On Tue, 2020-06-23 at 21:43 +0500, Илья Шипицин wrote:
> as far as I understand, openssl-1.0.2 does not support engines ?
No, it does. Engines were a pre 0.9.8 thing. I support openssl in my
builds for the TPM engine down to 1.0.1
However, the failure:
> Key mismatch not detected
>
> FAIL: check_engine_keys.sh
>
> ====================================================
>
> 1 of 1 test failed
>
> Please report to openvpn-us...@lists.sourceforge.net
>
> ====================================================
Is because an expected message isn't found in the output. I think it's
this:
# first off check we died because of a key mismatch. If this doesn't
# pass, suspect openssl of returning different messages and update the
# test accordingly
grep -q 'X509_check_private_key:key values mismatch' log.txt || { echo "Key
mismatch not detected"; exit 1; }
If I could get hold of log.txt that would confirm that the test is
outputting something slightly different from what's expected.
I did run this test on openssl-1.0.2j (I keep a copy of
openSUSE_Leap_42.3 around precisely for this openssl testing) but it
ran just fine. so there's clearly something different about the 1.0.2u
you're using (might be a locale issue?).
James
_______________________________________________
Openvpn-devel mailing list
Openvpn-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
