Skip to content

GitLab

  • Menu
Projects Groups Snippets
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
  • BIND BIND
  • Project information
    • Project information
    • Activity
    • Labels
    • Planning hierarchy
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 527
    • Issues 527
    • List
    • Boards
    • Service Desk
    • Milestones
  • Merge requests 101
    • Merge requests 101
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Monitor
    • Monitor
    • Incidents
  • Packages & Registries
    • Packages & Registries
    • Container Registry
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • ISC Open Source Projects
  • BINDBIND
  • Issues
  • #579

Closed
Open
Created Oct 04, 2018 by Michał Kępień@michalOwner

EdDSA support does not work with the final version of OpenSSL 1.1.1

The eddsa system test consistently fails on any platform with OpenSSL 1.1.1 installed:

S:eddsa:Thu Oct  4 11:24:57 CEST 2018
T:eddsa:1:A
A:eddsa:System test eddsa
I:eddsa:PORTRANGE:5300 - 5399
dnssec-signzone: warning: EVP_DigestSignInit failed (failure)
dnssec-signzone: fatal: dnskey './ED25519/30149' failed to sign data: failure
dnssec-signzone: warning: EVP_DigestSignInit failed (failure)
dnssec-signzone: fatal: dnskey 'example.com/ED25519/3613' failed to sign data: failure
I:checking that positive validation works (0)
I:failed
I:checking that test vectors match (1)
grep: ns2/example.com.db.signed: No such file or directory
grep: ns2/example.com.db.signed: No such file or directory
grep: ns2/example.com.db.signed: No such file or directory
grep: ns2/example.com.db.signed: No such file or directory
I:failed
I:exit status: 2
R:eddsa:FAIL
E:eddsa:Thu Oct  4 11:24:59 CEST 2018

Since this includes current Debian sid, the eddsa system test should first be disabled so that CI pipelines can pass and then BIND's EdDSA code should be fixed to work with the final version of OpenSSL 1.1.1.

Assignee
Assign to
Time tracking