[openssl] master update
The branch master has been updated via 59ed73398920a9ad663da03a08cfd290995f55af (commit) via 5340c8ea2a25d17ee2ce1f35d1fb545b8487e84b (commit) via 776cf98b493768de02f798f71f6b30c40deb3506 (commit) via d135774e7d4304df90eab0ed37e93ecdfb1b99a9 (commit) via 33200269110f0ed4a9c96be03b32cd8913f9e426 (commit) via 0e540f231cbdc8e24e1496cf8ac265b62a983692 (commit) via 7ce49eeaca2081ccd881fc1b22fac2d08d3bb69a (commit) via ea478697927798ff2850ea94b4938bb0c76da48b (commit) from d55d0935deb1a8af9cb9a76bf4ca21da47ba8184 (commit) - Log - commit 59ed73398920a9ad663da03a08cfd290995f55af Author: Shane Lontis Date: Mon Aug 24 12:52:56 2020 +1000 Fix coverity CID #1454815 - NULL ptr dereference in initthread.c Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit 5340c8ea2a25d17ee2ce1f35d1fb545b8487e84b Author: Shane Lontis Date: Mon Aug 24 12:45:50 2020 +1000 Fix coverity CID #1452769 & #1452771 - Arg passed to function that cannot be negative in cms_ess.c Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit 776cf98b493768de02f798f71f6b30c40deb3506 Author: Shane Lontis Date: Mon Aug 24 12:16:24 2020 +1000 Fix coverity CID #1457935 - Check return value in ffc_params.c for BIO_indent/BIO_puts calls. Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit d135774e7d4304df90eab0ed37e93ecdfb1b99a9 Author: Shane Lontis Date: Mon Aug 24 12:02:02 2020 +1000 Fix coverity CID #1465967 & #1465968 - fix NULL dereference in dh_ameth.c Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit 33200269110f0ed4a9c96be03b32cd8913f9e426 Author: Shane Lontis Date: Mon Aug 24 11:57:12 2020 +1000 Fix coverity CID #1466371 - fix dereference before NULL check. Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit 0e540f231cbdc8e24e1496cf8ac265b62a983692 Author: Shane Lontis Date: Mon Aug 24 11:45:57 2020 +1000 Fix coverity CID #1466375 - Remove dead code. Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit 7ce49eeaca2081ccd881fc1b22fac2d08d3bb69a Author: Shane Lontis Date: Mon Aug 24 11:32:48 2020 +1000 Fix coverity CID #1466377 - resource leak due to early return in ec_get_params(). Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) commit ea478697927798ff2850ea94b4938bb0c76da48b Author: Shane Lontis Date: Mon Aug 24 11:29:23 2020 +1000 Fix coverity CID #1466378 - Incorrect expression in ec_backend.c Reviewed-by: Matthias St. Pierre (Merged from https://github.com/openssl/openssl/pull/12708) --- Summary of changes: crypto/cms/cms_ess.c | 8 +++--- crypto/dh/dh_ameth.c | 5 ++-- crypto/ec/ec_backend.c | 2 +- crypto/ffc/ffc_params.c| 10 +--- crypto/initthread.c| 3 ++- .../implementations/encode_decode/encoder_ec.c | 29 ++ providers/implementations/keymgmt/ec_kmgmt.c | 19 -- 7 files changed, 39 insertions(+), 37 deletions(-) diff --git a/crypto/cms/cms_ess.c b/crypto/cms/cms_ess.c index 3e545b7add..b6b2037532 100644 --- a/crypto/cms/cms_ess.c +++ b/crypto/cms/cms_ess.c @@ -430,12 +430,12 @@ ASN1_OCTET_STRING *cms_encode_Receipt(CMS_SignerInfo *si) int cms_add1_signing_cert_v2(CMS_SignerInfo *si, ESS_SIGNING_CERT_V2 *sc) { ASN1_STRING *seq = NULL; -unsigned char *p, *pp; +unsigned char *p, *pp = NULL; int len; /* Add SigningCertificateV2 signed attribute to the signer info. */ len = i2d_ESS_SIGNING_CERT_V2(sc, NULL); -if ((pp = OPENSSL_malloc(len)) == NULL) +if (len <= 0 || (pp = OPENSSL_malloc(len)) == NULL) goto err; p = pp; i2d_ESS_SIGNING_CERT_V2(sc, ); @@ -462,12 +462,12 @@ int cms_add1_signing_cert_v2(CMS_SignerInfo *si, ESS_SIGNING_CERT_V2 *sc) int cms_add1_signing_cert(CMS_SignerInfo *si, ESS_SIGNING_CERT *sc) { ASN1_STRING *seq = NULL; -unsigned char *p, *pp; +unsigned char *p, *pp = NULL; int len; /* Add SigningCertificate signed attribute to the signer info. */ len = i2d_ESS_SIGNING_CERT(sc, NULL); -if ((pp = OPENSSL_malloc(len)) == NULL) +if (len <= 0 || (pp = OPENSSL_malloc(len)) == NULL) goto err; p = pp; i2d_ESS_SIGNING_CERT(sc, ); diff --git a/crypto/dh/dh_ameth.c b/crypto/dh/dh_ameth.c index 011bc5ad03..3d4605ae11
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-tls1_3
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-tls1_3 Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . skipped: TLSv1.3 or TLSv1.2 are disabled in this OpenSSL build 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0F0BDB8067F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/s3_enc.c:413: # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0F0BDB8067F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_s3.c:1615:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:7912 # false not ok 2 - iteration 2 # -- # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0F0BDB8067F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/s3_enc.c:413: # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0F0BDB8067F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_s3.c:1615:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:7912 # false not ok 3 - iteration 3 # -- not ok 37 - test_sigalgs_available # -- ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/wt3gUHdj_j default ../../../openssl/test/default.cnf => 1 not ok 1 - running sslapitest # -- # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C05044813E7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/s3_enc.c:413: # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C05044813E7F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_s3.c:1615:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:7912 # false not ok 2 - iteration 2 # -- # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C05044813E7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/s3_enc.c:413: # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C05044813E7F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_s3.c:1615:SSL alert number 80 # ERROR:
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2-method
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2-method Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C070C42C627F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1327 # false # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1405 # false not ok 4 - test_cleanse_plaintext # -- # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C070C42C627F:error::SSL routines::no suitable signature algorithm:../openssl/ssl/t1_lib.c:3329: # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C070C42C627F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6456 # false not ok 2 - iteration 2 # -- not ok 53 - test_ssl_pending # -- ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/HjV7A492u0 default ../../../openssl/test/default.cnf => 1 not ok 1 - running sslapitest # -- # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0F0F4EBBB7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0F0F4EBBB7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:846 # false not ok 3 - test_large_message_dtls # -- # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0F0F4EBBB7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0F0F4EBBB7F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1327 # false # ERROR: (bool)
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls1_2
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls1_2 Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C02089AC637F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1327 # false # ERROR: (bool) 'execute_cleanse_plaintext(DTLS_server_method(), DTLS_client_method(), DTLS1_VERSION, 0) == true' failed @ ../openssl/test/sslapitest.c:1405 # false not ok 4 - test_cleanse_plaintext # -- # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C02089AC637F:error::SSL routines::no suitable signature algorithm:../openssl/ssl/t1_lib.c:3329: # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C02089AC637F:error::SSL routines::tlsv1 alert internal error:../openssl/ssl/record/rec_layer_d1.c:618:SSL alert number 80 # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:6456 # false not ok 2 - iteration 2 # -- not ok 53 - test_ssl_pending # -- ../../util/wrap.pl ../../test/sslapitest ../../../openssl/test/certs ../../../openssl/test/recipes/90-test_sslapi_data/passwd.txt /tmp/QfFvMft7Ik default ../../../openssl/test/default.cnf => 1 not ok 1 - running sslapitest # -- # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0306E7BC07F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0306E7BC07F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:846 # false not ok 3 - test_large_message_dtls # -- # INFO: @ ../openssl/test/ssltestlib.c:946 # SSL_connect() failed -1, 1 # C0306E7BC07F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # INFO: @ ../openssl/test/ssltestlib.c:964 # SSL_accept() failed -1, 1 # C0306E7BC07F:error::SSL routines::no suitable digest algorithm:../openssl/ssl/statem/statem_lib.c:127:The max supported SSL/TLS version needs the MD5-SHA1 digest but it is not available in the loaded providers. Use (D)TLSv1.2 or above, or load different providers # ERROR: (bool) 'create_ssl_connection(serverssl, clientssl, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslapitest.c:1327 # false # ERROR: (bool)
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dtls
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dtls Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . skipped: No DTLS protocols are supported by this OpenSSL build 80-test_dtls_mtu.t . skipped: test_dtls_mtu needs DTLS and PSK support enabled 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 7 - iteration 7 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 8 - iteration 8 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 9 - iteration 9 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 10 - iteration 10 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 11 - iteration 11 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:479 # 0x0 not ok 12 - iteration 12 # -- not ok 1 - test_handshake # -- ../../util/wrap.pl ../../test/ssl_test 04-client_auth.cnf.fips fips ../../../openssl/test/fips.cnf => 1 not ok 9 - running ssl_test 04-client_auth.cnf # -- # Failed test 'running ssl_test 04-client_auth.cnf' # at ../openssl/test/recipes/80-test_ssl_new.t line 173. # Looks like you failed 1 test of 9. not ok 5 - Test configuration 04-client_auth.cnf # -- # Looks like you failed 1 test of 31.80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/31 subtests 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t ok 90-test_sysdefault.t
Build failed: openssl master.36618
Build openssl master.36618 failed Commit c0a8974b78 by Richard Levitte on 9/3/2020 5:40 AM: fixup! Add SM2 signature algorithm to default provider Configure your notification preferences
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-ui
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-ui Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # Failed test 'p10cr csr empty file' # at ../openssl/test/recipes/81-test_cmp_cli.t line 184. ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd p10cr -newkey new.key -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt -csr wrong.csr.pem => 139 not ok 78 - p10cr wrong csr # -- # Failed test 'p10cr wrong csr' # at ../openssl/test/recipes/81-test_cmp_cli.t line 184. ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd ir -newkey new.key -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt -revreason 5 => 139 not ok 79 - ir + ignored revocation # -- ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd cr -newkey new.key -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt => 139 not ok 82 - cr command # -- # Failed test 'cr command' # at ../openssl/test/recipes/81-test_cmp_cli.t line 184. ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey new.key -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt -oldcert test.cert.pem -server '127.0.0.1:1700' -cert test.cert.pem -key new.key -extracerts issuing.crt => 139 not ok 83 - kur command explicit options # -- # Failed test 'kur command explicit options' # at ../openssl/test/recipes/81-test_cmp_cli.t line 184. ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd kur -subject "" -certout test.cert.pem -oldcert test.cert.pem -server '127.0.0.1:1700' -cert test.cert.pem -key new.key -extracerts issuing.crt -secret "" => 139 not ok 84 - kur command minimal options # -- ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey dir/ -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt -oldcert test.cert.pem -server '127.0.0.1:1700' => 139 not ok 86 - kur newkey is directory # -- ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey new.key -newkeypass 'pass:' -certout test.cert.pem -out_trusted root.crt -oldcert dir/ -server '127.0.0.1:1700' => 139 not ok 89 - kur oldcert is directory # -- # Failed test 'kur oldcert is directory' # at ../openssl/test/recipes/81-test_cmp_cli.t line 184. ../../../../../no-ui/util/wrap.pl ../../../../../no-ui/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey new.key -newkeypass 'pass:'
Still FAILED build of OpenSSL branch master with options -d --strict-warnings enable-ubsan -DPEDANTIC -DOPENSSL_SMALL_FOOTPRINT -fno-sanitize=alignment
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings enable-ubsan -DPEDANTIC -DOPENSSL_SMALL_FOOTPRINT -fno-sanitize=alignment Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): # Server sent alert unexpected_message but client received no alert. # 40C7B888527F:error::SSL routines::unexpected message:../openssl/ssl/statem/statem_srvr.c:318: not ok 9 - iteration 9 # -- not ok 1 - test_handshake # -- ../../util/wrap.pl ../../test/ssl_test 25-cipher.cnf.default default => 1 not ok 6 - running ssl_test 25-cipher.cnf # -- # Looks like you failed 2 tests of 9. not ok 26 - Test configuration 25-cipher.cnf # -- # Looks like you failed 1 test of 31.80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/31 subtests 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok # INFO: @ ../openssl/test/sslcorrupttest.c:199 # Starting #2, ECDHE-RSA-CHACHA20-POLY1305 # ERROR: (int) 'SSL_get_error(clientssl, 0) == SSL_ERROR_WANT_READ' failed @ ../openssl/test/ssltestlib.c:1032 # [1] compared to [2] # ERROR: (bool) 'create_ssl_connection(server, client, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslcorrupttest.c:229 # false # 406772B5987F:error::SSL routines::unexpected message:../openssl/ssl/statem/statem_clnt.c:403: not ok 3 - iteration 3 # -- # INFO: @ ../openssl/test/sslcorrupttest.c:199 # Starting #3, DHE-RSA-CHACHA20-POLY1305 # ERROR: (int) 'SSL_get_error(clientssl, 0) == SSL_ERROR_WANT_READ' failed @ ../openssl/test/ssltestlib.c:1032 # [1] compared to [2] # ERROR: (bool) 'create_ssl_connection(server, client, SSL_ERROR_NONE) == true' failed @ ../openssl/test/sslcorrupttest.c:229 # false # 406772B5987F:error::SSL routines::unexpected message:../openssl/ssl/statem/statem_clnt.c:403: not ok 4 - iteration 4 # -- not ok 1 - test_ssl_corrupt # -- ../../util/wrap.pl ../../test/sslcorrupttest ../../../openssl/apps/server.pem ../../../openssl/apps/server.pem => 1 not ok 1 - running sslcorrupttest # -- # Failed test 'running sslcorrupttest' # at ../openssl/test/recipes/80-test_sslcorrupt.t line 19. # Looks like you failed 1 test of 1.80-test_sslcorrupt.t ... Dubious, test returned 1 (wstat 256, 0x100) Failed 1/1 subtests 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-sock
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-sock Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): rm -f doc/html/man1/CA.pl.html doc/html/man1/openssl-asn1parse.html doc/html/man1/openssl-ca.html doc/html/man1/openssl-ciphers.html doc/html/man1/openssl-cmds.html doc/html/man1/openssl-cmp.html doc/html/man1/openssl-cms.html doc/html/man1/openssl-crl.html doc/html/man1/openssl-crl2pkcs7.html doc/html/man1/openssl-dgst.html doc/html/man1/openssl-dhparam.html doc/html/man1/openssl-dsa.html doc/html/man1/openssl-dsaparam.html doc/html/man1/openssl-ec.html doc/html/man1/openssl-ecparam.html doc/html/man1/openssl-enc.html doc/html/man1/openssl-engine.html doc/html/man1/openssl-errstr.html doc/html/man1/openssl-fipsinstall.html doc/html/man1/openssl-gendsa.html doc/html/man1/openssl-genpkey.html doc/html/man1/openssl-genrsa.html doc/html/man1/openssl-info.html doc/html/man1/openssl-kdf.html doc/html/man1/openssl-list.html doc/html/man1/openssl-mac.html doc/html/man1/openssl-nseq.html doc/html/man1/openssl-ocsp.html doc/html/man1/openssl-passwd.html doc/html/man1/openssl-pkcs12.html doc/h tml/man1/openssl-pkcs7.html doc/html/man1/openssl-pkcs8.html doc/html/man1/openssl-pkey.html doc/html/man1/openssl-pkeyparam.html doc/html/man1/openssl-pkeyutl.html doc/html/man1/openssl-prime.html doc/html/man1/openssl-provider.html doc/html/man1/openssl-rand.html doc/html/man1/openssl-rehash.html doc/html/man1/openssl-req.html doc/html/man1/openssl-rsa.html doc/html/man1/openssl-rsautl.html doc/html/man1/openssl-s_client.html doc/html/man1/openssl-s_server.html doc/html/man1/openssl-s_time.html doc/html/man1/openssl-sess_id.html doc/html/man1/openssl-smime.html doc/html/man1/openssl-speed.html doc/html/man1/openssl-spkac.html doc/html/man1/openssl-srp.html doc/html/man1/openssl-storeutl.html doc/html/man1/openssl-ts.html doc/html/man1/openssl-verify.html doc/html/man1/openssl-version.html doc/html/man1/openssl-x509.html doc/html/man1/openssl.html doc/html/man1/tsget.html doc/html/man3/ADMISSIONS.html doc/html/man3/ASN1_INTEGER_get_int64.html doc/html/man3/ASN1_INTEGER_new.html doc /html/man3/ASN1_ITEM_lookup.html doc/html/man3/ASN1_OBJECT_new.html doc/html/man3/ASN1_STRING_TABLE_add.html doc/html/man3/ASN1_STRING_length.html doc/html/man3/ASN1_STRING_new.html doc/html/man3/ASN1_STRING_print_ex.html doc/html/man3/ASN1_TIME_set.html doc/html/man3/ASN1_TYPE_get.html doc/html/man3/ASN1_generate_nconf.html doc/html/man3/ASYNC_WAIT_CTX_new.html doc/html/man3/ASYNC_start_job.html doc/html/man3/BF_encrypt.html doc/html/man3/BIO_ADDR.html doc/html/man3/BIO_ADDRINFO.html doc/html/man3/BIO_connect.html doc/html/man3/BIO_ctrl.html doc/html/man3/BIO_f_base64.html doc/html/man3/BIO_f_buffer.html doc/html/man3/BIO_f_cipher.html doc/html/man3/BIO_f_md.html doc/html/man3/BIO_f_null.html doc/html/man3/BIO_f_prefix.html doc/html/man3/BIO_f_ssl.html doc/html/man3/BIO_find_type.html doc/html/man3/BIO_get_data.html doc/html/man3/BIO_get_ex_new_index.html doc/html/man3/BIO_meth_new.html doc/html/man3/BIO_new.html doc/html/man3/BIO_new_CMS.html doc/html/man3/BIO_parse_hostserv.html doc/html/man3/BIO_printf.html doc/html/man3/BIO_push.html doc/html/man3/BIO_read.html doc/html/man3/BIO_s_accept.html doc/html/man3/BIO_s_bio.html doc/html/man3/BIO_s_connect.html doc/html/man3/BIO_s_fd.html doc/html/man3/BIO_s_file.html doc/html/man3/BIO_s_mem.html doc/html/man3/BIO_s_null.html doc/html/man3/BIO_s_socket.html doc/html/man3/BIO_set_callback.html doc/html/man3/BIO_should_retry.html doc/html/man3/BIO_socket_wait.html doc/html/man3/BN_BLINDING_new.html doc/html/man3/BN_CTX_new.html doc/html/man3/BN_CTX_start.html doc/html/man3/BN_add.html
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-rc2
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-rc2 Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok Could not read any cert of certificates from -in file from ../../../openssl/test/certs/v3-certs-RC2.p12 C050CDD3907F:error::digital envelope routines:EVP_PBE_CipherInit:unknown cipher:../openssl/crypto/evp/evp_pbe.c:116: C050CDD3907F:error::PKCS12 routines:PKCS12_pbe_crypt:pkcs12 algor cipherinit error:../openssl/crypto/pkcs12/p12_decr.c:37: C050CDD3907F:error::PKCS12 routines:PKCS12_item_decrypt_d2i:pkcs12 pbe crypt error:../openssl/crypto/pkcs12/p12_decr.c:90: C050CDD3907F:error::PKCS12 routines:PKCS12_parse:parse error:../openssl/crypto/pkcs12/p12_kiss.c:87: ../../util/wrap.pl ../../apps/openssl pkcs12 -export -in ../../../openssl/test/certs/v3-certs-RC2.p12 -passin 'pass:v3-certs' -provider default -provider legacy -nokeys -passout 'pass:v3-certs' -descert -out tmp.p12 => 1 not ok 5 - test_pkcs12_passcert # -- # Failed test 'test_pkcs12_passcert' # at ../openssl/test/recipes/80-test_pkcs12.t line 93. # Looks like you failed 1 test of 5.80-test_pkcs12.t ... Dubious, test returned 1 (wstat 256, 0x100) Failed 1/5 subtests 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t ok 90-test_sysdefault.t ... ok 90-test_threads.t .. ok 90-test_time_offset.t .. ok 90-test_tls13ccs.t
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-posix-io
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-posix-io Commit log since last time: 2c0e356ef7 apps/cmp.c: Clean up loading of certificates and CRLs ef0f01c0af Avoid uninitialised variable warning for jobs 1a5ae1da14 Add -verbosity option to apps/cmp.c and add log output also in crypto/cmp 807b0a1dbb also zero pad DHE public key in ClientKeyExchange message for interop 72c1e37421 Use global 'libctx' with RAND_bytes_ex to generate sendfile temp data. ab114c6dde Fix two issues with AES-CCM KTLS tests. 18efb63016 Skip tests using KTLS RX for TLS 1.3. cd03b5dc42 Skip tests using KTLS RX if KTLS RX is not supported. eb818d23c2 Refactor the KTLS tests to minimize code duplication. c7b46b549d Move KTLS inline functions only used by libssl into ssl/ktls.c. b22a3ccc07 Support for KTLS TX on FreeBSD for TLS 1.3. 3c1641e8e8 Don't check errno if ktls_read_record() returned 0. 0a90a90c46 Add support for KTLS receive for TLS 1.1-1.2 on FreeBSD. 3e5826061b Add helper functions for FreeBSD KTLS. c34ca13a60 Add a ktls_crypto_info_t typedef. 23e77b0ba3 Update test data for DSA public key text e2e46dfa8c Add the correct enum value for DSA public key serialization Build log ended with (last 100 lines): rm -f doc/man/man1/CA.pl.1 doc/man/man1/openssl-asn1parse.1 doc/man/man1/openssl-ca.1 doc/man/man1/openssl-ciphers.1 doc/man/man1/openssl-cmds.1 doc/man/man1/openssl-cmp.1 doc/man/man1/openssl-cms.1 doc/man/man1/openssl-crl.1 doc/man/man1/openssl-crl2pkcs7.1 doc/man/man1/openssl-dgst.1 doc/man/man1/openssl-dhparam.1 doc/man/man1/openssl-dsa.1 doc/man/man1/openssl-dsaparam.1 doc/man/man1/openssl-ec.1 doc/man/man1/openssl-ecparam.1 doc/man/man1/openssl-enc.1 doc/man/man1/openssl-engine.1 doc/man/man1/openssl-errstr.1 doc/man/man1/openssl-fipsinstall.1 doc/man/man1/openssl-gendsa.1 doc/man/man1/openssl-genpkey.1 doc/man/man1/openssl-genrsa.1 doc/man/man1/openssl-info.1 doc/man/man1/openssl-kdf.1 doc/man/man1/openssl-list.1 doc/man/man1/openssl-mac.1 doc/man/man1/openssl-nseq.1 doc/man/man1/openssl-ocsp.1 doc/man/man1/openssl-passwd.1 doc/man/man1/openssl-pkcs12.1 doc/man/man1/openssl-pkcs7.1 doc/man/man1/openssl-pkcs8.1 doc/man/man1/openssl-pkey.1 doc/man/man1/openssl-pkeyparam.1 doc/ma n/man1/openssl-pkeyutl.1 doc/man/man1/openssl-prime.1 doc/man/man1/openssl-provider.1 doc/man/man1/openssl-rand.1 doc/man/man1/openssl-rehash.1 doc/man/man1/openssl-req.1 doc/man/man1/openssl-rsa.1 doc/man/man1/openssl-rsautl.1 doc/man/man1/openssl-s_client.1 doc/man/man1/openssl-s_server.1 doc/man/man1/openssl-s_time.1 doc/man/man1/openssl-sess_id.1 doc/man/man1/openssl-smime.1 doc/man/man1/openssl-speed.1 doc/man/man1/openssl-spkac.1 doc/man/man1/openssl-srp.1 doc/man/man1/openssl-storeutl.1 doc/man/man1/openssl-ts.1 doc/man/man1/openssl-verify.1 doc/man/man1/openssl-version.1 doc/man/man1/openssl-x509.1 doc/man/man1/openssl.1 doc/man/man1/tsget.1 doc/man/man3/ADMISSIONS.3 doc/man/man3/ASN1_INTEGER_get_int64.3 doc/man/man3/ASN1_INTEGER_new.3 doc/man/man3/ASN1_ITEM_lookup.3 doc/man/man3/ASN1_OBJECT_new.3 doc/man/man3/ASN1_STRING_TABLE_add.3 doc/man/man3/ASN1_STRING_length.3 doc/man/man3/ASN1_STRING_new.3 doc/man/man3/ASN1_STRING_print_ex.3 doc/man/man3/ASN1_TIME_set.3 doc/man/man3/ ASN1_TYPE_get.3 doc/man/man3/ASN1_generate_nconf.3 doc/man/man3/ASYNC_WAIT_CTX_new.3 doc/man/man3/ASYNC_start_job.3 doc/man/man3/BF_encrypt.3 doc/man/man3/BIO_ADDR.3 doc/man/man3/BIO_ADDRINFO.3 doc/man/man3/BIO_connect.3 doc/man/man3/BIO_ctrl.3 doc/man/man3/BIO_f_base64.3 doc/man/man3/BIO_f_buffer.3 doc/man/man3/BIO_f_cipher.3 doc/man/man3/BIO_f_md.3 doc/man/man3/BIO_f_null.3 doc/man/man3/BIO_f_prefix.3 doc/man/man3/BIO_f_ssl.3 doc/man/man3/BIO_find_type.3 doc/man/man3/BIO_get_data.3 doc/man/man3/BIO_get_ex_new_index.3 doc/man/man3/BIO_meth_new.3 doc/man/man3/BIO_new.3 doc/man/man3/BIO_new_CMS.3 doc/man/man3/BIO_parse_hostserv.3 doc/man/man3/BIO_printf.3 doc/man/man3/BIO_push.3 doc/man/man3/BIO_read.3 doc/man/man3/BIO_s_accept.3 doc/man/man3/BIO_s_bio.3 doc/man/man3/BIO_s_connect.3 doc/man/man3/BIO_s_fd.3 doc/man/man3/BIO_s_file.3 doc/man/man3/BIO_s_mem.3 doc/man/man3/BIO_s_null.3 doc/man/man3/BIO_s_socket.3 doc/man/man3/BIO_set_callback.3 doc/man/man3/BIO_should_retry.3 doc/man/man 3/BIO_socket_wait.3 doc/man/man3/BN_BLINDING_new.3 doc/man/man3/BN_CTX_new.3 doc/man/man3/BN_CTX_start.3 doc/man/man3/BN_add.3 doc/man/man3/BN_add_word.3 doc/man/man3/BN_bn2bin.3 doc/man/man3/BN_cmp.3 doc/man/man3/BN_copy.3 doc/man/man3/BN_generate_prime.3 doc/man/man3/BN_mod_inverse.3 doc/man/man3/BN_mod_mul_montgomery.3 doc/man/man3/BN_mod_mul_reciprocal.3 doc/man/man3/BN_new.3 doc/man/man3/BN_num_bytes.3 doc/man/man3/BN_rand.3 doc/man/man3/BN_security_bits.3 doc/man/man3/BN_set_bit.3 doc/man/man3/BN_swap.3 doc/man/man3/BN_zero.3 doc/man/man3/BUF_MEM_new.3