Configure b/Configure index 3a86e74fdc..b8dfeec477 100755 --- a/Configure +++ b/Configure @@ -1978,10 +1978,10 @@ if ($builder eq "unified") { my $ac = 1; my $ak = $a; my $av = 1; -if ($a =~ m|^(!)?(.*?)\s* = \s*(.*?)$|) { +if ($a =~ m|^(!)?(.*?)\s* = \s*(.*?)$|x) { $ac = ! $1; -$ak = $1; -$av = $2; +$ak = $2; +$av = $3; } foreach my $g (@goals) { if ($ac) {
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-des
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-des Commit log since last time: 610e2b3b70 Configure: Check source and build dir equality a little more thoroughly 9576c498ca [test/README.md] minor fix of examples missing the test target af3e8c298a Travis: default to HARNESS_JOBS=4 a20c9075d6 Run tests in parallel 587e4e53f8 Fix memory leaks on OSSL_SERIALIZER_CTX_new_by_EVP_PKEY 94941cada2 Free pre_proc_exts in SSL_free() 69f982679e doc: remove reference to the predecessor of SHA-1. 0577959cea Don't forget our provider ctx when resetting b4cb9498c9 X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' 0d8dbb52e3 Add X509_self_signed(), extending and improving documenation and tests 4cec750c2f Move doc of X509{,_REQ,_CRL}_verify{,_ex}() from X509_sign.pod to new X509_verify.pod 0e7b1383e1 Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() d18c7ad66a Optimization and safety precaution in find_issuer() of x509_vfy.c: candidate issuer cert cannot be the same as the subject cert 'x' da1f88bf53 Add four more verify test cases on the self-signed Ed25519 and self-issed X25519 certs 4acd484d55 Make x509 -force_pubkey test case with self-issued cert more realistic by adding CA basic constraints, CA key usage, and key IDs to the cert and by add -partial_chain to the verify call that trusts this cert 023697870b Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} ade08735f9 Improve documentation, layout, and code comments regarding self-issued certs etc. 5188d0d55c Fix a typo on the SSL_dup page 9beffaf695 Fix CID-1464802 2c9ba46c90 Force ssl/tls protocol flags to use stream sockets 64fdea12be rand: include the CPU source in a build. 7f791b25eb rand: fix CPU and timer sources. 3121425830 Add --fips-key configuration parameter to fipsinstall application. Build log ended with (last 100 lines): 65-test_cmp_status.t ... ok 65-test_cmp_vfy.t .. ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . ok 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... skipped: The PKCS12 command line utility is not supported by this OpenSSL build 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok 81-test_cmp_cli.t .. Dubious, test returned 5 (wstat 1280, 0x500) Failed 5/7 subtests 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ...