From patchwork Fri Jan 31 20:57:27 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Shubham Mittal X-Patchwork-Id: 4114 Return-Path: Delivered-To: patchwork@openvpn.net Received: by 2002:a05:7000:c520:b0:5e7:b9eb:58e8 with SMTP id jx32csp920415mab; Fri, 31 Jan 2025 12:57:44 -0800 (PST) X-Forwarded-Encrypted: i=2; AJvYcCU8w2nKUm7FyALjuRcxI+CbWIN9fwXBYdTzWSNmJZvBgpcJCmeY4Jr4g370qvZg1anVyeRvzBwEXIA=@openvpn.net X-Google-Smtp-Source: AGHT+IElywDp3eu0mhGAf/ltA2GpuW8p5FXbD9TYgG2qDZZGK2M+3SLBq3LXdnqNeREEpMTWMB9a X-Received: by 2002:a05:6820:1997:b0:5fa:2139:3f2 with SMTP id 006d021491bc7-5fc0025a864mr9618805eaf.1.1738357064268; Fri, 31 Jan 2025 12:57:44 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1738357064; cv=none; d=google.com; s=arc-20240605; b=d3zYf45XQnJvxK3xlkhgguStVZrQdeg8ub/nEok3b9ns63ETEyfLFfr6JpfmSIcznk Nt9xVjCJDAAXVfqG4GFj+Tq3fwVTz1WgRRqK5W9bj2XBYAqboMJflJrkLiURnr4EVPiQ gR3HI3JtvoE69s1xi3kYjKZN8YypbW3oc9pFZGVcwuhsia/5U8CScgIYNkENZ2ZZiuiq 2NEsyUFEl2zuAI1sa/Ikt5BUb5z9g9GZRGBLkxo/lVyvYRX6Hp7V8oJvby1Nvw2NIXq+ h8ReblOtxxts/fMv/2TnXZ2erTczy69/XVuknWKia/opJ9PIJiKiMIDA/D9JlvzYK0Kh r63A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=errors-to:content-transfer-encoding:reply-to:from:list-subscribe :list-help:list-post:list-archive:list-unsubscribe:list-id :precedence:subject:mime-version:references:in-reply-to:message-id :date:to:dkim-signature:dkim-signature:dkim-signature; bh=vza4JKPW3Tt26Iu2zeU1i79uwcAXdoqW0adiQGcLKJ8=; fh=M0IgS9BLcbDnxRvvrgNqqeQSdb7j85MQs+k/Km/mzfQ=; b=GpIzClwUUl+G20YI1h+lyQTv3oUdMqbSe07tyHUJIsbgA2qBHePz5EeBqEpa2tdH6F 4aHTb8neU/UJMkp8GUO5HbZMRtIsiMWv+q75Jgjx9WfKS7qZq6WkS49zPX3UH7CceHt0 SR4FRqORVTxb30MG000RFnrnNn2cf7eocZXRyIcWGNEvy7CvdlPmAihwtVtROlEtNJxA 5hVLqtigF7pwCy1oMrvYQx95R6EZ4oz42TV4X02/KFndP2Z8UFomHSDeAQbD8y2xz7gK gdBWbq15T78Uv3Z/QGFpr+EUoitLLTOEI4Hf17pek+BQ3U3qyC/eHksMWACOzjs+A8wj LClg==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=OPCpCExW; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b="PGHxHl/6"; dkim=neutral (body hash did not verify) header.i=@amazon.com header.s=amazon201209 header.b=jwrbi6G8; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net; dmarc=pass (p=QUARANTINE sp=NONE dis=NONE) header.from=sourceforge.net Received: from lists.sourceforge.net (lists.sourceforge.net. [216.105.38.7]) by mx.google.com with ESMTPS id 006d021491bc7-5fc104e46ffsi4412595eaf.37.2025.01.31.12.57.43 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 31 Jan 2025 12:57:44 -0800 (PST) Received-SPF: pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) client-ip=216.105.38.7; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=OPCpCExW; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b="PGHxHl/6"; dkim=neutral (body hash did not verify) header.i=@amazon.com header.s=amazon201209 header.b=jwrbi6G8; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net; dmarc=pass (p=QUARANTINE sp=NONE dis=NONE) header.from=sourceforge.net Received: from [127.0.0.1] (helo=sfs-ml-1.v29.lw.sourceforge.com) by sfs-ml-1.v29.lw.sourceforge.com with esmtp (Exim 4.95) (envelope-from ) id 1tdy53-0008Vh-Rg; Fri, 31 Jan 2025 20:57:38 +0000 Received: from [172.30.29.66] (helo=mx.sourceforge.net) by sfs-ml-1.v29.lw.sourceforge.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95) (envelope-from ) id 1tdy52-0008Vb-Jj for openvpn-devel@lists.sourceforge.net; Fri, 31 Jan 2025 20:57:37 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sourceforge.net; s=x; h=Content-Type:Content-Transfer-Encoding:MIME-Version :References:In-Reply-To:Message-ID:Date:Subject:CC:To:From:Sender:Reply-To: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=3hACpFrnlHT1HLqBdm+UU71pEEsf69WhSWiX+A2bC50=; b=OPCpCExWxYkA4gg34mNkZHIGRv PFrzrIuFBF9CMYIyeodqpgy+elZco4Tc07kc+Sv8RskVY4Ei9tWVo6fAk1cP6wxNbzBZYGzq29hom dzHoC45Iv4me6omkgR/xES9egaAQ/yeRS3Y5vV1yBlfJ+Ln1fosx5Hpqa0+wP1JRbEHY=; DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x ; h=Content-Type:Content-Transfer-Encoding:MIME-Version:References: In-Reply-To:Message-ID:Date:Subject:CC:To:From:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=3hACpFrnlHT1HLqBdm+UU71pEEsf69WhSWiX+A2bC50=; b=PGHxHl/6Zrfo2SxqQrYTzvKpe6 Ptme3WyPU+MvjxD/ItZN3FJfpT6TomRo2tfz0sRE5W0HAH1zNFJ0addCtFDvBVJcMvjD2e21sXdHw q5mRJ2OuyBxv3qHL//qUXBXALpFUvMU7x6TNCISiy9woNSsl4NF/rAHyzJcS2QzWsu5M=; Received: from smtp-fw-80007.amazon.com ([99.78.197.218]) by sfi-mx-2.v28.lw.sourceforge.com with esmtps (TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.95) id 1tdy52-0006Hw-Hk for openvpn-devel@lists.sourceforge.net; Fri, 31 Jan 2025 20:57:37 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209; t=1738357057; x=1769893057; h=from:to:cc:subject:date:message-id:in-reply-to: references:mime-version:content-transfer-encoding; bh=3hACpFrnlHT1HLqBdm+UU71pEEsf69WhSWiX+A2bC50=; b=jwrbi6G8TztqsMjL3gIhHPCbGuLEBvHmN0rF2AGIPCxMCgALjn/rsXLX p1YisOay/pH7JJpFpDiOkGggLApX39puksB+vKLefvUP92Y6t0SBGnMd2 zGMJJV5vuJKlGmpBVL84TWpWAKMLqOAjP+9zwRL10eS+3C8uZbTzutWGc 8=; X-IronPort-AV: E=Sophos;i="6.13,249,1732579200"; d="scan'208";a="373539556" Received: from pdx4-co-svc-p1-lb2-vlan2.amazon.com (HELO smtpout.prod.us-west-2.prod.farcaster.email.amazon.dev) ([10.25.36.210]) by smtp-border-fw-80007.pdx80.corp.amazon.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 Jan 2025 20:57:31 +0000 Received: from EX19MTAUWC001.ant.amazon.com [10.0.21.151:3752] by smtpin.naws.us-west-2.prod.farcaster.email.amazon.dev [10.0.61.44:2525] with esmtp (Farcaster) id 703a6f1e-b226-432a-b5ee-5f783e3d16e3; Fri, 31 Jan 2025 20:57:30 +0000 (UTC) X-Farcaster-Flow-ID: 703a6f1e-b226-432a-b5ee-5f783e3d16e3 Received: from EX19D019UWA002.ant.amazon.com (10.13.139.58) by EX19MTAUWC001.ant.amazon.com (10.250.64.174) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.39; Fri, 31 Jan 2025 20:57:30 +0000 Received: from EX19MTAUEB001.ant.amazon.com (10.252.135.35) by EX19D019UWA002.ant.amazon.com (10.13.139.58) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.39; Fri, 31 Jan 2025 20:57:30 +0000 Received: from email-imr-corp-prod-iad-all-1a-47ca2651.us-east-1.amazon.com (10.43.8.2) by mail-relay.amazon.com (10.252.135.35) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1258.39 via Frontend Transport; Fri, 31 Jan 2025 20:57:30 +0000 Received: from 7cf34dea8443.amazon.com (unknown [10.88.153.25]) by email-imr-corp-prod-iad-all-1a-47ca2651.us-east-1.amazon.com (Postfix) with ESMTP id 9ECA6421AB; Fri, 31 Jan 2025 20:57:29 +0000 (UTC) To: Date: Fri, 31 Jan 2025 12:57:27 -0800 Message-ID: <20250131205727.60957-1-smittals@amazon.com> X-Mailer: git-send-email 2.39.5 (Apple Git-154) In-Reply-To: <20250127235413.1925-1-smittals@amazon.com> References: <20250127235413.1925-1-smittals@amazon.com> MIME-Version: 1.0 X-Spam-Score: -3.8 (---) X-Spam-Report: Spam detection software, running on the system "util-spamd-1.v13.lw.sourceforge.com", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: URL: https://github.com/OpenVPN/openvpn/pull/673 Acked-by: Arne Schwabe Signed-off-by: Shubham Mittal --- .github/workflows/build.yaml | 62 +++++++++++++++++++ [...] Content analysis details: (-3.8 points, 6.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [99.78.197.218 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [99.78.197.218 listed in bl.score.senderscore.com] 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.0 SPF_NONE SPF: sender does not publish an SPF Record -2.3 RCVD_IN_DNSWL_MED RBL: Sender listed at https://www.dnswl.org/, medium trust [99.78.197.218 listed in list.dnswl.org] -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines -1.3 DKIMWL_WL_HIGH DKIMwl.org - High trust sender X-Headers-End: 1tdy52-0006Hw-Hk Subject: [Openvpn-devel] [PATCH] Adding AWS-LC to the OpenVPN CI X-BeenThere: openvpn-devel@lists.sourceforge.net X-Mailman-Version: 2.1.21 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-Patchwork-Original-From: Shubham Mittal via Openvpn-devel From: Shubham Mittal Reply-To: Shubham Mittal Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox X-GMAIL-THRID: =?utf-8?q?1822449245671597858?= X-GMAIL-MSGID: =?utf-8?q?1822799497030573703?= URL: https://github.com/OpenVPN/openvpn/pull/673 Acked-by: Arne Schwabe Signed-off-by: Shubham Mittal Acked-by: Arne Schwabe --- .github/workflows/build.yaml | 62 ++++++++++++++++++++++++++++++++++++ 1 file changed, 62 insertions(+) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 90d52023..88ec513b 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -424,3 +424,65 @@ jobs: run: echo 'RUN_SUDO="sudo -E"' >tests/t_server_null.rc - name: make check run: make -j3 check VERBOSE=1 + + aws-lc: + strategy: + fail-fast: false + matrix: + os: [ubuntu-24.04] + ssllib: [ awslc ] + build: [ normal, asan ] + include: + - build: asan + cflags: "-fsanitize=address -fno-sanitize-recover=all -fno-optimize-sibling-calls -fsanitize-address-use-after-scope -fno-omit-frame-pointer -g -O1" + ldflags: -fsanitize=address -fno-sanitize-recover=all + cc: clang + cxx: clang++ + - build: normal + cflags: "-O2 -g" + ldflags: "" + cc: gcc + cxx: c++ + + name: "${{matrix.cc}} ${{matrix.build}} - ${{matrix.os}} - ${{matrix.ssllib}}" + runs-on: ${{matrix.os}} + env: + CFLAGS: ${{ matrix.cflags }} + LDFLAGS: ${{ matrix.ldflags }} + CC: ${{matrix.cc}} + CXX: ${{matrix.cxx}} + UBSAN_OPTIONS: print_stacktrace=1 + AWS_LC_INSTALL: ${{ github.workspace }}/aws-lc/aws-lc-install + + steps: + - name: Install dependencies + run: sudo apt update && sudo apt install -y cmake gcc ninja-build golang make liblzo2-dev libpam0g-dev liblz4-dev linux-libc-dev man2html clang libcmocka-dev python3-docutils python3-jinja2 python3-jsonschema libtool automake autoconf pkg-config libcap-ng-dev libnl-genl-3-dev + - name: "AWS-LC: checkout" + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + with: + path: aws-lc + repository: aws/aws-lc + ref: v1.42.0 + - name: "AWS-LC: build" + run: | + mkdir build + cd build + cmake -GNinja -DCMAKE_BUILD_TYPE=Release -DCMAKE_INSTALL_PREFIX="${{ env.AWS_LC_INSTALL }}" -DBUILD_SHARED_LIBS=1 ../ + ninja install + working-directory: aws-lc + - name: Checkout OpenVPN + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + - name: autoconf + run: autoreconf -fvi + - name: configure with AWS-LC + run: | + OPENSSL_CFLAGS="-I/${{ env.AWS_LC_INSTALL }}/include" \ + OPENSSL_LIBS="-L/${{ env.AWS_LC_INSTALL }}/lib -lssl -lcrypto" \ + LDFLAGS="-Wl,-rpath=/${{ env.AWS_LC_INSTALL }}/lib" \ + ./configure --with-crypto-library=openssl + - name: make all + run: make -j3 + - name: configure checks + run: echo 'RUN_SUDO="sudo -E"' >tests/t_server_null.rc + - name: make check + run: make -j3 check VERBOSE=1 \ No newline at end of file