Skip to content

[ci-scan] Test failure: KmacXof128Tests throw "invalid key length" under libraries-pgo #129939

Description

@github-actions

Build Information

Build: https://dev.azure.com/dnceng-public/public/_build/results?buildId=1484392
Build error leg or test failing: linux-x64 Release - System.Security.Cryptography.Tests

Error Details

Under PGO instrumentation (runtime-coreclr libraries-pgo, def 145), multiple KmacXof128Tests fail on linux-x64 with OpenSslCryptographicException: error:1C800069:Provider routines::invalid key length. The KMAC key passed to OpenSSL is rejected as having invalid length when the code is PGO-optimized, suggesting PGO may corrupt the key data or length passed to the native interop layer.

All KmacXof128 tests in the suite fail with the same OpenSSL error:

System.Security.Cryptography.Tests.KmacXof128Tests.CryptographicException_Instance_OutputSize [FAIL]
      Interop+Crypto+OpenSslCryptographicException : error:1C800069:Provider routines::invalid key length
      at System.Security.Cryptography.ConcurrentSafeKmac..ctor(String algorithmId, ReadOnlySpan`1 key, ReadOnlySpan`1 customizationString, Boolean xof)
      at System.Security.Cryptography.KmacXof128..ctor(ReadOnlySpan`1 key, ReadOnlySpan`1 customizationString)

Error Message

{
  "ErrorMessage": ["KmacXof128", "invalid key length"],
  "ErrorPattern": "",
  "BuildRetry": false,
  "ExcludeConsoleLog": false
}

Impact on platforms

  • runtime-coreclr libraries-pgo (def 145) / linux-x64 Release / Helix: Ubuntu.2204.Amd64.Open

First build it occurred

Duplicate search

No existing KBE matches this signature.


Filed by ci-failure-scan (detection only). ci-failure-fix walks open [ci-scan] KBEs and either opens a small fix PR or comments here to loop in owners — it never disables the test.

Note

🔒 Integrity filter blocked 4 items

The following items were blocked because they don't meet the GitHub integrity level.

  • #129832 search_issues: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".
  • #129876 search_issues: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".
  • #114222 search_issues: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".
  • #117138 search_issues: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

Generated by CI Outer-Loop Failure Scanner · ● 101.8M ·

Report

Build Repository Test Pull Request
1485769 dotnet/runtime System.Security.Cryptography.Tests.KmacXof256Tests.GetHashAndReset_Minimal_Span #129975

Summary

24-Hour Hit Count 7-Day Hit Count 1-Month Count
0 1 1

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions