ssl-opt.sh requirement checker #4767
Draft
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
gilles-peskine-arm
added
needs-work
DO-NOT-MERGE
component-tls
component-test
Patch ssl-opt.sh to make it just print information about each run_test call and the applicable requires_xxx calls. Analyze the resulting information to detect missing or spurious requirements. This commit analyzes: * requires_config_enabled for MBEDTLS_SSL_DTLS_CONNECTION_ID, MBEDTLS_SSL_CONTEXT_SERIALIZATION and MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK. The analysis matches the script. * requires_max_content_len. The analysis has some false positives. This is a work in progress, fragile and not always well documented. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
gilles-peskine-arm
force-pushed
the
check-ssl-opt-initial
branch
from
a0c54c3
to
7debfcb
Compare
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
tom-daubney-arm
added
the
historical-reviewed
|
As part of our review of historical PRs we have made the decision to convert older PRs that have not been updated in 3 months into drafts until they are worked on again. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
When reviewing #4695, I started to write increasingly complex perl one-long-liners to check that the new
requires_xxxcalls matched the needs. Eventually I decided that this was getting too complex for one-liners, so here's a reasonably well-structured script that does some analysis ofrequires_xxxcalls vsrun_testparameters.This script has a framework that can be extended easily, but currently it only checks a few easy-to-identify boolean options and
requires_max_content_len(with false positives).Typical usage (from a worktree with the
ssl-opt.shyou want to check — note that the script defaults to checking its own worktree, not the worktree of the current directory):This is nowhere near production ready and I currently have no plans to do further work except to add further ad hoc checks or improve the documentation (I'll try to do that while it's still reasonably fresh in my mind). I think that rather than improve this script, we can improve the logic inside
ssl-opt.shitself to reduce the number of ad hoc requirements. There's already logic to analyzeciphersuite=on the command line, and even with the limitations of shell scripting, it would be easy to analyze several other options.The output as of a0c54c3 is
and I am satisfied that these are false positives due to limitations of the analysis in this script (it doesn't understand the diversity of requirements related to mtu values, and it doesn't figure out the “factored out”
requires_max_content_lencall for the "Handshake memory usage" scripts).