-
Notifications
You must be signed in to change notification settings - Fork 29.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
parallel.test-crypto-rsa-dsa fails with Missing expected exception
#52537
Comments
The stack is pointing at the test added in 54cd268 for https://hackerone.com/reports/2269177. IIRC ubi81_sharedlibs_openssl111fips_x64 builds against the system OpenSSL (i.e. the one in UBI 8). The container was recently redeployed -- I'm wondering if that has picked up a patched system OpenSSL that the test case doesn't pass with. cc @mhdawson |
The code does a runtime check for whether the OpenSSL implementation supports implicit rejection and conditionally throws an exception based on the check: node/src/crypto/crypto_cipher.cc Lines 1081 to 1095 in f098b7a
However the test looks to be always expecting the exception. It may not be easy for the test to do the feature detection without native code. |
@mhdawson Thoughts? Perhaps as a short term fix we can skip the test if built with a dynamically linked OpenSSL? I presume we'd expect to have to update the test in the future when we update the statically linked OpenSSL to a version that supports the implicit rejection. |
This is a similar problem to #52196 |
This comment was marked as outdated.
This comment was marked as outdated.
I also rebuilt test-digitalocean-ubi81_container-x64-1 (and all other containers on that host) today. |
I had a quick discussion with @mhdawson who is going to look at if there's a way for the test to detect if the underlying OpenSSL implementation supports implicit rejections. As a temporary fix to unblock the CI, I've opened #52542 to skip that part of the test if Node.js has been dynamically linked against OpenSSL. |
As a temporary measure to unblock the CI, skip the RSA implicit rejection test when Node.js is built against a dynamically linked OpenSSL. PR-URL: #52542 Refs: #52537 Refs: nodejs-private/node-private#525 Refs: https://hackerone.com/reports/2269177 Reviewed-By: Michaël Zasso <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]> Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Michael Dawson <[email protected]>
As a temporary measure to unblock the CI, skip the RSA implicit rejection test when Node.js is built against a dynamically linked OpenSSL. PR-URL: #52542 Refs: #52537 Refs: nodejs-private/node-private#525 Refs: https://hackerone.com/reports/2269177 Reviewed-By: Michaël Zasso <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]> Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Michael Dawson <[email protected]>
As a temporary measure to unblock the CI, skip the RSA implicit rejection test when Node.js is built against a dynamically linked OpenSSL. PR-URL: #52542 Refs: #52537 Refs: nodejs-private/node-private#525 Refs: https://hackerone.com/reports/2269177 Reviewed-By: Michaël Zasso <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]> Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Michael Dawson <[email protected]>
As a temporary measure to unblock the CI, skip the RSA implicit rejection test when Node.js is built against a dynamically linked OpenSSL. PR-URL: #52542 Refs: #52537 Refs: nodejs-private/node-private#525 Refs: https://hackerone.com/reports/2269177 Reviewed-By: Michaël Zasso <[email protected]> Reviewed-By: Antoine du Hamel <[email protected]> Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: Michael Dawson <[email protected]>
Fixes: nodejs#52537 Signed-off-by: Michael Dawson <[email protected]>
Fixes: nodejs#52537 Signed-off-by: Michael Dawson <[email protected]> PR-URL: nodejs#52781 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]>
Fixes: #52537 Signed-off-by: Michael Dawson <[email protected]> PR-URL: #52781 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]>
Fixes: #52537 Signed-off-by: Michael Dawson <[email protected]> PR-URL: #52781 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]>
Fixes: nodejs#52537 Signed-off-by: Michael Dawson <[email protected]> PR-URL: nodejs#52781 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]>
Fixes: nodejs#52537 Signed-off-by: Michael Dawson <[email protected]> PR-URL: nodejs#52781 Reviewed-By: Luigi Pinca <[email protected]> Reviewed-By: James M Snell <[email protected]>
Test
test-crypto-rsa-dsa
Platform
Linux x64
Console output
Build links
Additional information
Looks like this test is constantly failing on test-ibm-ubi81_container-x64-1 since yesterday.
The text was updated successfully, but these errors were encountered: