From patchwork Mon Oct 30 17:13:15 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Frank Lichtenheld X-Patchwork-Id: 3411 Return-Path: Delivered-To: patchwork@openvpn.net Received: by 2002:a05:693c:240a:b0:f2:62eb:61c1 with SMTP id me10csp2475965dyc; Mon, 30 Oct 2023 10:14:29 -0700 (PDT) X-Google-Smtp-Source: AGHT+IGbKRwdpfGudOfwFgGYuKKH0lCxPJPJuFvTuEIKy17JkaYgBxBu8YJ+i2rLxNNb0L72T4kd X-Received: by 2002:a05:6a20:2d22:b0:163:c167:964a with SMTP id g34-20020a056a202d2200b00163c167964amr12708974pzl.1.1698686069695; Mon, 30 Oct 2023 10:14:29 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1698686069; cv=none; d=google.com; s=arc-20160816; b=MA2mS22i8PPmeofi6YWbJntGzWE9AnRrhCjwxcfSSFrPxGeMRzyAxiSVB+TnmLlO4t 6GN6V9L4DVus87Y/Nv15R7u3WdMIP7pO2/GuZOaCzDKY/q9edRQYPm+O2CHOgaIvQQyy /2sR9r9+XV/+071i5Mh6P9rk1Fx96d8oBAZ/XdJ9yQGQbW/rQfShIfPvFPk6C6MdP5Ix ygJomudkzVNAyS6GQt22rN0HAi3yqkrfJ0i2xu9jZ8mcenMIM01EkPh5lfeLIt3EE0OF B4zPnVPVtR4A9gy03C2nZFeGRHb5zdh5kxhtS+DbaJmAUhV2YovUnd9ZnFS9ck21XcU6 scWw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:content-transfer-encoding:list-subscribe:list-help :list-post:list-archive:list-unsubscribe:list-id:precedence:subject :mime-version:message-id:date:to:from:dkim-signature:dkim-signature :dkim-signature; bh=CNHMT2UXnHBa4rWFMZ7gX8AUnG6o5xuZhedK19TfSAs=; fh=4NbAC/LsuMLI0S0hprUlLSLCiHwg6SCAifhH718Jh0Q=; b=j8j1rgr9a7e5odQmnJsoCm5zPd66RJqcgSMh63WJj0L74h1UFGPnVdCMLJP2lP91sz lwTZT1fSeWPoazcwO6NgTrtLDsgvv33b4glOEJz0wpNhidOKd6JnureITgaF0xghCh9X x9EbpG7fNaXOuLmKhuvnevWKMDT16yCrS2yx6CMaWoa0A5Xq1BHqQdgFVUBra7nXsYsp 8r5+wRL8vKsRvsEQfglgUomtjvPCPYKAdNZhbNAT2dAtuNfEhGtK0yE2QT4OZv948eAM wjMJsLr/yYVXQzgpM0XQObhPgqKyjsqRzieiucP5UiJF4u3pEwLNiqsFTqM4xY4jtl1I ny6g== ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=W5PM0bgC; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b=KPVYTAiR; dkim=neutral (body hash did not verify) header.i=@lichtenheld.com header.s=MBO0001 header.b=yx8a5NiV; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net Received: from lists.sourceforge.net (lists.sourceforge.net. [216.105.38.7]) by mx.google.com with ESMTPS id o12-20020a056a0015cc00b006b5d17f2a1csi5333761pfu.45.2023.10.30.10.14.29 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 30 Oct 2023 10:14:29 -0700 (PDT) Received-SPF: pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) client-ip=216.105.38.7; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=W5PM0bgC; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b=KPVYTAiR; dkim=neutral (body hash did not verify) header.i=@lichtenheld.com header.s=MBO0001 header.b=yx8a5NiV; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net Received: from [127.0.0.1] (helo=sfs-ml-4.v29.lw.sourceforge.com) by sfs-ml-4.v29.lw.sourceforge.com with esmtp (Exim 4.95) (envelope-from ) id 1qxVpc-0008PN-53; Mon, 30 Oct 2023 17:13:40 +0000 Received: from [172.30.20.202] (helo=mx.sourceforge.net) by sfs-ml-4.v29.lw.sourceforge.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95) (envelope-from ) id 1qxVpV-0008PE-4g for openvpn-devel@lists.sourceforge.net; Mon, 30 Oct 2023 17:13:33 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sourceforge.net; s=x; h=Content-Transfer-Encoding:MIME-Version:Message-Id: Date:Subject:To:From:Sender:Reply-To:Cc:Content-Type:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=7rJBbNL2qRkgAPlk17sAxIqoMTRNoTzQEuRJavOAuiY=; b=W5PM0bgCXPvnageV+eYw7vtBIq wK1pr8Z6dpyRE8CU2EYiG7j05qlhDX9KHW5W1Cs0SxHhwSeRGR6LR5RKNyj3o8OEF1ML316Gc86Vp Mg2/2TgAdxfVjT/tcbAFj3nrXt+/Kf5W2zXSbCsIhxPLqwqiHtYIjF1vhQS+oyrr4Yco=; DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x ; h=Content-Transfer-Encoding:MIME-Version:Message-Id:Date:Subject:To:From: Sender:Reply-To:Cc:Content-Type:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To: References:List-Id:List-Help:List-Unsubscribe:List-Subscribe:List-Post: List-Owner:List-Archive; bh=7rJBbNL2qRkgAPlk17sAxIqoMTRNoTzQEuRJavOAuiY=; b=K PVYTAiRAXQtb+q9YVa5GUshg5pFBoKy90yA+TKZHIaj1lXS++PqDNDF6eAtO85ElqCDQpbiR6UVBU sATAflvAMyICZYq3c4K6KBI/ozoCb3HoNLful8ObB2pYGrI/eiwQ3YWHBeO6wsACnic/pVJhI+HcU u71v4vxp746GtoD0=; Received: from mout-p-201.mailbox.org ([80.241.56.171]) by sfi-mx-1.v28.lw.sourceforge.com with esmtps (TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.95) id 1qxVpQ-00Etfv-C6 for openvpn-devel@lists.sourceforge.net; Mon, 30 Oct 2023 17:13:33 +0000 Received: from smtp102.mailbox.org (smtp102.mailbox.org [IPv6:2001:67c:2050:b231:465::102]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mout-p-201.mailbox.org (Postfix) with ESMTPS id 4SK0GN17gFz9scV for ; Mon, 30 Oct 2023 18:13:16 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lichtenheld.com; s=MBO0001; t=1698685996; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=7rJBbNL2qRkgAPlk17sAxIqoMTRNoTzQEuRJavOAuiY=; b=yx8a5NiVecYAhd68Enc2/eLhOeV/ZFVdFOLIQNfn8ValWGoqn6IMSBWkrA4n+Bu3oV5ZCU vFhTp6s/QHJpTmvZguwUysWfY6L5K9Me46t4kVC5vpaUoNO8qx/dbZrQBRWRCGbDhkCvQR VsOeqVPXHJ32nTeHG642wR2OkIJCohAZLKdHxOOUQKG4q42Rn9wusqdbHBqb25yooK9fBO qYMOyzOY1jK7CX5ALhbDFHjjzyU4g7W/ajIEaPzC27ivw1n5JFD5/UYObfGVxz+oASRqjk mXum3ve43PgMoUwqqErBaNYAIBNFdDzx3Za2M+aiDtrkweXjY1H82S3n2NSqfw== From: Frank Lichtenheld To: openvpn-devel@lists.sourceforge.net Date: Mon, 30 Oct 2023 18:13:15 +0100 Message-Id: <20231030171315.68933-1-frank@lichtenheld.com> MIME-Version: 1.0 X-Rspamd-Queue-Id: 4SK0GN17gFz9scV X-Spam-Score: -0.9 (/) X-Spam-Report: Spam detection software, running on the system "util-spamd-2.v13.lw.sourceforge.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Change-Id: I9edb3e336bb9efe6f555fa6b323a4a0a944f683d Signed-off-by: Frank Lichtenheld --- .github/workflows/build.yaml | 51 ++++++++++++++++++++++++++++++++++++ 1 file changed, [...] Content analysis details: (-0.9 points, 6.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at https://www.dnswl.org/, low trust [80.241.56.171 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain X-Headers-End: 1qxVpQ-00Etfv-C6 Subject: [Openvpn-devel] [PATCH] Add mbedtls3 GHA build X-BeenThere: openvpn-devel@lists.sourceforge.net X-Mailman-Version: 2.1.21 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox X-GMAIL-THRID: =?utf-8?q?1781201443984275154?= X-GMAIL-MSGID: =?utf-8?q?1781201443984275154?= Change-Id: I9edb3e336bb9efe6f555fa6b323a4a0a944f683d Signed-off-by: Frank Lichtenheld Acked-by: Gert Doering --- .github/workflows/build.yaml | 51 ++++++++++++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 60d3da5e..cd72f3db 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -360,3 +360,54 @@ jobs: run: make -j3 - name: make check run: make check + + mbedtls3: + strategy: + fail-fast: false + matrix: + os: [ubuntu-22.04] + ssllib: [mbedtls3] + build: [ normal, asan ] + include: + - build: asan + cflags: "-fsanitize=address -fno-sanitize-recover=all -fno-optimize-sibling-calls -fsanitize-address-use-after-scope -fno-omit-frame-pointer -g -O1" + ldflags: -fsanitize=address -fno-sanitize-recover=all + cc: clang + - build: normal + cflags: "-O2 -g" + ldflags: "" + cc: gcc + + name: "${{matrix.cc}} ${{matrix.build}} - ${{matrix.os}} - ${{matrix.ssllib}}" + runs-on: ${{matrix.os}} + env: + CFLAGS: ${{ matrix.cflags }} + LDFLAGS: ${{ matrix.ldflags }} + CC: ${{matrix.cc}} + UBSAN_OPTIONS: print_stacktrace=1 + + steps: + - name: Install dependencies + run: sudo apt update && sudo apt install -y liblzo2-dev libpam0g-dev liblz4-dev linux-libc-dev man2html clang libcmocka-dev python3-docutils python3-jinja2 python3-jsonschema libtool automake autoconf pkg-config libcap-ng-dev libnl-genl-3-dev + - name: "mbedtls: checkout" + uses: actions/checkout@v3 + with: + path: mbedtls + repository: Mbed-TLS/mbedtls + ref: v3.5.0 + - name: "mbedtls: make no_test" + run: make -j3 no_test SHARED=1 + working-directory: mbedtls + - name: "mbedtls: make install" + run: sudo make install DESTDIR=/usr + working-directory: mbedtls + - name: Checkout OpenVPN + uses: actions/checkout@v3 + - name: autoconf + run: autoreconf -fvi + - name: configure + run: ./configure --with-crypto-library=mbedtls + - name: make all + run: make -j3 + - name: make check + run: make check