Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-rc2
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-rc2 Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok Could not read any certificates from -in file from ../../../openssl/test/certs/v3-certs-RC2.p12 C0A06CE62F7F:error::digital envelope routines:EVP_PBE_CipherInit:unknown cipher:../openssl/crypto/evp/evp_pbe.c:116:RC2-40-CBC ../../util/wrap.pl ../../apps/openssl pkcs12 -export -in ../../../openssl/test/certs/v3-certs-RC2.p12 -passin 'pass:v3-certs' -provider default -provider legacy -nokeys -passout 'pass:v3-certs' -descert -out tmp.p12 => 1 not ok 5 - test_pkcs12_passcert # -- # Failed test 'test_pkcs12_passcert' # at ../openssl/test/recipes/80-test_pkcs12.t line 93. # Looks like you failed 1 test of 5.80-test_pkcs12.t ... Dubious, test returned 1 (wstat 256, 0x100) Failed 1/5 subtests 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t ok 90-test_sysdefault.t ... ok 90-test_threads.t .. ok 90-test_time_offset.t .. ok 90-test_tls13ccs.t . ok
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-posix-io
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-posix-io Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-dhparam.pod.in > doc/man1/openssl-dhparam.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-dsa.pod.in > doc/man1/openssl-dsa.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-dsaparam.pod.in > doc/man1/openssl-dsaparam.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-ec.pod.in > doc/man1/openssl-ec.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-ecparam.pod.in > doc/man1/openssl-ecparam.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-enc.pod.in > doc/man1/openssl-enc.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-engine.pod.in > doc/man1/openssl-engine.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-errstr.pod.in > doc/man1/openssl-errstr.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-fipsinstall.pod.in > doc/man1/openssl-fipsinstall.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-gendsa.pod.in > doc/man1/openssl-gendsa.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-genpkey.pod.in > doc/man1/openssl-genpkey.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-genrsa.pod.in > doc/man1/openssl-genrsa.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-info.pod.in > doc/man1/openssl-info.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-kdf.pod.in > doc/man1/openssl-kdf.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-list.pod.in > doc/man1/openssl-list.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-mac.pod.in > doc/man1/openssl-mac.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-nseq.pod.in > doc/man1/openssl-nseq.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-ocsp.pod.in > doc/man1/openssl-ocsp.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata -Mperlvars "../openssl/util/dofile.pl" "-oMakefile" ../openssl/doc/man1/openssl-passwd.pod.in > doc/man1/openssl-passwd.pod /usr/bin/perl "-I." "-I../openssl/doc" -Mconfigdata
Still FAILED build of OpenSSL branch master with options -d enable-fuzz-afl no-shared no-module
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=afl-clang-fast ../openssl/config -d enable-fuzz-afl no-shared no-module Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): ../../../../../enable-fuzz-afl/util/wrap.pl ../../../../../enable-fuzz-afl/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock credentials' -certout ../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cert "" -key "" -keypass "" -unprotected_requests => 0 not ok 38 - unprotected request # -- # Failed test 'unprotected request' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. # Looks like you failed 3 tests of 38. not ok 5 - CMP app CLI Mock credentials # -- # cmp_main:../openssl/apps/cmp.c:2665:CMP info: using OpenSSL configuration file '../Mock/test.cnf' # opt_str:../openssl/apps/cmp.c:2263:CMP warning: argument of -proxy option is empty string, resetting option # warn_cert_msg:../openssl/apps/cmp.c:690:CMP warning: certificate from 'trusted.crt' with subject '/O=openssl_cmp' is not a CA cert # setup_client_ctx:../openssl/apps/cmp.c:1980:CMP info: will contact http://127.0.0.1:1700/pkix/ # send_receive_check:../openssl/crypto/cmp/cmp_client.c:166:CMP info: sending IR # send_receive_check:../openssl/crypto/cmp/cmp_client.c:184:CMP info: received IP # send_receive_check:../openssl/crypto/cmp/cmp_client.c:166:CMP info: sending CERTCONF # send_receive_check:../openssl/crypto/cmp/cmp_client.c:184:CMP info: received PKICONF # save_free_certs:../openssl/apps/cmp.c:2030:CMP info: received 1 enrolled certificate(s), saving to file '../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.certout_popo1.pem' ../../../../../enable-fuzz-afl/util/wrap.pl ../../../../../enable-fuzz-afl/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd ir -newkey new.key -newkeypass 'pass:' -popo 0 -certout ../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.certout_popo1.pem -out_trusted root.crt => 0 not ok 43 - popo RAVERIFIED # -- # cmp_main:../openssl/apps/cmp.c:2665:CMP info: using OpenSSL configuration file '../Mock/test.cnf' # opt_str:../openssl/apps/cmp.c:2263:CMP warning: argument of -proxy option is empty string, resetting option # warn_cert_msg:../openssl/apps/cmp.c:690:CMP warning: certificate from 'trusted.crt' with subject '/O=openssl_cmp' is not a CA cert # setup_client_ctx:../openssl/apps/cmp.c:1980:CMP info: will contact http://127.0.0.1:1700/pkix/ # send_receive_check:../openssl/crypto/cmp/cmp_client.c:166:CMP info: sending IR # send_receive_check:../openssl/crypto/cmp/cmp_client.c:184:CMP info: received IP # send_receive_check:../openssl/crypto/cmp/cmp_client.c:166:CMP info: sending CERTCONF # send_receive_check:../openssl/crypto/cmp/cmp_client.c:184:CMP info: received PKICONF # save_free_certs:../openssl/apps/cmp.c:2030:CMP info: received 1 enrolled certificate(s), saving to file '../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.certout_popo5.pem' ../../../../../enable-fuzz-afl/util/wrap.pl ../../../../../enable-fuzz-afl/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../enable-fuzz-afl/test-runs/test_cmp_cli/test.cert.pem
Build completed: openssl master.37431
Build openssl master.37431 completed Commit 0a7c08f5a6 by Daniel Bevenius on 10/9/2020 4:07 AM: EVP: fix keygen for EVP_PKEY_RSA_PSS Configure your notification preferences
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-ui-console
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-ui-console Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): # Failed test 'p10cr csr non-existing file' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. ../../../../../no-ui-console/util/wrap.pl ../../../../../no-ui-console/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd p10cr -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_p10cr4.pem -out_trusted root.crt -csr empty.txt => 139 not ok 78 - p10cr csr empty file # -- # Failed test 'p10cr csr empty file' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. ../../../../../no-ui-console/util/wrap.pl ../../../../../no-ui-console/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd ir -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_revreason.pem -out_trusted root.crt -revreason 5 => 139 not ok 79 - ir + ignored revocation # -- ../../../../../no-ui-console/util/wrap.pl ../../../../../no-ui-console/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd cr -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_cr.pem -out_trusted root.crt => 139 not ok 82 - cr # -- # Failed test 'cr' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. ../../../../../no-ui-console/util/wrap.pl ../../../../../no-ui-console/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_kur.pem -out_trusted root.crt -oldcert ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_newkey.pem -server '127.0.0.1:1700' -cert ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_newkey.pem -key new.key -extracerts issuing.crt => 139 not ok 83 - kur explicit options # -- # Failed test 'kur explicit options' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. ../../../../../no-ui-console/util/wrap.pl ../../../../../no-ui-console/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd kur -subject "" -certout ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_kur_minimal.pem -oldcert "" -server '127.0.0.1:1700' -cert ../../../../../no-ui-console/test-runs/test_cmp_cli/test.certout_newkey.pem -key new.key -extracerts issuing.crt -secret "" => 139 not ok 84 - kur minimal options #
Build failed: openssl master.37430
Build openssl master.37430 failed Commit a146dd3d3e by Dr. David von Oheimb on 10/9/2020 11:31 AM: Just for analyzing errors on Windows shared builds - TODO remove this commit Configure your notification preferences
Build failed: openssl master.37428
Build openssl master.37428 failed Commit 3094351625 by Richard Levitte on 10/9/2020 11:20 AM: Fix diverse ERR code conflicts Configure your notification preferences
Still Failing: openssl/openssl#37964 (master - 3094351)
Build Update for openssl/openssl - Build: #37964 Status: Still Failing Duration: 1 hr, 37 mins, and 48 secs Commit: 3094351 (master) Author: Richard Levitte Message: Fix diverse ERR code conflicts There was a number of potential range conflicts between reason codes from different places. Library specific reason codes are allowed to start at 100, so it means that anything "global" is limited to the range 1..99. At the same time, we have the ERR_R_LIB_xxx reason codes, which have the same numbers as ERR_LIB_xxx, potential range 1..255. And then we have the common ERR_R_ reason codes, potential range in OpenSSL 1.1.1 is 1..99, where fatal reasons occupy 64..99. For OpenSSL 3.0-dev, the range for the common reason codes was pushed up to 64..99 in an attempt to reduce the conflicts with the ERR_R_LIB_xxx reason codes. Currently existing conflicts in OpenSSL 1.1.1: ERR_R_BUF_LIB and ERR_R_PASSED_INVALID_ARGUMENT have the same code. There are currently no existing conflicts in OpenSSL 3.0-dev, but considering that ERR_LIB_HTTP is 61, a few more modules and associated ERR_R_LIB_xxx are going to sniff awfully close to 64, where the common ERR_R_ codes currently start. To avoid these range conflicts, the strategy to recognise common reason codes is change to depend on a reason flag, ERR_RFLAG_COMMON, and the common error codes themselves have moved start at 256, giving them the potential range 256..2^18-1, and thus allowing ERR_R_LIB_xxx the full range of library codes, 1..255. The dual purpose ERR_R_FATAL is also handled in this change, by allowing the rflags and reason codes to overlap by 1 bit, and make both ERR_R_FATAL and ERR_RFLAG_FATAL have the same value, 2^18. With this change, there's no need to worry about reason code conflicts any more, every library specific range as well as the common range is 1..2^18-1. Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/13093) View the changeset: https://github.com/openssl/openssl/compare/86e5ac6d8441...3094351625f0 View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/189029738?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
Build completed: openssl master.37425
Build openssl master.37425 completed Commit 080ea2fa23 by Zhang Jinde on 9/24/2020 6:48 AM: Update gcm128.c Configure your notification preferences
[openssl] master update
The branch master has been updated
via 3094351625f0b222f92c22ce4943461df8c7e301 (commit)
from 86e5ac6d844136324d4ccb649c768e530ce6e0af (commit)
- Log -
commit 3094351625f0b222f92c22ce4943461df8c7e301
Author: Richard Levitte
Date: Thu Oct 8 08:11:32 2020 +0200
Fix diverse ERR code conflicts
There was a number of potential range conflicts between reason codes
from different places. Library specific reason codes are allowed to
start at 100, so it means that anything "global" is limited to the
range 1..99.
At the same time, we have the ERR_R_LIB_xxx reason codes, which have
the same numbers as ERR_LIB_xxx, potential range 1..255.
And then we have the common ERR_R_ reason codes, potential range in
OpenSSL 1.1.1 is 1..99, where fatal reasons occupy 64..99. For
OpenSSL 3.0-dev, the range for the common reason codes was pushed up
to 64..99 in an attempt to reduce the conflicts with the ERR_R_LIB_xxx
reason codes.
Currently existing conflicts in OpenSSL 1.1.1:
ERR_R_BUF_LIB and ERR_R_PASSED_INVALID_ARGUMENT have the same code.
There are currently no existing conflicts in OpenSSL 3.0-dev, but
considering that ERR_LIB_HTTP is 61, a few more modules and associated
ERR_R_LIB_xxx are going to sniff awfully close to 64, where the
common ERR_R_ codes currently start.
To avoid these range conflicts, the strategy to recognise common
reason codes is change to depend on a reason flag, ERR_RFLAG_COMMON,
and the common error codes themselves have moved start at 256, giving
them the potential range 256..2^18-1, and thus allowing ERR_R_LIB_xxx
the full range of library codes, 1..255.
The dual purpose ERR_R_FATAL is also handled in this change, by
allowing the rflags and reason codes to overlap by 1 bit, and make
both ERR_R_FATAL and ERR_RFLAG_FATAL have the same value, 2^18.
With this change, there's no need to worry about reason code conflicts
any more, every library specific range as well as the common range is
1..2^18-1.
Reviewed-by: Tomas Mraz
(Merged from https://github.com/openssl/openssl/pull/13093)
---
Summary of changes:
include/openssl/err.h.in | 126 +++
1 file changed, 72 insertions(+), 54 deletions(-)
diff --git a/include/openssl/err.h.in b/include/openssl/err.h.in
index b916f436e3..0e6f4fbad2 100644
--- a/include/openssl/err.h.in
+++ b/include/openssl/err.h.in
@@ -190,24 +190,43 @@ struct err_state_st {
*
* A few of the reason bits are reserved as flags with special meaning:
*
- *<4 bits><-- 19 bits ->
- * +---+-+
- * | rflags|reason |
- * +---+-+
+ *<5 bits-<>- 19 bits ->
+ * +---+-+---+
+ * | rflags| | reason |
+ * +---+-+---+
+ *^
+ *|
+ * ERR_RFLAG_FATAL = ERR_R_FATAL
*
- * We have the reason flags being part of the overall reason code for
- * backward compatibility reasons, i.e. how ERR_R_FATAL was implemented.
+ * The reason flags are part of the overall reason code for practical
+ * reasons, as they provide an easy way to place different types of
+ * reason codes in different numeric ranges.
+ *
+ * The currently known reason flags are:
+ *
+ * ERR_RFLAG_FATAL Flags that the reason code is considered fatal.
+ * For backward compatibility reasons, this flag
+ * is also the code for ERR_R_FATAL (that reason
+ * code served the dual purpose of flag and reason
+ * code in one in pre-3.0 OpenSSL).
+ * ERR_RFLAG_COMMON Flags that the reason code is common to all
+ * libraries. All ERR_R_ macros must use this flag,
+ * and no other _R_ macro is allowed to use it.
*/
/* Macros to help decode recorded system errors */
# define ERR_SYSTEM_FLAG((unsigned int)INT_MAX + 1)
# define ERR_SYSTEM_MASK((unsigned int)INT_MAX)
-/* Macros to help decode recorded OpenSSL errors */
+/*
+ * Macros to help decode recorded OpenSSL errors
+ * As expressed above, RFLAGS and REASON overlap by one bit to allow
+ * ERR_R_FATAL to use ERR_RFLAG_FATAL as its reason code.
+ */
# define ERR_LIB_OFFSET 23L
# define ERR_LIB_MASK 0xFF
-# define ERR_RFLAGS_OFFSET 19L
-# define
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-err
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-err Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): 65-test_cmp_vfy.t .. ok 66-test_ossl_store.t ... ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . ok 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . ok 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t ok 90-test_sysdefault.t ... ok 90-test_threads.t .. ok 90-test_time_offset.t .. ok 90-test_tls13ccs.t . ok 90-test_tls13encryption.t .. ok 90-test_tls13secrets.t . ok 90-test_v3name.t ... ok 95-test_external_boringssl.t ... skipped: No external tests in this configuration 95-test_external_gost_engine.t . skipped: No external tests in this configuration 95-test_external_krb5.t skipped: No external tests in this
Build failed: openssl master.37424
Build openssl master.37424 failed Commit 86e5ac6d84 by Richard Levitte on 10/9/2020 8:19 AM: make ordinals Configure your notification preferences
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-engine
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-engine Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -certs -noout ../../../../openssl/test/testx509.pem => 1 not ok 409 - Checking that -certs returns 1 object on a certificate file # -- # Failed test 'Checking that -certs returns 1 object on a certificate file' # at ../openssl/test/recipes/90-test_store.t line 205. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -certs -noout ../../../../openssl/test/testcrl.pem => 1 not ok 410 - Checking that -certs returns 0 objects on a CRL file # -- # Failed test 'Checking that -certs returns 0 objects on a CRL file' # at ../openssl/test/recipes/90-test_store.t line 208. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -crls -noout ../../../../openssl/test/testx509.pem => 1 not ok 411 - Checking that -crls returns 0 objects on a certificate file # -- # Failed test 'Checking that -crls returns 0 objects on a certificate file' # at ../openssl/test/recipes/90-test_store.t line 212. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -crls -noout ../../../../openssl/test/testcrl.pem => 1 not ok 412 - Checking that -crls returns 1 object on a CRL file # -- # Failed test 'Checking that -crls returns 1 object on a CRL file' # at ../openssl/test/recipes/90-test_store.t line 215. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -noout -subject '/C=AU/ST=QLD/CN=SSLeay\/rsa test cert' rehash => 1 not ok 413 # -- # Failed test at ../openssl/test/recipes/90-test_store.t line 226. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -noout -subject '/C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority' rehash => 1 not ok 414 # -- # Failed test at ../openssl/test/recipes/90-test_store.t line 229. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -noout -certs -subject '/C=AU/ST=QLD/CN=SSLeay\/rsa test cert' rehash => 1 not ok 415 # -- # Failed test at ../openssl/test/recipes/90-test_store.t line 233. storeutl: Unknown message digest: engine storeutl: Use -help for summary. ../../../util/wrap.pl ../../../apps/openssl storeutl -engine loader_attic -noout -crls -subject '/C=AU/ST=QLD/CN=SSLeay\/rsa test cert' rehash => 1 not ok 416 # -- # Failed test at
Still Failing: openssl/openssl#37960 (master - 86e5ac6)
Build Update for openssl/openssl - Build: #37960 Status: Still Failing Duration: 1 hr, 31 mins, and 25 secs Commit: 86e5ac6 (master) Author: Richard Levitte Message: make ordinals Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/13092) View the changeset: https://github.com/openssl/openssl/compare/cad809592579...86e5ac6d8441 View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/188997393?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
Still Failing: openssl/openssl#37959 (master - cad8095)
Build Update for openssl/openssl - Build: #37959 Status: Still Failing Duration: 1 hr, 20 mins, and 42 secs Commit: cad8095 (master) Author: Tomas Mraz Message: INSTALL.md: Drop trailing spaces on a line Reviewed-by: Paul Yang (Merged from https://github.com/openssl/openssl/pull/13097) View the changeset: https://github.com/openssl/openssl/compare/a96722219ed4...cad809592579 View the full build log and details: https://travis-ci.com/github/openssl/openssl/builds/188987829?utm_medium=notification_source=email -- You can unsubscribe from build emails from the openssl/openssl repository going to https://travis-ci.com/account/preferences/unsubscribe?repository=13885459_medium=notification_source=email. Or unsubscribe from *all* email updating your settings at https://travis-ci.com/account/preferences/unsubscribe?utm_medium=notification_source=email. Or configure specific recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications.
[openssl] master update
The branch master has been updated via 86e5ac6d844136324d4ccb649c768e530ce6e0af (commit) via a23163a3164897d0b370b31de824b9b020e85857 (commit) via 0c12ca7294ac887d3d07a3294d1ee7c35a2be7e4 (commit) from cad809592579e62c7d38407bdcb11b942571d535 (commit) - Log - commit 86e5ac6d844136324d4ccb649c768e530ce6e0af Author: Richard Levitte Date: Thu Oct 8 07:22:38 2020 +0200 make ordinals Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/13092) commit a23163a3164897d0b370b31de824b9b020e85857 Author: Richard Levitte Date: Thu Oct 8 06:30:35 2020 +0200 Modify util/mknum.pl to drop new symbols that don't exist any more This makes use of the writer filters in OpenSSL::Ordinals. Fixes #10395 Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/13092) commit 0c12ca7294ac887d3d07a3294d1ee7c35a2be7e4 Author: Richard Levitte Date: Thu Oct 8 06:27:51 2020 +0200 OpenSSL::Ordinals: Add options for the writing functions OpenSSL::Ordinals::rewrite() and OpenSSL::Ordinals::write() now take options, that are simply passed to OpenSSL::Ordinals::items(). The 'sort' option is forbidden, though, since write() already uses it, but that means it's possible to filter the output. Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/13092) --- Summary of changes: util/libcrypto.num| 23 --- util/mknum.pl | 22 +- util/perl/OpenSSL/Ordinals.pm | 21 ++--- 3 files changed, 35 insertions(+), 31 deletions(-) diff --git a/util/libcrypto.num b/util/libcrypto.num index 189563fd2a..05e006eb72 100644 --- a/util/libcrypto.num +++ b/util/libcrypto.num @@ -4430,17 +4430,6 @@ OPENSSL_version_build_metadata ?3_0_0 EXIST::FUNCTION: EVP_aes_128_siv ? 3_0_0 EXIST::FUNCTION:SIV EVP_aes_192_siv ? 3_0_0 EXIST::FUNCTION:SIV EVP_aes_256_siv ? 3_0_0 EXIST::FUNCTION:SIV -CRYPTO_siv128_new ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_init ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_copy_ctx ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_aad ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_encrypt ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_decrypt ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_finish? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_set_tag ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_get_tag ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_cleanup ? 3_0_0 NOEXIST::FUNCTION:SIV -CRYPTO_siv128_speed ? 3_0_0 NOEXIST::FUNCTION:SIV OPENSSL_INIT_set_config_filename? 3_0_0 EXIST::FUNCTION:STDIO OPENSSL_INIT_set_config_file_flags ? 3_0_0 EXIST::FUNCTION:STDIO ASYNC_WAIT_CTX_get_callback ? 3_0_0 EXIST::FUNCTION: @@ -4626,9 +4615,6 @@ OSSL_CMP_MSG_free ? 3_0_0 EXIST::FUNCTION:CMP ERR_load_CMP_strings? 3_0_0 EXIST::FUNCTION:CMP EVP_MD_CTX_set_params ? 3_0_0 EXIST::FUNCTION: EVP_MD_CTX_get_params ? 3_0_0 EXIST::FUNCTION: -OPENSSL_CTX_get0_primary_drbg ? 3_0_0 NOEXIST::FUNCTION: -OPENSSL_CTX_get0_public_drbg? 3_0_0 NOEXIST::FUNCTION: -OPENSSL_CTX_get0_private_drbg ? 3_0_0 NOEXIST::FUNCTION: BN_CTX_new_ex ? 3_0_0 EXIST::FUNCTION: BN_CTX_secure_new_ex? 3_0_0 EXIST::FUNCTION: OPENSSL_thread_stop_ex ? 3_0_0 EXIST::FUNCTION: @@ -4666,9 +4652,6 @@ ERR_vset_error ? 3_0_0 EXIST::FUNCTION: X509_get0_authority_issuer ? 3_0_0 EXIST::FUNCTION: X509_get0_authority_serial ? 3_0_0 EXIST::FUNCTION: X509_self_signed? 3_0_0 EXIST::FUNCTION: -EC_GROUP_new_by_curve_name_ex ? 3_0_0 NOEXIST::FUNCTION:EC -EC_KEY_new_ex ? 3_0_0 NOEXIST::FUNCTION:EC -EC_KEY_new_by_curve_name_ex ? 3_0_0 NOEXIST::FUNCTION:EC OPENSSL_hexstr2buf_ex ? 3_0_0 EXIST::FUNCTION: OPENSSL_buf2hexstr_ex ? 3_0_0 EXIST::FUNCTION: OSSL_PARAM_allocate_from_text ? 3_0_0 EXIST::FUNCTION: @@ -4792,9 +4775,7 @@ OSSL_CMP_print_to_bio ? 3_0_0 EXIST::FUNCTION:CMP
Build failed: openssl master.37422
Build openssl master.37422 failed Commit 7fd17303b9 by Dr. David von Oheimb on 9/28/2020 6:29 AM: apps/cms.c: Improve adherence to coding formatting rules Configure your notification preferences
[openssl] master update
The branch master has been updated via cad809592579e62c7d38407bdcb11b942571d535 (commit) from a96722219ed431656b0f15a9a3d2c26676b6616e (commit) - Log - commit cad809592579e62c7d38407bdcb11b942571d535 Author: Tomas Mraz Date: Thu Oct 8 17:24:44 2020 +0200 INSTALL.md: Drop trailing spaces on a line Reviewed-by: Paul Yang (Merged from https://github.com/openssl/openssl/pull/13097) --- Summary of changes: INSTALL.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/INSTALL.md b/INSTALL.md index 813d8b456d..30c88872d2 100644 --- a/INSTALL.md +++ b/INSTALL.md @@ -1470,7 +1470,7 @@ described here. Examine the Makefiles themselves for the full list. install_html_docs Only install the OpenSSL HTML documentation. - + install_fips Install the FIPS provider module configuration file.
[web] master update
The branch master has been updated via ccf53c574247ac38f8ebfa956c0dee6d9501ed62 (commit) from b4cd56044d440553a1fe8273faac204d26be97ff (commit) - Log - commit ccf53c574247ac38f8ebfa956c0dee6d9501ed62 Author: Pauli Date: Fri Oct 9 07:52:12 2020 +1000 Add Siemens to the list of companies that support the project by donating employee time. Reviewed-by: Matt Caswell (Merged from https://github.com/openssl/web/pull/200) --- Summary of changes: community/thanks.html | 1 + 1 file changed, 1 insertion(+) diff --git a/community/thanks.html b/community/thanks.html index 2ee75d3..0a734d0 100644 --- a/community/thanks.html +++ b/community/thanks.html @@ -30,6 +30,7 @@ Google, Oracle, Red Hat, +Siemens, and Softing.
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dh
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dh Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): 65-test_cmp_vfy.t .. ok 66-test_ossl_store.t ... ok 70-test_asyncio.t .. ok 70-test_bad_dtls.t . ok 70-test_clienthello.t .. ok 70-test_comp.t . ok 70-test_key_share.t ok 70-test_packet.t ... ok 70-test_recordlen.t ok 70-test_renegotiation.t ok 70-test_servername.t ... ok 70-test_sslcbcpadding.t ok 70-test_sslcertstatus.t ok 70-test_sslextension.t . ok 70-test_sslmessages.t .. ok 70-test_sslrecords.t ... ok 70-test_sslsessiontick.t ... ok 70-test_sslsigalgs.t ... ok 70-test_sslsignature.t . ok 70-test_sslskewith0p.t . skipped: dh is not supported by this OpenSSL build 70-test_sslversions.t .. ok 70-test_sslvertol.t ok 70-test_tls13alerts.t .. ok 70-test_tls13cookie.t .. ok 70-test_tls13downgrade.t ... ok 70-test_tls13hrr.t . ok 70-test_tls13kexmodes.t ok 70-test_tls13messages.t ok 70-test_tls13psk.t . ok 70-test_tlsextms.t . ok 70-test_verify_extra.t . ok 70-test_wpacket.t .. ok 71-test_ssl_ctx.t .. ok 80-test_ca.t ... ok 80-test_cipherbytes.t .. ok 80-test_cipherlist.t ... ok 80-test_ciphername.t ... ok # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . ok 80-test_dtls_mtu.t . ok 80-test_dtlsv1listen.t . skipped: dh is not supported by this OpenSSL build 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok 80-test_ssl_new.t .. ok 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ... ok 90-test_shlibload.t ok 90-test_srp.t .. ok 90-test_sslapi.t ... ok 90-test_sslbuffers.t ... ok 90-test_store.t ok 90-test_sysdefault.t ... ok 90-test_threads.t .. ok 90-test_time_offset.t .. ok 90-test_tls13ccs.t . ok 90-test_tls13encryption.t .. ok 90-test_tls13secrets.t . ok 90-test_v3name.t ... ok 95-test_external_boringssl.t ... skipped: No external tests in this configuration 95-test_external_gost_engine.t . skipped: No external tests in
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-dgram
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-dgram Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): # 80-test_cms.t .. ok 80-test_cmsapi.t ... ok 80-test_ct.t ... ok 80-test_dane.t . ok 80-test_dtls.t . skipped: No DTLS protocols are supported by this OpenSSL build 80-test_dtls_mtu.t . skipped: test_dtls_mtu needs DTLS and PSK support enabled 80-test_dtlsv1listen.t . ok 80-test_http.t . ok 80-test_ocsp.t . ok 80-test_pkcs12.t ... ok # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 7 - iteration 7 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 8 - iteration 8 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 9 - iteration 9 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 10 - iteration 10 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 11 - iteration 11 # -- # ERROR: (ptr) 'server_ctx != NULL' failed @ ../openssl/test/ssl_test.c:475 # 0x0 not ok 12 - iteration 12 # -- not ok 1 - test_handshake # -- ../../util/wrap.pl ../../test/ssl_test 04-client_auth.cnf.fips fips ../../../openssl/test/fips-and-base.cnf => 1 not ok 9 - running ssl_test 04-client_auth.cnf # -- # Failed test 'running ssl_test 04-client_auth.cnf' # at ../openssl/test/recipes/80-test_ssl_new.t line 173. # Looks like you failed 1 test of 9. not ok 5 - Test configuration 04-client_auth.cnf # -- # Looks like you failed 1 test of 31.80-test_ssl_new.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/31 subtests 80-test_ssl_old.t .. ok 80-test_ssl_test_ctx.t . ok 80-test_sslcorrupt.t ... ok 80-test_tsa.t .. ok 80-test_x509aux.t .. ok # 81-test_cmp_cli.t .. ok 90-test_asn1_time.t ok 90-test_async.t ok 90-test_bio_enc.t .. ok 90-test_bio_memleak.t .. ok 90-test_constant_time.t ok 90-test_fatalerr.t . ok 90-test_gmdiff.t ... ok 90-test_gost.t . ok 90-test_ige.t .. ok 90-test_includes.t . ok 90-test_memleak.t .. ok 90-test_overhead.t . ok 90-test_secmem.t ...
Still FAILED build of OpenSSL branch master with options -d --strict-warnings no-des
Platform and configuration command: $ uname -a Linux run 4.15.0-106-generic #107-Ubuntu SMP Thu Jun 4 11:27:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-des Commit log since last time: d00bd4e452 Set mark and pop error in d2i_PrivateKey_ex 13c5ec569e Fix zero-length content verification in S/MIME format 947fb81345 Tests for processing zero-length content in SMIME format 55c61473b5 Correct and simplify use of ERR_clear_error() etc. for loading DSO libs 02a2567173 Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE df38dcfcd5 Fix the decoder start type handling b565a17d9f Add a test for encoding and decoding of parameters files 3861ac3b55 Fix encoding of DHX parameters files db554ae110 Expose PKCS7_get_octet_string and PKCS7_type_is_other b19b983017 Document install_fips in INSTALL.md d3ed80802d providers/build.info: Tag the FIPS module, for the build file 8cab385ec5 descrip.mms.tmpl: Add a target to install the FIPS module config 403a5edcde windows-makefile.tmpl: Add a target to install the FIPS module config a1bfcb15d9 unix-Makefile.tmpl: Add a target to install the FIPS module config 5884b05109 ERR: fix comment typo in err.c bdde5b46c7 ocsp.h: Fix backward compatibility declaration of OCSP_parse_url() 1b4417abb8 apps: remove internal/cryptlib.h include that isn't used 23b2fc0b50 rsa: add ossl_ prefix to internal rsa_ calls. a21db568bf Avoid memory leak of parent on allocation failure for child structure 8ad369171f Use size of target buffer for allocation Build log ended with (last 100 lines): not ok 79 - ir + ignored revocation # -- Could not read private key for CMP client certificate from signer.p12 C050C0BCA17F:error::digital envelope routines:EVP_PBE_CipherInit:unknown cipher:../openssl/crypto/evp/evp_pbe.c:116:DES-EDE3-CBC Unable to load private key for CMP client certificate cmp_main:../openssl/apps/cmp.c:2818:CMP error: cannot set up CMP context # cmp_main:../openssl/apps/cmp.c:2665:CMP info: using OpenSSL configuration file '../Mock/test.cnf' # opt_str:../openssl/apps/cmp.c:2263:CMP warning: argument of -proxy option is empty string, resetting option # warn_cert_msg:../openssl/apps/cmp.c:690:CMP warning: certificate from 'trusted.crt' with subject '/O=openssl_cmp' is not a CA cert ../../../../../no-des/util/wrap.pl ../../../../../no-des/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-des/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd cr -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-des/test-runs/test_cmp_cli/test.certout_cr.pem -out_trusted root.crt => 1 not ok 82 - cr # -- # Failed test 'cr' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. Could not open file or uri for loading CMP client certificate (optionally with chain) from ../../../../../no-des/test-runs/test_cmp_cli/test.certout_newkey.pem C0C0BA4F897F:error::STORE routines:ossl_store_get0_loader_int:unregistered scheme:../openssl/crypto/store/store_register.c:240:scheme=file C0C0BA4F897F:error::system library:file_open:No such file or directory:../openssl/providers/implementations/storemgmt/file_store.c:277:calling stat(../../../../../no-des/test-runs/test_cmp_cli/test.certout_newkey.pem) cmp_main:../openssl/apps/cmp.c:2818:CMP error: cannot set up CMP context # cmp_main:../openssl/apps/cmp.c:2665:CMP info: using OpenSSL configuration file '../Mock/test.cnf' # opt_str:../openssl/apps/cmp.c:2263:CMP warning: argument of -proxy option is empty string, resetting option # setup_client_ctx:../openssl/apps/cmp.c:1881:CMP warning: -subject '/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd/CN=leaf' given, which overrides the subject of '../../../../../no-des/test-runs/test_cmp_cli/test.certout_newkey.pem' in KUR # warn_cert_msg:../openssl/apps/cmp.c:690:CMP warning: certificate from 'trusted.crt' with subject '/O=openssl_cmp' is not a CA cert ../../../../../no-des/util/wrap.pl ../../../../../no-des/apps/openssl cmp -config ../Mock/test.cnf -section 'Mock enrollment' -certout ../../../../../no-des/test-runs/test_cmp_cli/test.cert.pem -proxy '' -no_proxy 127.0.0.1 -cmd kur -newkey new.key -newkeypass 'pass:' -certout ../../../../../no-des/test-runs/test_cmp_cli/test.certout_kur.pem -out_trusted root.crt -oldcert ../../../../../no-des/test-runs/test_cmp_cli/test.certout_newkey.pem -server '127.0.0.1:1700' -cert ../../../../../no-des/test-runs/test_cmp_cli/test.certout_newkey.pem -key new.key -extracerts issuing.crt => 1 not ok 83 - kur explicit options # -- # Failed test 'kur explicit options' # at ../openssl/test/recipes/81-test_cmp_cli.t line 183. Could not open file or uri for loading CMP client
