2016-10-04 18:14:38 +02:00
|
|
|
#! /usr/bin/env sh
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2016-03-08 00:22:10 +01:00
|
|
|
# all.sh
|
|
|
|
|
#
|
2020-08-07 13:07:28 +02:00
|
|
|
# Copyright The Mbed TLS Contributors
|
2020-05-26 01:54:15 +02:00
|
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
|
|
|
#
|
|
|
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
|
|
|
# not use this file except in compliance with the License.
|
|
|
|
|
# You may obtain a copy of the License at
|
|
|
|
|
#
|
|
|
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
#
|
|
|
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
|
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
# See the License for the specific language governing permissions and
|
|
|
|
|
# limitations under the License.
|
2017-12-21 15:59:21 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
################################################################
|
|
|
|
|
#### Documentation
|
|
|
|
|
################################################################
|
|
|
|
|
|
2016-03-08 00:22:10 +01:00
|
|
|
# Purpose
|
2017-12-21 15:59:21 +01:00
|
|
|
# -------
|
2016-03-08 00:22:10 +01:00
|
|
|
#
|
2016-04-16 22:54:39 +02:00
|
|
|
# To run all tests possible or available on the platform.
|
2014-03-19 18:29:01 +01:00
|
|
|
#
|
2017-12-21 15:59:21 +01:00
|
|
|
# Notes for users
|
|
|
|
|
# ---------------
|
|
|
|
|
#
|
2016-04-16 22:54:39 +02:00
|
|
|
# Warning: the test is destructive. It includes various build modes and
|
|
|
|
|
# configurations, and can and will arbitrarily change the current CMake
|
2017-12-21 15:59:21 +01:00
|
|
|
# configuration. The following files must be committed into git:
|
|
|
|
|
# * include/mbedtls/config.h
|
2020-03-04 20:46:15 +01:00
|
|
|
# * Makefile, library/Makefile, programs/Makefile, tests/Makefile,
|
|
|
|
|
# programs/fuzz/Makefile
|
2017-12-21 15:59:21 +01:00
|
|
|
# After running this script, the CMake cache will be lost and CMake
|
|
|
|
|
# will no longer be initialised.
|
|
|
|
|
#
|
|
|
|
|
# The script assumes the presence of a number of tools:
|
|
|
|
|
# * Basic Unix tools (Windows users note: a Unix-style find must be before
|
|
|
|
|
# the Windows find in the PATH)
|
|
|
|
|
# * Perl
|
|
|
|
|
# * GNU Make
|
|
|
|
|
# * CMake
|
|
|
|
|
# * GCC and Clang (recent enough for using ASan with gcc and MemSan with clang, or valgrind)
|
2018-06-28 10:41:50 +02:00
|
|
|
# * G++
|
2017-12-21 15:59:21 +01:00
|
|
|
# * arm-gcc and mingw-gcc
|
|
|
|
|
# * ArmCC 5 and ArmCC 6, unless invoked with --no-armcc
|
|
|
|
|
# * OpenSSL and GnuTLS command line tools, recent enough for the
|
2021-04-15 13:28:52 +02:00
|
|
|
# interoperability tests. If they don't support old features which we want
|
|
|
|
|
# to test, then a legacy version of these tools must be present as well
|
|
|
|
|
# (search for LEGACY below).
|
2017-12-21 15:59:21 +01:00
|
|
|
# See the invocation of check_tools below for details.
|
|
|
|
|
#
|
|
|
|
|
# This script must be invoked from the toplevel directory of a git
|
|
|
|
|
# working copy of Mbed TLS.
|
|
|
|
|
#
|
|
|
|
|
# Note that the output is not saved. You may want to run
|
|
|
|
|
# script -c tests/scripts/all.sh
|
|
|
|
|
# or
|
|
|
|
|
# tests/scripts/all.sh >all.log 2>&1
|
2014-03-27 14:44:04 +01:00
|
|
|
#
|
2017-12-21 15:59:21 +01:00
|
|
|
# Notes for maintainers
|
|
|
|
|
# ---------------------
|
2014-03-27 14:44:04 +01:00
|
|
|
#
|
2018-11-27 15:58:47 +01:00
|
|
|
# The bulk of the code is organized into functions that follow one of the
|
|
|
|
|
# following naming conventions:
|
|
|
|
|
# * pre_XXX: things to do before running the tests, in order.
|
|
|
|
|
# * component_XXX: independent components. They can be run in any order.
|
2019-01-09 22:29:17 +01:00
|
|
|
# * component_check_XXX: quick tests that aren't worth parallelizing.
|
|
|
|
|
# * component_build_XXX: build things but don't run them.
|
|
|
|
|
# * component_test_XXX: build and test.
|
2019-01-06 21:50:38 +01:00
|
|
|
# * support_XXX: if support_XXX exists and returns false then
|
|
|
|
|
# component_XXX is not run by default.
|
2018-11-27 15:58:47 +01:00
|
|
|
# * post_XXX: things to do after running the tests.
|
|
|
|
|
# * other: miscellaneous support functions.
|
|
|
|
|
#
|
2019-01-09 22:29:17 +01:00
|
|
|
# Each component must start by invoking `msg` with a short informative message.
|
|
|
|
|
#
|
|
|
|
|
# The framework performs some cleanup tasks after each component. This
|
|
|
|
|
# means that components can assume that the working directory is in a
|
|
|
|
|
# cleaned-up state, and don't need to perform the cleanup themselves.
|
|
|
|
|
# * Run `make clean`.
|
|
|
|
|
# * Restore `include/mbedtks/config.h` from a backup made before running
|
|
|
|
|
# the component.
|
2020-03-04 20:46:15 +01:00
|
|
|
# * Check out `Makefile`, `library/Makefile`, `programs/Makefile`,
|
|
|
|
|
# `tests/Makefile` and `programs/fuzz/Makefile` from git.
|
|
|
|
|
# This cleans up after an in-tree use of CMake.
|
2019-01-09 22:29:17 +01:00
|
|
|
#
|
|
|
|
|
# Any command that is expected to fail must be protected so that the
|
|
|
|
|
# script keeps running in --keep-going mode despite `set -e`. In keep-going
|
|
|
|
|
# mode, if a protected command fails, this is logged as a failure and the
|
|
|
|
|
# script will exit with a failure status once it has run all components.
|
|
|
|
|
# Commands can be protected in any of the following ways:
|
|
|
|
|
# * `make` is a function which runs the `make` command with protection.
|
|
|
|
|
# Note that you must write `make VAR=value`, not `VAR=value make`,
|
|
|
|
|
# because the `VAR=value make` syntax doesn't work with functions.
|
|
|
|
|
# * Put `report_status` before the command to protect it.
|
|
|
|
|
# * Put `if_build_successful` before a command. This protects it, and
|
|
|
|
|
# additionally skips it if a prior invocation of `make` in the same
|
|
|
|
|
# component failed.
|
|
|
|
|
#
|
2017-12-21 15:59:21 +01:00
|
|
|
# The tests are roughly in order from fastest to slowest. This doesn't
|
|
|
|
|
# have to be exact, but in general you should add slower tests towards
|
|
|
|
|
# the end and fast checks near the beginning.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
################################################################
|
|
|
|
|
#### Initialization and command line parsing
|
|
|
|
|
################################################################
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2016-04-16 22:54:39 +02:00
|
|
|
# Abort on errors (and uninitialised variables)
|
2014-03-19 18:29:01 +01:00
|
|
|
set -eu
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_check_environment () {
|
2019-01-06 20:58:02 +01:00
|
|
|
if [ -d library -a -d include -a -d tests ]; then :; else
|
2018-11-27 15:58:47 +01:00
|
|
|
echo "Must be run from mbed TLS root" >&2
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
}
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_initialize_variables () {
|
|
|
|
|
CONFIG_H='include/mbedtls/config.h'
|
|
|
|
|
CONFIG_BAK="$CONFIG_H.bak"
|
2020-11-01 06:14:03 +01:00
|
|
|
CRYPTO_CONFIG_H='include/psa/crypto_config.h'
|
|
|
|
|
CRYPTO_CONFIG_BAK="$CRYPTO_CONFIG_H.bak"
|
2018-11-27 15:58:47 +01:00
|
|
|
|
2019-09-16 15:55:46 +02:00
|
|
|
append_outcome=0
|
2018-11-27 15:58:47 +01:00
|
|
|
MEMORY=0
|
|
|
|
|
FORCE=0
|
2020-06-02 11:28:07 +02:00
|
|
|
QUIET=0
|
2018-11-27 15:58:47 +01:00
|
|
|
KEEP_GOING=0
|
|
|
|
|
|
2020-06-08 12:59:27 +02:00
|
|
|
# Seed value used with the --release-test option.
|
2020-06-22 10:11:47 +02:00
|
|
|
#
|
|
|
|
|
# See also RELEASE_SEED in basic-build-test.sh. Debugging is easier if
|
|
|
|
|
# both values are kept in sync. If you change the value here because it
|
|
|
|
|
# breaks some tests, you'll definitely want to change it in
|
|
|
|
|
# basic-build-test.sh as well.
|
2020-06-08 12:59:27 +02:00
|
|
|
RELEASE_SEED=1
|
|
|
|
|
|
2019-09-16 15:55:46 +02:00
|
|
|
: ${MBEDTLS_TEST_OUTCOME_FILE=}
|
2019-09-16 15:20:36 +02:00
|
|
|
: ${MBEDTLS_TEST_PLATFORM="$(uname -s | tr -c \\n0-9A-Za-z _)-$(uname -m | tr -c \\n0-9A-Za-z _)"}
|
2019-09-16 15:55:46 +02:00
|
|
|
export MBEDTLS_TEST_OUTCOME_FILE
|
2019-09-16 15:20:36 +02:00
|
|
|
export MBEDTLS_TEST_PLATFORM
|
|
|
|
|
|
2019-01-30 16:35:44 +01:00
|
|
|
# Default commands, can be overridden by the environment
|
2018-11-27 15:58:47 +01:00
|
|
|
: ${OPENSSL:="openssl"}
|
|
|
|
|
: ${OPENSSL_LEGACY:="$OPENSSL"}
|
|
|
|
|
: ${OPENSSL_NEXT:="$OPENSSL"}
|
|
|
|
|
: ${GNUTLS_CLI:="gnutls-cli"}
|
|
|
|
|
: ${GNUTLS_SERV:="gnutls-serv"}
|
|
|
|
|
: ${GNUTLS_LEGACY_CLI:="$GNUTLS_CLI"}
|
|
|
|
|
: ${GNUTLS_LEGACY_SERV:="$GNUTLS_SERV"}
|
|
|
|
|
: ${OUT_OF_SOURCE_DIR:=./mbedtls_out_of_source_build}
|
|
|
|
|
: ${ARMC5_BIN_DIR:=/usr/bin}
|
|
|
|
|
: ${ARMC6_BIN_DIR:=/usr/bin}
|
2020-04-30 18:19:32 +02:00
|
|
|
: ${ARM_NONE_EABI_GCC_PREFIX:=arm-none-eabi-}
|
2018-11-27 15:58:47 +01:00
|
|
|
|
|
|
|
|
# if MAKEFLAGS is not set add the -j option to speed up invocations of make
|
2019-01-06 21:15:26 +01:00
|
|
|
if [ -z "${MAKEFLAGS+set}" ]; then
|
2018-11-27 15:58:47 +01:00
|
|
|
export MAKEFLAGS="-j"
|
|
|
|
|
fi
|
2019-01-06 21:50:38 +01:00
|
|
|
|
2019-02-07 18:43:39 +01:00
|
|
|
# Include more verbose output for failing tests run by CMake
|
|
|
|
|
export CTEST_OUTPUT_ON_FAILURE=1
|
|
|
|
|
|
2019-10-21 17:11:33 +02:00
|
|
|
# CFLAGS and LDFLAGS for Asan builds that don't use CMake
|
2019-10-21 19:06:33 +02:00
|
|
|
ASAN_CFLAGS='-Werror -Wall -Wextra -fsanitize=address,undefined -fno-sanitize-recover=all'
|
2019-10-21 17:11:33 +02:00
|
|
|
|
2019-01-06 21:50:38 +01:00
|
|
|
# Gather the list of available components. These are the functions
|
|
|
|
|
# defined in this script whose name starts with "component_".
|
|
|
|
|
# Parse the script with sed, because in sh there is no way to list
|
|
|
|
|
# defined functions.
|
|
|
|
|
ALL_COMPONENTS=$(sed -n 's/^ *component_\([0-9A-Z_a-z]*\) *().*/\1/p' <"$0")
|
|
|
|
|
|
|
|
|
|
# Exclude components that are not supported on this platform.
|
|
|
|
|
SUPPORTED_COMPONENTS=
|
|
|
|
|
for component in $ALL_COMPONENTS; do
|
|
|
|
|
case $(type "support_$component" 2>&1) in
|
|
|
|
|
*' function'*)
|
|
|
|
|
if ! support_$component; then continue; fi;;
|
|
|
|
|
esac
|
|
|
|
|
SUPPORTED_COMPONENTS="$SUPPORTED_COMPONENTS $component"
|
|
|
|
|
done
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2016-07-12 17:54:33 +02:00
|
|
|
|
2019-01-10 00:05:18 +01:00
|
|
|
# Test whether the component $1 is included in the command line patterns.
|
|
|
|
|
is_component_included()
|
2018-11-27 21:37:53 +01:00
|
|
|
{
|
|
|
|
|
set -f
|
2019-01-06 23:11:25 +01:00
|
|
|
for pattern in $COMMAND_LINE_COMPONENTS; do
|
2018-11-27 21:37:53 +01:00
|
|
|
set +f
|
|
|
|
|
case ${1#component_} in $pattern) return 0;; esac
|
|
|
|
|
done
|
|
|
|
|
set +f
|
|
|
|
|
return 1
|
|
|
|
|
}
|
2016-07-12 17:54:33 +02:00
|
|
|
|
2016-09-07 01:07:09 +02:00
|
|
|
usage()
|
2016-04-16 22:54:39 +02:00
|
|
|
{
|
2017-12-10 23:43:39 +01:00
|
|
|
cat <<EOF
|
2018-11-27 18:15:35 +01:00
|
|
|
Usage: $0 [OPTION]... [COMPONENT]...
|
2018-11-27 17:04:29 +01:00
|
|
|
Run mbedtls release validation tests.
|
2018-11-27 18:15:35 +01:00
|
|
|
By default, run all tests. With one or more COMPONENT, run only those.
|
2019-01-10 00:05:18 +01:00
|
|
|
COMPONENT can be the name of a component or a shell wildcard pattern.
|
|
|
|
|
|
|
|
|
|
Examples:
|
|
|
|
|
$0 "check_*"
|
|
|
|
|
Run all sanity checks.
|
|
|
|
|
$0 --no-armcc --except test_memsan
|
|
|
|
|
Run everything except builds that require armcc and MemSan.
|
2018-11-27 17:04:29 +01:00
|
|
|
|
|
|
|
|
Special options:
|
|
|
|
|
-h|--help Print this help and exit.
|
2019-01-06 21:50:38 +01:00
|
|
|
--list-all-components List all available test components and exit.
|
|
|
|
|
--list-components List components supported on this platform and exit.
|
2017-12-10 23:43:39 +01:00
|
|
|
|
|
|
|
|
General options:
|
2020-06-02 11:28:07 +02:00
|
|
|
-q|--quiet Only output component names, and errors if any.
|
2017-12-10 23:43:39 +01:00
|
|
|
-f|--force Force the tests to overwrite any modified files.
|
2017-12-11 00:01:40 +01:00
|
|
|
-k|--keep-going Run all tests and report errors at the end.
|
2017-12-10 23:43:39 +01:00
|
|
|
-m|--memory Additional optional memory tests.
|
2019-09-16 15:55:46 +02:00
|
|
|
--append-outcome Append to the outcome file (if used).
|
2020-04-30 18:19:32 +02:00
|
|
|
--arm-none-eabi-gcc-prefix=<string>
|
|
|
|
|
Prefix for a cross-compiler for arm-none-eabi
|
|
|
|
|
(default: "${ARM_NONE_EABI_GCC_PREFIX}")
|
2017-12-19 18:24:31 +01:00
|
|
|
--armcc Run ARM Compiler builds (on by default).
|
2019-01-10 00:05:18 +01:00
|
|
|
--except Exclude the COMPONENTs listed on the command line,
|
|
|
|
|
instead of running only those.
|
2019-09-16 15:55:46 +02:00
|
|
|
--no-append-outcome Write a new outcome file and analyze it (default).
|
2017-12-19 18:24:31 +01:00
|
|
|
--no-armcc Skip ARM Compiler builds.
|
2018-03-21 08:40:26 +01:00
|
|
|
--no-force Refuse to overwrite modified files (default).
|
|
|
|
|
--no-keep-going Stop at the first error (default).
|
|
|
|
|
--no-memory No additional memory tests (default).
|
2020-06-02 11:28:07 +02:00
|
|
|
--no-quiet Print full ouput from components.
|
2017-12-10 23:43:39 +01:00
|
|
|
--out-of-source-dir=<path> Directory used for CMake out-of-source build tests.
|
2019-09-16 15:55:46 +02:00
|
|
|
--outcome-file=<path> File where test outcomes are written (not done if
|
|
|
|
|
empty; default: \$MBEDTLS_TEST_OUTCOME_FILE).
|
2018-03-21 08:40:26 +01:00
|
|
|
--random-seed Use a random seed value for randomized tests (default).
|
2020-06-08 12:59:27 +02:00
|
|
|
-r|--release-test Run this script in release mode. This fixes the seed value to ${RELEASE_SEED}.
|
2017-12-10 23:43:39 +01:00
|
|
|
-s|--seed Integer seed value to use for this test run.
|
|
|
|
|
|
|
|
|
|
Tool path options:
|
|
|
|
|
--armc5-bin-dir=<ARMC5_bin_dir_path> ARM Compiler 5 bin directory.
|
|
|
|
|
--armc6-bin-dir=<ARMC6_bin_dir_path> ARM Compiler 6 bin directory.
|
|
|
|
|
--gnutls-cli=<GnuTLS_cli_path> GnuTLS client executable to use for most tests.
|
|
|
|
|
--gnutls-serv=<GnuTLS_serv_path> GnuTLS server executable to use for most tests.
|
|
|
|
|
--gnutls-legacy-cli=<GnuTLS_cli_path> GnuTLS client executable to use for legacy tests.
|
|
|
|
|
--gnutls-legacy-serv=<GnuTLS_serv_path> GnuTLS server executable to use for legacy tests.
|
|
|
|
|
--openssl=<OpenSSL_path> OpenSSL executable to use for most tests.
|
2021-02-18 13:55:21 +01:00
|
|
|
--openssl-legacy=<OpenSSL_path> OpenSSL executable to use for legacy tests..
|
2018-02-20 12:02:07 +01:00
|
|
|
--openssl-next=<OpenSSL_path> OpenSSL executable to use for recent things like ARIA
|
2017-12-10 23:43:39 +01:00
|
|
|
EOF
|
2016-04-16 22:54:39 +02:00
|
|
|
}
|
2014-03-19 18:29:01 +01:00
|
|
|
|
|
|
|
|
# remove built files as well as the cmake cache/config
|
|
|
|
|
cleanup()
|
|
|
|
|
{
|
2018-03-21 12:16:57 +01:00
|
|
|
if [ -n "${MBEDTLS_ROOT_DIR+set}" ]; then
|
|
|
|
|
cd "$MBEDTLS_ROOT_DIR"
|
|
|
|
|
fi
|
|
|
|
|
|
2017-12-11 00:01:40 +01:00
|
|
|
command make clean
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2018-03-21 12:15:06 +01:00
|
|
|
# Remove CMake artefacts
|
2018-11-07 19:46:41 +01:00
|
|
|
find . -name .git -prune -o \
|
2018-03-21 12:15:06 +01:00
|
|
|
-iname CMakeFiles -exec rm -rf {} \+ -o \
|
|
|
|
|
\( -iname cmake_install.cmake -o \
|
|
|
|
|
-iname CTestTestfile.cmake -o \
|
|
|
|
|
-iname CMakeCache.txt \) -exec rm {} \+
|
|
|
|
|
# Recover files overwritten by in-tree CMake builds
|
2015-03-09 18:05:11 +01:00
|
|
|
rm -f include/Makefile include/mbedtls/Makefile programs/*/Makefile
|
2020-03-04 20:46:15 +01:00
|
|
|
git update-index --no-skip-worktree Makefile library/Makefile programs/Makefile tests/Makefile programs/fuzz/Makefile
|
|
|
|
|
git checkout -- Makefile library/Makefile programs/Makefile tests/Makefile programs/fuzz/Makefile
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2019-06-20 18:38:22 +02:00
|
|
|
# Remove any artifacts from the component_test_cmake_as_subdirectory test.
|
|
|
|
|
rm -rf programs/test/cmake_subproject/build
|
|
|
|
|
rm -f programs/test/cmake_subproject/Makefile
|
|
|
|
|
rm -f programs/test/cmake_subproject/cmake_subproject
|
|
|
|
|
|
2014-07-12 04:00:00 +02:00
|
|
|
if [ -f "$CONFIG_BAK" ]; then
|
|
|
|
|
mv "$CONFIG_BAK" "$CONFIG_H"
|
|
|
|
|
fi
|
2020-11-01 06:14:03 +01:00
|
|
|
|
|
|
|
|
if [ -f "$CRYPTO_CONFIG_BAK" ]; then
|
|
|
|
|
mv "$CRYPTO_CONFIG_BAK" "$CRYPTO_CONFIG_H"
|
|
|
|
|
fi
|
2014-03-19 18:29:01 +01:00
|
|
|
}
|
|
|
|
|
|
2017-12-11 00:01:40 +01:00
|
|
|
# Executed on exit. May be redefined depending on command line options.
|
|
|
|
|
final_report () {
|
|
|
|
|
:
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fatal_signal () {
|
|
|
|
|
cleanup
|
|
|
|
|
final_report $1
|
|
|
|
|
trap - $1
|
|
|
|
|
kill -$1 $$
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
trap 'fatal_signal HUP' HUP
|
|
|
|
|
trap 'fatal_signal INT' INT
|
|
|
|
|
trap 'fatal_signal TERM' TERM
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2014-03-27 14:44:04 +01:00
|
|
|
msg()
|
|
|
|
|
{
|
2018-12-04 12:49:28 +01:00
|
|
|
if [ -n "${current_component:-}" ]; then
|
|
|
|
|
current_section="${current_component#component_}: $1"
|
|
|
|
|
else
|
|
|
|
|
current_section="$1"
|
|
|
|
|
fi
|
2020-06-02 11:28:07 +02:00
|
|
|
|
|
|
|
|
if [ $QUIET -eq 1 ]; then
|
|
|
|
|
return
|
|
|
|
|
fi
|
|
|
|
|
|
2014-03-27 14:44:04 +01:00
|
|
|
echo ""
|
|
|
|
|
echo "******************************************************************"
|
2018-12-04 12:49:28 +01:00
|
|
|
echo "* $current_section "
|
2015-01-26 15:03:56 +01:00
|
|
|
printf "* "; date
|
2014-03-27 14:44:04 +01:00
|
|
|
echo "******************************************************************"
|
|
|
|
|
}
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
armc6_build_test()
|
|
|
|
|
{
|
|
|
|
|
FLAGS="$1"
|
2016-10-17 16:23:10 +02:00
|
|
|
|
2020-04-30 23:11:54 +02:00
|
|
|
msg "build: ARM Compiler 6 ($FLAGS)"
|
2018-11-27 15:58:47 +01:00
|
|
|
ARM_TOOL_VARIANT="ult" CC="$ARMC6_CC" AR="$ARMC6_AR" CFLAGS="$FLAGS" \
|
|
|
|
|
WARNING_CFLAGS='-xc -std=c99' make lib
|
2020-04-30 23:11:54 +02:00
|
|
|
|
|
|
|
|
msg "size: ARM Compiler 6 ($FLAGS)"
|
|
|
|
|
"$ARMC6_FROMELF" -z library/*.o
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
make clean
|
|
|
|
|
}
|
2016-10-17 16:23:10 +02:00
|
|
|
|
2016-08-26 15:42:14 +02:00
|
|
|
err_msg()
|
|
|
|
|
{
|
|
|
|
|
echo "$1" >&2
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
check_tools()
|
|
|
|
|
{
|
|
|
|
|
for TOOL in "$@"; do
|
2017-01-31 18:04:45 +01:00
|
|
|
if ! `type "$TOOL" >/dev/null 2>&1`; then
|
2016-08-26 15:42:14 +02:00
|
|
|
err_msg "$TOOL not found!"
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
done
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-02 15:08:21 +02:00
|
|
|
check_headers_in_cpp () {
|
2019-02-02 00:19:08 +01:00
|
|
|
ls include/mbedtls | grep "\.h$" >headers.txt
|
2018-07-02 15:08:21 +02:00
|
|
|
<programs/test/cpp_dummy_build.cpp sed -n 's/"$//; s!^#include "mbedtls/!!p' |
|
|
|
|
|
sort |
|
|
|
|
|
diff headers.txt -
|
|
|
|
|
rm headers.txt
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_parse_command_line () {
|
2019-01-06 23:11:25 +01:00
|
|
|
COMMAND_LINE_COMPONENTS=
|
2019-01-10 00:05:18 +01:00
|
|
|
all_except=0
|
2019-01-06 23:23:42 +01:00
|
|
|
no_armcc=
|
2019-01-06 23:11:25 +01:00
|
|
|
|
2018-11-02 19:34:17 +01:00
|
|
|
# Note that legacy options are ignored instead of being omitted from this
|
|
|
|
|
# list of options, so invocations that worked with previous version of
|
|
|
|
|
# all.sh will still run and work properly.
|
2018-11-27 15:58:47 +01:00
|
|
|
while [ $# -gt 0 ]; do
|
2019-01-09 22:28:21 +01:00
|
|
|
case "$1" in
|
2019-09-16 15:55:46 +02:00
|
|
|
--append-outcome) append_outcome=1;;
|
2020-04-30 18:19:32 +02:00
|
|
|
--arm-none-eabi-gcc-prefix) shift; ARM_NONE_EABI_GCC_PREFIX="$1";;
|
2019-01-06 23:23:42 +01:00
|
|
|
--armcc) no_armcc=;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--armc5-bin-dir) shift; ARMC5_BIN_DIR="$1";;
|
|
|
|
|
--armc6-bin-dir) shift; ARMC6_BIN_DIR="$1";;
|
2019-01-06 23:11:25 +01:00
|
|
|
--except) all_except=1;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--force|-f) FORCE=1;;
|
|
|
|
|
--gnutls-cli) shift; GNUTLS_CLI="$1";;
|
|
|
|
|
--gnutls-legacy-cli) shift; GNUTLS_LEGACY_CLI="$1";;
|
|
|
|
|
--gnutls-legacy-serv) shift; GNUTLS_LEGACY_SERV="$1";;
|
|
|
|
|
--gnutls-serv) shift; GNUTLS_SERV="$1";;
|
|
|
|
|
--help|-h) usage; exit;;
|
|
|
|
|
--keep-going|-k) KEEP_GOING=1;;
|
2019-01-06 21:50:38 +01:00
|
|
|
--list-all-components) printf '%s\n' $ALL_COMPONENTS; exit;;
|
|
|
|
|
--list-components) printf '%s\n' $SUPPORTED_COMPONENTS; exit;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--memory|-m) MEMORY=1;;
|
2019-09-16 15:55:46 +02:00
|
|
|
--no-append-outcome) append_outcome=0;;
|
2019-01-06 23:23:42 +01:00
|
|
|
--no-armcc) no_armcc=1;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--no-force) FORCE=0;;
|
|
|
|
|
--no-keep-going) KEEP_GOING=0;;
|
|
|
|
|
--no-memory) MEMORY=0;;
|
2020-06-02 11:28:07 +02:00
|
|
|
--no-quiet) QUIET=0;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--openssl) shift; OPENSSL="$1";;
|
|
|
|
|
--openssl-legacy) shift; OPENSSL_LEGACY="$1";;
|
|
|
|
|
--openssl-next) shift; OPENSSL_NEXT="$1";;
|
2019-09-16 15:55:46 +02:00
|
|
|
--outcome-file) shift; MBEDTLS_TEST_OUTCOME_FILE="$1";;
|
2019-01-09 22:28:21 +01:00
|
|
|
--out-of-source-dir) shift; OUT_OF_SOURCE_DIR="$1";;
|
2020-06-02 11:28:07 +02:00
|
|
|
--quiet|-q) QUIET=1;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--random-seed) unset SEED;;
|
2020-06-08 12:59:27 +02:00
|
|
|
--release-test|-r) SEED=$RELEASE_SEED;;
|
2019-01-09 22:28:21 +01:00
|
|
|
--seed|-s) shift; SEED="$1";;
|
|
|
|
|
-*)
|
|
|
|
|
echo >&2 "Unknown option: $1"
|
|
|
|
|
echo >&2 "Run $0 --help for usage."
|
|
|
|
|
exit 120
|
|
|
|
|
;;
|
2019-01-06 23:11:25 +01:00
|
|
|
*) COMMAND_LINE_COMPONENTS="$COMMAND_LINE_COMPONENTS $1";;
|
2019-01-09 22:28:21 +01:00
|
|
|
esac
|
|
|
|
|
shift
|
2018-11-27 15:58:47 +01:00
|
|
|
done
|
2016-04-16 22:54:39 +02:00
|
|
|
|
2019-01-10 00:05:18 +01:00
|
|
|
# With no list of components, run everything.
|
2019-01-06 23:11:25 +01:00
|
|
|
if [ -z "$COMMAND_LINE_COMPONENTS" ]; then
|
|
|
|
|
all_except=1
|
|
|
|
|
fi
|
2016-04-16 22:54:39 +02:00
|
|
|
|
2019-01-06 23:23:42 +01:00
|
|
|
# --no-armcc is a legacy option. The modern way is --except '*_armcc*'.
|
|
|
|
|
# Ignore it if components are listed explicitly on the command line.
|
2019-01-10 00:05:18 +01:00
|
|
|
if [ -n "$no_armcc" ] && [ $all_except -eq 1 ]; then
|
2019-01-06 23:23:42 +01:00
|
|
|
COMMAND_LINE_COMPONENTS="$COMMAND_LINE_COMPONENTS *_armcc*"
|
2016-08-31 18:33:13 +02:00
|
|
|
fi
|
|
|
|
|
|
2019-01-06 23:11:25 +01:00
|
|
|
# Build the list of components to run.
|
2019-01-10 00:05:18 +01:00
|
|
|
RUN_COMPONENTS=
|
|
|
|
|
for component in $SUPPORTED_COMPONENTS; do
|
|
|
|
|
if is_component_included "$component"; [ $? -eq $all_except ]; then
|
|
|
|
|
RUN_COMPONENTS="$RUN_COMPONENTS $component"
|
|
|
|
|
fi
|
|
|
|
|
done
|
2019-01-06 23:11:25 +01:00
|
|
|
|
|
|
|
|
unset all_except
|
2019-01-06 23:23:42 +01:00
|
|
|
unset no_armcc
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2016-04-16 22:54:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_check_git () {
|
|
|
|
|
if [ $FORCE -eq 1 ]; then
|
2019-01-09 23:17:35 +01:00
|
|
|
rm -rf "$OUT_OF_SOURCE_DIR"
|
2018-11-27 15:58:47 +01:00
|
|
|
git checkout-index -f -q $CONFIG_H
|
|
|
|
|
cleanup
|
|
|
|
|
else
|
2016-08-31 18:33:13 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
if [ -d "$OUT_OF_SOURCE_DIR" ]; then
|
|
|
|
|
echo "Warning - there is an existing directory at '$OUT_OF_SOURCE_DIR'" >&2
|
|
|
|
|
echo "You can either delete this directory manually, or force the test by rerunning"
|
|
|
|
|
echo "the script as: $0 --force --out-of-source-dir $OUT_OF_SOURCE_DIR"
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
|
2019-01-09 22:30:01 +01:00
|
|
|
if ! git diff --quiet include/mbedtls/config.h; then
|
2018-11-27 15:58:47 +01:00
|
|
|
err_msg "Warning - the configuration file 'include/mbedtls/config.h' has been edited. "
|
|
|
|
|
echo "You can either delete or preserve your work, or force the test by rerunning the"
|
|
|
|
|
echo "script as: $0 --force"
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
2016-04-16 22:54:39 +02:00
|
|
|
fi
|
2019-02-14 13:18:59 +01:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_setup_keep_going () {
|
2017-12-11 00:01:40 +01:00
|
|
|
failure_summary=
|
|
|
|
|
failure_count=0
|
|
|
|
|
start_red=
|
|
|
|
|
end_color=
|
|
|
|
|
if [ -t 1 ]; then
|
2018-01-02 21:54:17 +01:00
|
|
|
case "${TERM:-}" in
|
2017-12-11 00:01:40 +01:00
|
|
|
*color*|cygwin|linux|rxvt*|screen|[Eex]term*)
|
|
|
|
|
start_red=$(printf '\033[31m')
|
|
|
|
|
end_color=$(printf '\033[0m')
|
|
|
|
|
;;
|
|
|
|
|
esac
|
|
|
|
|
fi
|
|
|
|
|
record_status () {
|
|
|
|
|
if "$@"; then
|
|
|
|
|
last_status=0
|
|
|
|
|
else
|
|
|
|
|
last_status=$?
|
|
|
|
|
text="$current_section: $* -> $last_status"
|
|
|
|
|
failure_summary="$failure_summary
|
|
|
|
|
$text"
|
|
|
|
|
failure_count=$((failure_count + 1))
|
2020-06-02 11:28:07 +02:00
|
|
|
echo "${start_red}^^^^$text^^^^${end_color}" >&2
|
2017-12-11 00:01:40 +01:00
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
make () {
|
|
|
|
|
case "$*" in
|
|
|
|
|
*test|*check)
|
|
|
|
|
if [ $build_status -eq 0 ]; then
|
|
|
|
|
record_status command make "$@"
|
|
|
|
|
else
|
|
|
|
|
echo "(skipped because the build failed)"
|
|
|
|
|
fi
|
|
|
|
|
;;
|
|
|
|
|
*)
|
|
|
|
|
record_status command make "$@"
|
|
|
|
|
build_status=$last_status
|
|
|
|
|
;;
|
|
|
|
|
esac
|
|
|
|
|
}
|
|
|
|
|
final_report () {
|
|
|
|
|
if [ $failure_count -gt 0 ]; then
|
|
|
|
|
echo
|
|
|
|
|
echo "!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!"
|
|
|
|
|
echo "${start_red}FAILED: $failure_count${end_color}$failure_summary"
|
|
|
|
|
echo "!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!"
|
2018-07-20 17:42:14 +02:00
|
|
|
exit 1
|
2017-12-11 00:01:40 +01:00
|
|
|
elif [ -z "${1-}" ]; then
|
|
|
|
|
echo "SUCCESS :)"
|
|
|
|
|
fi
|
|
|
|
|
if [ -n "${1-}" ]; then
|
|
|
|
|
echo "Killed by SIG$1."
|
|
|
|
|
fi
|
|
|
|
|
}
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
|
|
|
|
|
2017-12-11 00:01:40 +01:00
|
|
|
if_build_succeeded () {
|
|
|
|
|
if [ $build_status -eq 0 ]; then
|
|
|
|
|
record_status "$@"
|
|
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
2018-06-07 10:51:44 +02:00
|
|
|
# to be used instead of ! for commands run with
|
|
|
|
|
# record_status or if_build_succeeded
|
|
|
|
|
not() {
|
|
|
|
|
! "$@"
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-02 11:28:07 +02:00
|
|
|
pre_setup_quiet_redirect () {
|
|
|
|
|
if [ $QUIET -ne 1 ]; then
|
|
|
|
|
redirect_out () {
|
|
|
|
|
"$@"
|
|
|
|
|
}
|
2020-06-08 10:46:35 +02:00
|
|
|
redirect_err () {
|
|
|
|
|
"$@"
|
|
|
|
|
}
|
2020-06-02 11:28:07 +02:00
|
|
|
else
|
|
|
|
|
redirect_out () {
|
|
|
|
|
"$@" >/dev/null
|
|
|
|
|
}
|
2020-06-08 10:46:35 +02:00
|
|
|
redirect_err () {
|
|
|
|
|
"$@" 2>/dev/null
|
|
|
|
|
}
|
2020-06-02 11:28:07 +02:00
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
2019-09-16 15:55:46 +02:00
|
|
|
pre_prepare_outcome_file () {
|
|
|
|
|
case "$MBEDTLS_TEST_OUTCOME_FILE" in
|
|
|
|
|
[!/]*) MBEDTLS_TEST_OUTCOME_FILE="$PWD/$MBEDTLS_TEST_OUTCOME_FILE";;
|
|
|
|
|
esac
|
|
|
|
|
if [ -n "$MBEDTLS_TEST_OUTCOME_FILE" ] && [ "$append_outcome" -eq 0 ]; then
|
|
|
|
|
rm -f "$MBEDTLS_TEST_OUTCOME_FILE"
|
|
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_print_configuration () {
|
2020-06-02 11:28:07 +02:00
|
|
|
if [ $QUIET -eq 1 ]; then
|
|
|
|
|
return
|
|
|
|
|
fi
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "info: $0 configuration"
|
|
|
|
|
echo "MEMORY: $MEMORY"
|
|
|
|
|
echo "FORCE: $FORCE"
|
2019-09-16 15:55:46 +02:00
|
|
|
echo "MBEDTLS_TEST_OUTCOME_FILE: ${MBEDTLS_TEST_OUTCOME_FILE:-(none)}"
|
2018-11-27 15:58:47 +01:00
|
|
|
echo "SEED: ${SEED-"UNSET"}"
|
2020-03-04 20:46:15 +01:00
|
|
|
echo
|
2018-11-27 15:58:47 +01:00
|
|
|
echo "OPENSSL: $OPENSSL"
|
|
|
|
|
echo "OPENSSL_LEGACY: $OPENSSL_LEGACY"
|
|
|
|
|
echo "OPENSSL_NEXT: $OPENSSL_NEXT"
|
|
|
|
|
echo "GNUTLS_CLI: $GNUTLS_CLI"
|
|
|
|
|
echo "GNUTLS_SERV: $GNUTLS_SERV"
|
|
|
|
|
echo "GNUTLS_LEGACY_CLI: $GNUTLS_LEGACY_CLI"
|
|
|
|
|
echo "GNUTLS_LEGACY_SERV: $GNUTLS_LEGACY_SERV"
|
|
|
|
|
echo "ARMC5_BIN_DIR: $ARMC5_BIN_DIR"
|
|
|
|
|
echo "ARMC6_BIN_DIR: $ARMC6_BIN_DIR"
|
|
|
|
|
}
|
2016-10-10 16:46:20 +02:00
|
|
|
|
2016-08-26 15:42:14 +02:00
|
|
|
# Make sure the tools we need are available.
|
2018-11-27 15:58:47 +01:00
|
|
|
pre_check_tools () {
|
2019-01-06 23:46:21 +01:00
|
|
|
# Build the list of variables to pass to output_env.sh.
|
|
|
|
|
set env
|
|
|
|
|
|
2019-01-06 23:40:00 +01:00
|
|
|
case " $RUN_COMPONENTS " in
|
|
|
|
|
# Require OpenSSL and GnuTLS if running any tests (as opposed to
|
|
|
|
|
# only doing builds). Not all tests run OpenSSL and GnuTLS, but this
|
|
|
|
|
# is a good enough approximation in practice.
|
|
|
|
|
*" test_"*)
|
|
|
|
|
# To avoid setting OpenSSL and GnuTLS for each call to compat.sh
|
|
|
|
|
# and ssl-opt.sh, we just export the variables they require.
|
|
|
|
|
export OPENSSL_CMD="$OPENSSL"
|
|
|
|
|
export GNUTLS_CLI="$GNUTLS_CLI"
|
|
|
|
|
export GNUTLS_SERV="$GNUTLS_SERV"
|
|
|
|
|
# Avoid passing --seed flag in every call to ssl-opt.sh
|
|
|
|
|
if [ -n "${SEED-}" ]; then
|
|
|
|
|
export SEED
|
|
|
|
|
fi
|
2019-01-06 23:46:21 +01:00
|
|
|
set "$@" OPENSSL="$OPENSSL" OPENSSL_LEGACY="$OPENSSL_LEGACY"
|
|
|
|
|
set "$@" GNUTLS_CLI="$GNUTLS_CLI" GNUTLS_SERV="$GNUTLS_SERV"
|
|
|
|
|
set "$@" GNUTLS_LEGACY_CLI="$GNUTLS_LEGACY_CLI"
|
|
|
|
|
set "$@" GNUTLS_LEGACY_SERV="$GNUTLS_LEGACY_SERV"
|
2019-01-06 23:40:00 +01:00
|
|
|
check_tools "$OPENSSL" "$OPENSSL_LEGACY" "$OPENSSL_NEXT" \
|
|
|
|
|
"$GNUTLS_CLI" "$GNUTLS_SERV" \
|
|
|
|
|
"$GNUTLS_LEGACY_CLI" "$GNUTLS_LEGACY_SERV"
|
|
|
|
|
;;
|
|
|
|
|
esac
|
|
|
|
|
|
|
|
|
|
case " $RUN_COMPONENTS " in
|
|
|
|
|
*_doxygen[_\ ]*) check_tools "doxygen" "dot";;
|
|
|
|
|
esac
|
|
|
|
|
|
|
|
|
|
case " $RUN_COMPONENTS " in
|
2020-04-30 18:19:32 +02:00
|
|
|
*_arm_none_eabi_gcc[_\ ]*) check_tools "${ARM_NONE_EABI_GCC_PREFIX}gcc";;
|
2019-01-06 23:40:00 +01:00
|
|
|
esac
|
|
|
|
|
|
|
|
|
|
case " $RUN_COMPONENTS " in
|
|
|
|
|
*_mingw[_\ ]*) check_tools "i686-w64-mingw32-gcc";;
|
|
|
|
|
esac
|
|
|
|
|
|
|
|
|
|
case " $RUN_COMPONENTS " in
|
|
|
|
|
*" test_zeroize "*) check_tools "gdb";;
|
|
|
|
|
esac
|
2016-08-26 15:42:14 +02:00
|
|
|
|
2019-01-06 23:40:00 +01:00
|
|
|
case " $RUN_COMPONENTS " in
|
2019-01-06 23:23:42 +01:00
|
|
|
*_armcc*)
|
2019-01-06 23:40:00 +01:00
|
|
|
ARMC5_CC="$ARMC5_BIN_DIR/armcc"
|
|
|
|
|
ARMC5_AR="$ARMC5_BIN_DIR/armar"
|
2020-04-30 23:11:54 +02:00
|
|
|
ARMC5_FROMELF="$ARMC5_BIN_DIR/fromelf"
|
2019-01-06 23:40:00 +01:00
|
|
|
ARMC6_CC="$ARMC6_BIN_DIR/armclang"
|
|
|
|
|
ARMC6_AR="$ARMC6_BIN_DIR/armar"
|
2020-04-30 23:11:54 +02:00
|
|
|
ARMC6_FROMELF="$ARMC6_BIN_DIR/fromelf"
|
|
|
|
|
check_tools "$ARMC5_CC" "$ARMC5_AR" "$ARMC5_FROMELF" \
|
|
|
|
|
"$ARMC6_CC" "$ARMC6_AR" "$ARMC6_FROMELF";;
|
2019-01-06 23:23:42 +01:00
|
|
|
esac
|
2016-08-26 15:42:14 +02:00
|
|
|
|
2020-06-02 11:28:07 +02:00
|
|
|
# past this point, no call to check_tool, only printing output
|
|
|
|
|
if [ $QUIET -eq 1 ]; then
|
|
|
|
|
return
|
|
|
|
|
fi
|
|
|
|
|
|
2019-01-06 23:46:21 +01:00
|
|
|
msg "info: output_env.sh"
|
|
|
|
|
case $RUN_COMPONENTS in
|
|
|
|
|
*_armcc*)
|
|
|
|
|
set "$@" ARMC5_CC="$ARMC5_CC" ARMC6_CC="$ARMC6_CC" RUN_ARMCC=1;;
|
|
|
|
|
*) set "$@" RUN_ARMCC=0;;
|
|
|
|
|
esac
|
|
|
|
|
"$@" scripts/output_env.sh
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2016-08-26 15:42:14 +02:00
|
|
|
|
2021-04-22 01:10:12 +02:00
|
|
|
pre_generate_files() {
|
|
|
|
|
make generated_files
|
|
|
|
|
}
|
|
|
|
|
|
2017-12-21 15:59:21 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
################################################################
|
|
|
|
|
#### Basic checks
|
|
|
|
|
################################################################
|
2016-08-26 15:42:14 +02:00
|
|
|
|
2016-04-16 22:54:39 +02:00
|
|
|
#
|
|
|
|
|
# Test Suites to be executed
|
|
|
|
|
#
|
2014-06-09 11:21:49 +02:00
|
|
|
# The test ordering tries to optimize for the following criteria:
|
2014-11-20 13:48:53 +01:00
|
|
|
# 1. Catch possible problems early, by running first tests that run quickly
|
2014-08-14 11:29:06 +02:00
|
|
|
# and/or are more likely to fail than others (eg I use Clang most of the
|
|
|
|
|
# time, so start with a GCC build).
|
2014-06-09 11:21:49 +02:00
|
|
|
# 2. Minimize total running time, by avoiding useless rebuilds
|
|
|
|
|
#
|
|
|
|
|
# Indicative running times are given for reference.
|
2014-03-27 14:44:04 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_recursion () {
|
2019-09-19 21:29:11 +02:00
|
|
|
msg "Check: recursion.pl" # < 1s
|
2018-11-27 15:58:47 +01:00
|
|
|
record_status tests/scripts/recursion.pl library/*.c
|
|
|
|
|
}
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2021-05-18 16:09:50 +02:00
|
|
|
component_check_generated_files () {
|
|
|
|
|
msg "Check: check-generated-files, files generated with make" # 2s
|
|
|
|
|
make generated_files
|
|
|
|
|
record_status tests/scripts/check-generated-files.sh
|
|
|
|
|
|
|
|
|
|
msg "Check: check-generated-files -u, files present" # 2s
|
|
|
|
|
record_status tests/scripts/check-generated-files.sh -u
|
|
|
|
|
# Check that the generated files are considered up to date.
|
|
|
|
|
record_status tests/scripts/check-generated-files.sh
|
|
|
|
|
|
|
|
|
|
msg "Check: check-generated-files -u, files absent" # 2s
|
|
|
|
|
command make neat
|
|
|
|
|
record_status tests/scripts/check-generated-files.sh -u
|
|
|
|
|
# Check that the generated files are considered up to date.
|
|
|
|
|
record_status tests/scripts/check-generated-files.sh
|
|
|
|
|
|
|
|
|
|
# This component ends with the generated files present in the source tree.
|
|
|
|
|
# This is necessary for subsequent components!
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_doxy_blocks () {
|
2019-09-19 21:29:11 +02:00
|
|
|
msg "Check: doxygen markup outside doxygen blocks" # < 1s
|
2018-11-27 15:58:47 +01:00
|
|
|
record_status tests/scripts/check-doxy-blocks.pl
|
|
|
|
|
}
|
2015-04-09 17:19:23 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_files () {
|
2019-09-19 21:29:11 +02:00
|
|
|
msg "Check: file sanity checks (permissions, encodings)" # < 1s
|
2020-06-25 14:18:34 +02:00
|
|
|
record_status tests/scripts/check_files.py
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-03-13 17:48:16 +01:00
|
|
|
|
2020-05-10 17:40:49 +02:00
|
|
|
component_check_changelog () {
|
|
|
|
|
msg "Check: changelog entries" # < 1s
|
|
|
|
|
rm -f ChangeLog.new
|
|
|
|
|
record_status scripts/assemble_changelog.py -o ChangeLog.new
|
|
|
|
|
if [ -e ChangeLog.new ]; then
|
|
|
|
|
# Show the diff for information. It isn't an error if the diff is
|
|
|
|
|
# non-empty.
|
|
|
|
|
diff -u ChangeLog ChangeLog.new || true
|
|
|
|
|
rm ChangeLog.new
|
|
|
|
|
fi
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_names () {
|
2019-09-19 21:29:11 +02:00
|
|
|
msg "Check: declared and exported names (builds the library)" # < 3s
|
2019-05-15 17:52:22 +02:00
|
|
|
record_status tests/scripts/check-names.sh -v
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2015-04-09 11:09:03 +02:00
|
|
|
|
2019-09-19 21:30:05 +02:00
|
|
|
component_check_test_cases () {
|
|
|
|
|
msg "Check: test case descriptions" # < 1s
|
2020-06-02 11:51:40 +02:00
|
|
|
if [ $QUIET -eq 1 ]; then
|
2020-06-08 10:59:41 +02:00
|
|
|
opt='--quiet'
|
2020-06-02 11:51:40 +02:00
|
|
|
else
|
2020-06-08 10:59:41 +02:00
|
|
|
opt=''
|
2020-06-02 11:51:40 +02:00
|
|
|
fi
|
2020-06-25 14:18:34 +02:00
|
|
|
record_status tests/scripts/check_test_cases.py $opt
|
2020-06-08 10:59:41 +02:00
|
|
|
unset opt
|
2019-09-19 21:30:05 +02:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_doxygen_warnings () {
|
2019-09-19 21:29:11 +02:00
|
|
|
msg "Check: doxygen warnings (builds the documentation)" # ~ 3s
|
2018-11-27 15:58:47 +01:00
|
|
|
record_status tests/scripts/doxygen.sh
|
|
|
|
|
}
|
2016-01-04 16:49:09 +01:00
|
|
|
|
2017-12-21 15:59:21 +01:00
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
|
2017-12-21 15:59:21 +01:00
|
|
|
################################################################
|
|
|
|
|
#### Build and test many configurations and targets
|
|
|
|
|
################################################################
|
|
|
|
|
|
2019-04-08 17:00:15 +02:00
|
|
|
component_test_default_out_of_box () {
|
|
|
|
|
msg "build: make, default config (out-of-box)" # ~1min
|
|
|
|
|
make
|
2019-09-16 15:55:46 +02:00
|
|
|
# Disable fancy stuff
|
2019-09-27 20:21:11 +02:00
|
|
|
SAVE_MBEDTLS_TEST_OUTCOME_FILE="$MBEDTLS_TEST_OUTCOME_FILE"
|
2019-09-16 15:55:46 +02:00
|
|
|
unset MBEDTLS_TEST_OUTCOME_FILE
|
2019-04-08 17:00:15 +02:00
|
|
|
|
|
|
|
|
msg "test: main suites make, default config (out-of-box)" # ~10s
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "selftest: make, default config (out-of-box)" # ~10s
|
2020-04-23 23:37:45 +02:00
|
|
|
if_build_succeeded programs/test/selftest
|
2019-09-27 20:21:11 +02:00
|
|
|
|
|
|
|
|
export MBEDTLS_TEST_OUTCOME_FILE="$SAVE_MBEDTLS_TEST_OUTCOME_FILE"
|
|
|
|
|
unset SAVE_MBEDTLS_TEST_OUTCOME_FILE
|
2019-04-08 17:00:15 +02:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_default_cmake_gcc_asan () {
|
|
|
|
|
msg "build: cmake, gcc, ASan" # ~ 1 min 50s
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2020-04-23 23:37:45 +02:00
|
|
|
msg "test: selftest (ASan build)" # ~ 10s
|
|
|
|
|
if_build_succeeded programs/test/selftest
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: ssl-opt.sh (ASan build)" # ~ 1 min
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: compat.sh (ASan build)" # ~ 6 min
|
|
|
|
|
if_build_succeeded tests/compat.sh
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
msg "test: context-info.sh (ASan build)" # ~ 15 sec
|
|
|
|
|
if_build_succeeded tests/context-info.sh
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2019-02-26 15:27:09 +01:00
|
|
|
component_test_full_cmake_gcc_asan () {
|
|
|
|
|
msg "build: full config, cmake, gcc, ASan"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-02-26 15:27:09 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: main suites (inc. selftests) (full config, ASan build)"
|
|
|
|
|
make test
|
2020-03-04 20:46:15 +01:00
|
|
|
|
2020-04-23 23:37:45 +02:00
|
|
|
msg "test: selftest (ASan build)" # ~ 10s
|
|
|
|
|
if_build_succeeded programs/test/selftest
|
|
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
msg "test: ssl-opt.sh (full config, ASan build)"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
|
|
|
|
|
msg "test: compat.sh (full config, ASan build)"
|
|
|
|
|
if_build_succeeded tests/compat.sh
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
msg "test: context-info.sh (full config, ASan build)" # ~ 15 sec
|
|
|
|
|
if_build_succeeded tests/context-info.sh
|
2019-02-26 15:27:09 +01:00
|
|
|
}
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2020-10-29 10:51:32 +01:00
|
|
|
component_test_psa_crypto_key_id_encodes_owner () {
|
|
|
|
|
msg "build: full config - USE_PSA_CRYPTO + PSA_CRYPTO_KEY_ID_ENCODES_OWNER, cmake, gcc, ASan"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: full config - USE_PSA_CRYPTO + PSA_CRYPTO_KEY_ID_ENCODES_OWNER, cmake, gcc, ASan"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2021-01-28 17:54:24 +01:00
|
|
|
component_test_psa_crypto_client () {
|
|
|
|
|
msg "build: default config - PSA_CRYPTO_C + PSA_CRYPTO_CLIENT, make"
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CLIENT
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: default config - PSA_CRYPTO_C + PSA_CRYPTO_CLIENT, make"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
psa: Support RSA signature without MBEDTLS_GENPRIME
On space-constrained platforms, it is a useful configuration to be able
to import/export and perform RSA key pair operations, but to exclude RSA
key generation, potentially saving flash space. It is not possible to
express this with the PSA_WANT_ configuration system at the present
time. However, in previous versions of Mbed TLS (v2.24.0 and earlier) it
was possible to configure a software PSA implementation which was
capable of making RSA signatures but not capable of generating RSA keys.
To do this, one unset MBEDTLS_GENPRIME.
Since the addition of MBEDTLS_PSA_BUILTIN_KEY_TYPE_RSA_KEY_PAIR, this
expressivity was lost. Expressing that you wanted to work with RSA key
pairs forced you to include the ability to generate key pairs as well.
Change psa_crypto_rsa.c to only call mbedtls_rsa_gen_key() if
MBEDTLS_GENPRIME is also set. This restores the configuration behavior
present in Mbed TLS v2.24.0 and earlier versions.
It left as a future exercise to add the ability to PSA to be able to
express a desire for a software or accelerator configuration that
includes RSA key pair operations, like signature, but excludes key pair
generation.
Without this change, linker errors will occur when attempts to call,
which doesn't exist when MBEDTLS_GENPRIME is unset.
psa_crypto_rsa.c.obj: in function `rsa_generate_key':
psa_crypto_rsa.c:320: undefined reference to `mbedtls_rsa_gen_key'
Fixes #4512
Signed-off-by: Jaeden Amero <jaeden.amero@arm.com>
2021-05-14 09:34:32 +02:00
|
|
|
component_test_psa_crypto_rsa_no_genprime() {
|
|
|
|
|
msg "build: default config minus MBEDTLS_GENPRIME"
|
|
|
|
|
scripts/config.py unset MBEDTLS_GENPRIME
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: default config minus MBEDTLS_GENPRIME"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
component_test_ref_configs () {
|
|
|
|
|
msg "test/build: ref-configs (ASan build)" # ~ 6 min 20s
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
record_status tests/scripts/test-ref-configs.pl
|
2018-11-27 16:11:09 +01:00
|
|
|
}
|
2014-06-09 11:21:49 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_renegotiation () {
|
|
|
|
|
msg "build: Default + !MBEDTLS_SSL_RENEGOTIATION (ASan build)" # ~ 6 min
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_SSL_RENEGOTIATION
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2016-03-08 00:22:10 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: !MBEDTLS_SSL_RENEGOTIATION - main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
2017-10-12 16:29:50 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: !MBEDTLS_SSL_RENEGOTIATION - ssl-opt.sh (ASan build)" # ~ 6 min
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
}
|
2017-10-12 16:29:50 +02:00
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
component_test_no_pem_no_fs () {
|
|
|
|
|
msg "build: Default + !MBEDTLS_PEM_PARSE_C + !MBEDTLS_FS_IO (ASan build)"
|
|
|
|
|
scripts/config.py unset MBEDTLS_PEM_PARSE_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_FS_IO
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_ITS_FILE_C # requires a filesystem
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C # requires PSA ITS
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: !MBEDTLS_PEM_PARSE_C !MBEDTLS_FS_IO - main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: !MBEDTLS_PEM_PARSE_C !MBEDTLS_FS_IO - ssl-opt.sh (ASan build)" # ~ 6 min
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_rsa_no_crt () {
|
|
|
|
|
msg "build: Default + RSA_NO_CRT (ASan build)" # ~ 6 min
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_RSA_NO_CRT
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2016-03-08 00:22:10 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: RSA_NO_CRT - main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
2017-09-28 13:53:51 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: RSA_NO_CRT - RSA-related part of ssl-opt.sh (ASan build)" # ~ 5s
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f RSA
|
2017-09-28 13:53:51 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: RSA_NO_CRT - RSA-related part of compat.sh (ASan build)" # ~ 3 min
|
|
|
|
|
if_build_succeeded tests/compat.sh -t RSA
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
msg "test: RSA_NO_CRT - RSA-related part of context-info.sh (ASan build)" # ~ 15 sec
|
|
|
|
|
if_build_succeeded tests/context-info.sh
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-09-28 13:53:51 +02:00
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
component_test_no_ctr_drbg_classic () {
|
|
|
|
|
msg "build: Full minus CTR_DRBG, classic crypto in TLS"
|
2020-05-28 12:55:10 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
2021-02-03 14:56:51 +01:00
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-05-28 12:55:10 +02:00
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus CTR_DRBG, classic crypto - main suites"
|
2020-05-28 12:55:10 +02:00
|
|
|
make test
|
|
|
|
|
|
2021-01-13 20:02:03 +01:00
|
|
|
# In this configuration, the TLS test programs use HMAC_DRBG.
|
|
|
|
|
# The SSL tests are slow, so run a small subset, just enough to get
|
|
|
|
|
# confidence that the SSL code copes with HMAC_DRBG.
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus CTR_DRBG, classic crypto - ssl-opt.sh (subset)"
|
2021-01-13 20:02:03 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|SSL async private.*delay=\|tickets enabled on server'
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus CTR_DRBG, classic crypto - compat.sh (subset)"
|
2021-01-13 20:02:03 +01:00
|
|
|
if_build_succeeded tests/compat.sh -m tls1_2 -t 'ECDSA PSK' -V NO -p OpenSSL
|
2020-06-05 09:29:51 +02:00
|
|
|
}
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
component_test_no_ctr_drbg_use_psa () {
|
|
|
|
|
msg "build: Full minus CTR_DRBG, PSA crypto in TLS"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: Full minus CTR_DRBG, USE_PSA_CRYPTO - main suites"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
# In this configuration, the TLS test programs use HMAC_DRBG.
|
|
|
|
|
# The SSL tests are slow, so run a small subset, just enough to get
|
|
|
|
|
# confidence that the SSL code copes with HMAC_DRBG.
|
|
|
|
|
msg "test: Full minus CTR_DRBG, USE_PSA_CRYPTO - ssl-opt.sh (subset)"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|SSL async private.*delay=\|tickets enabled on server'
|
|
|
|
|
|
|
|
|
|
msg "test: Full minus CTR_DRBG, USE_PSA_CRYPTO - compat.sh (subset)"
|
|
|
|
|
if_build_succeeded tests/compat.sh -m tls1_2 -t 'ECDSA PSK' -V NO -p OpenSSL
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_no_hmac_drbg_classic () {
|
|
|
|
|
msg "build: Full minus HMAC_DRBG, classic crypto in TLS"
|
2020-06-05 09:29:51 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
2021-02-03 14:56:51 +01:00
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-06-05 09:29:51 +02:00
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, classic crypto - main suites"
|
2020-06-05 09:29:51 +02:00
|
|
|
make test
|
|
|
|
|
|
2020-11-19 22:14:34 +01:00
|
|
|
# Normally our ECDSA implementation uses deterministic ECDSA. But since
|
|
|
|
|
# HMAC_DRBG is disabled in this configuration, randomized ECDSA is used
|
|
|
|
|
# instead.
|
|
|
|
|
# Test SSL with non-deterministic ECDSA. Only test features that
|
|
|
|
|
# might be affected by how ECDSA signature is performed.
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, classic crypto - ssl-opt.sh (subset)"
|
2020-11-19 22:14:34 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|SSL async private: sign'
|
|
|
|
|
|
|
|
|
|
# To save time, only test one protocol version, since this part of
|
|
|
|
|
# the protocol is identical in (D)TLS up to 1.2.
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, classic crypto - compat.sh (ECDSA)"
|
2020-11-19 22:14:34 +01:00
|
|
|
if_build_succeeded tests/compat.sh -m tls1_2 -t 'ECDSA'
|
2020-05-28 12:55:10 +02:00
|
|
|
}
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
component_test_no_hmac_drbg_use_psa () {
|
|
|
|
|
msg "build: Full minus HMAC_DRBG, PSA crypto in TLS"
|
2020-06-05 09:29:51 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
2021-02-03 14:56:51 +01:00
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
2020-06-05 09:29:51 +02:00
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, USE_PSA_CRYPTO - main suites"
|
2020-06-05 09:29:51 +02:00
|
|
|
make test
|
|
|
|
|
|
2020-11-19 22:14:34 +01:00
|
|
|
# Normally our ECDSA implementation uses deterministic ECDSA. But since
|
|
|
|
|
# HMAC_DRBG is disabled in this configuration, randomized ECDSA is used
|
|
|
|
|
# instead.
|
|
|
|
|
# Test SSL with non-deterministic ECDSA. Only test features that
|
|
|
|
|
# might be affected by how ECDSA signature is performed.
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, USE_PSA_CRYPTO - ssl-opt.sh (subset)"
|
2020-11-19 22:14:34 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|SSL async private: sign'
|
|
|
|
|
|
|
|
|
|
# To save time, only test one protocol version, since this part of
|
|
|
|
|
# the protocol is identical in (D)TLS up to 1.2.
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: Full minus HMAC_DRBG, USE_PSA_CRYPTO - compat.sh (ECDSA)"
|
2020-11-19 22:14:34 +01:00
|
|
|
if_build_succeeded tests/compat.sh -m tls1_2 -t 'ECDSA'
|
2020-05-28 12:55:10 +02:00
|
|
|
}
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
component_test_psa_external_rng_no_drbg_classic () {
|
|
|
|
|
msg "build: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, classic crypto in TLS"
|
2020-11-23 17:39:04 +01:00
|
|
|
scripts/config.py full
|
2021-02-03 14:56:51 +01:00
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-11-23 17:39:04 +01:00
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
|
2021-02-08 21:02:53 +01:00
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_NV_SEED
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_NV_SEED_ALT
|
2020-11-23 17:39:04 +01:00
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_NO_INTERNAL_RNG
|
2021-02-03 20:07:11 +01:00
|
|
|
# When MBEDTLS_USE_PSA_CRYPTO is disabled and there is no DRBG,
|
|
|
|
|
# the SSL test programs don't have an RNG and can't work. Explicitly
|
|
|
|
|
# make them use the PSA RNG with -DMBEDTLS_TEST_USE_PSA_CRYPTO_RNG.
|
|
|
|
|
make CFLAGS="$ASAN_CFLAGS -O2 -DMBEDTLS_TEST_USE_PSA_CRYPTO_RNG" LDFLAGS="$ASAN_CFLAGS"
|
2020-11-23 17:39:04 +01:00
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, classic crypto - main suites"
|
2020-11-23 17:39:04 +01:00
|
|
|
make test
|
|
|
|
|
|
2021-02-03 20:07:11 +01:00
|
|
|
msg "test: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, classic crypto - ssl-opt.sh (subset)"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default'
|
2020-11-23 17:39:04 +01:00
|
|
|
}
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
component_test_psa_external_rng_no_drbg_use_psa () {
|
|
|
|
|
msg "build: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, PSA crypto in TLS"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
|
2021-02-08 21:02:53 +01:00
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_NV_SEED
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_NV_SEED_ALT
|
2020-11-23 17:39:04 +01:00
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_NO_INTERNAL_RNG
|
|
|
|
|
make CFLAGS="$ASAN_CFLAGS -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
|
2021-02-03 14:56:51 +01:00
|
|
|
msg "test: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, PSA crypto - main suites"
|
2020-11-23 17:39:04 +01:00
|
|
|
make test
|
|
|
|
|
|
2021-02-03 20:07:11 +01:00
|
|
|
msg "test: PSA_CRYPTO_EXTERNAL_RNG minus *_DRBG, PSA crypto - ssl-opt.sh (subset)"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|opaque'
|
2020-11-23 17:39:04 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_psa_external_rng_use_psa_crypto () {
|
|
|
|
|
msg "build: full + PSA_CRYPTO_EXTERNAL_RNG + USE_PSA_CRYPTO minus CTR_DRBG"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG
|
|
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
make CFLAGS="$ASAN_CFLAGS -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
|
|
|
|
|
msg "test: full + PSA_CRYPTO_EXTERNAL_RNG + USE_PSA_CRYPTO minus CTR_DRBG"
|
|
|
|
|
make test
|
|
|
|
|
|
2021-01-13 20:02:03 +01:00
|
|
|
msg "test: full + PSA_CRYPTO_EXTERNAL_RNG + USE_PSA_CRYPTO minus CTR_DRBG"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|opaque'
|
2020-11-23 17:39:04 +01:00
|
|
|
}
|
|
|
|
|
|
2020-05-19 12:38:31 +02:00
|
|
|
component_test_ecp_no_internal_rng () {
|
|
|
|
|
msg "build: Default plus ECP_NO_INTERNAL_RNG minus DRBG modules"
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_NO_INTERNAL_RNG
|
|
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_C # requires a DRBG
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C # requires PSA Crypto
|
|
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: ECP_NO_INTERNAL_RNG, no DRBG module"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
# no SSL tests as they all depend on having a DRBG
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-04 09:43:14 +02:00
|
|
|
component_test_ecp_restartable_no_internal_rng () {
|
|
|
|
|
msg "build: Default plus ECP_RESTARTABLE and ECP_NO_INTERNAL_RNG, no DRBG"
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_NO_INTERNAL_RNG
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_RESTARTABLE
|
|
|
|
|
scripts/config.py unset MBEDTLS_CTR_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_HMAC_DRBG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_DETERMINISTIC # requires HMAC_DRBG
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_C # requires CTR_DRBG
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C # requires PSA Crypto
|
|
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: ECP_RESTARTABLE and ECP_NO_INTERNAL_RNG, no DRBG module"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
# no SSL tests as they all depend on having a DRBG
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
component_test_everest () {
|
|
|
|
|
msg "build: Everest ECDH context (ASan build)" # ~ 6 min
|
|
|
|
|
scripts/config.py set MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
|
|
|
|
|
CC=clang cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: Everest ECDH context - main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: Everest ECDH context - ECDH-related part of ssl-opt.sh (ASan build)" # ~ 5s
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f ECDH
|
|
|
|
|
|
|
|
|
|
msg "test: Everest ECDH context - compat.sh with some ECDH ciphersuites (ASan build)" # ~ 3 min
|
|
|
|
|
# Exclude some symmetric ciphers that are redundant here to gain time.
|
|
|
|
|
if_build_succeeded tests/compat.sh -f ECDH -V NO -e 'ARCFOUR\|ARIA\|CAMELLIA\|CHACHA\|DES\|RC4'
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-03 00:15:37 +02:00
|
|
|
component_test_everest_curve25519_only () {
|
|
|
|
|
msg "build: Everest ECDH context, only Curve25519" # ~ 6 min
|
|
|
|
|
scripts/config.py set MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
2021-04-23 13:33:44 +02:00
|
|
|
scripts/config.py unset MBEDTLS_ECJPAKE_C
|
2020-07-03 00:15:37 +02:00
|
|
|
# Disable all curves
|
|
|
|
|
for c in $(sed -n 's/#define \(MBEDTLS_ECP_DP_[0-9A-Z_a-z]*_ENABLED\).*/\1/p' <"$CONFIG_H"); do
|
|
|
|
|
scripts/config.py unset "$c"
|
|
|
|
|
done
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_DP_CURVE25519_ENABLED
|
|
|
|
|
|
|
|
|
|
make CFLAGS="$ASAN_CFLAGS -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
|
|
|
|
|
msg "test: Everest ECDH context, only Curve25519" # ~ 50s
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_small_ssl_out_content_len () {
|
|
|
|
|
msg "build: small SSL_OUT_CONTENT_LEN (ASan build)"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_SSL_IN_CONTENT_LEN 16384
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_OUT_CONTENT_LEN 4096
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2017-09-28 13:53:51 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: small SSL_OUT_CONTENT_LEN - ssl-opt.sh MFL and large packet tests"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "Max fragment\|Large packet"
|
|
|
|
|
}
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_small_ssl_in_content_len () {
|
|
|
|
|
msg "build: small SSL_IN_CONTENT_LEN (ASan build)"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_SSL_IN_CONTENT_LEN 4096
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_OUT_CONTENT_LEN 16384
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: small SSL_IN_CONTENT_LEN - ssl-opt.sh MFL tests"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "Max fragment"
|
|
|
|
|
}
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_small_ssl_dtls_max_buffering () {
|
|
|
|
|
msg "build: small MBEDTLS_SSL_DTLS_MAX_BUFFERING #0"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_SSL_DTLS_MAX_BUFFERING 1000
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: small MBEDTLS_SSL_DTLS_MAX_BUFFERING #0 - ssl-opt.sh specific reordering test"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "DTLS reordering: Buffer out-of-order hs msg before reassembling next, free buffered msg"
|
|
|
|
|
}
|
2018-08-24 15:43:44 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_small_mbedtls_ssl_dtls_max_buffering () {
|
|
|
|
|
msg "build: small MBEDTLS_SSL_DTLS_MAX_BUFFERING #1"
|
2020-03-04 20:46:15 +01:00
|
|
|
scripts/config.py set MBEDTLS_SSL_DTLS_MAX_BUFFERING 190
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2018-08-24 15:43:44 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: small MBEDTLS_SSL_DTLS_MAX_BUFFERING #1 - ssl-opt.sh specific reordering test"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "DTLS reordering: Buffer encrypted Finished message, drop for fragmented NewSessionTicket"
|
|
|
|
|
}
|
2018-08-24 15:43:44 +02:00
|
|
|
|
2019-09-06 19:47:17 +02:00
|
|
|
component_test_psa_collect_statuses () {
|
|
|
|
|
msg "build+test: psa_collect_statuses" # ~30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-09-06 19:47:17 +02:00
|
|
|
record_status tests/scripts/psa_collect_statuses.py
|
|
|
|
|
# Check that psa_crypto_init() succeeded at least once
|
|
|
|
|
record_status grep -q '^0:psa_crypto_init:' tests/statuses.log
|
|
|
|
|
rm -f tests/statuses.log
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_full_cmake_clang () {
|
|
|
|
|
msg "build: cmake, full config, clang" # ~ 50s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=clang cmake -D CMAKE_BUILD_TYPE:String=Check -D ENABLE_TESTING=On .
|
|
|
|
|
make
|
2018-08-24 15:43:44 +02:00
|
|
|
|
2019-06-26 15:52:12 +02:00
|
|
|
msg "test: main suites (full config, clang)" # ~ 5s
|
2018-11-27 15:58:47 +01:00
|
|
|
make test
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2019-06-26 15:52:12 +02:00
|
|
|
msg "test: psa_constant_names (full config, clang)" # ~ 1s
|
2019-02-06 14:43:58 +01:00
|
|
|
record_status tests/scripts/test_psa_constant_names.py
|
2020-02-26 19:51:43 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: ssl-opt.sh default, ECJPAKE, SSL async (full config)" # ~ 1s
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|ECJPAKE\|SSL async private'
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2019-01-08 22:42:27 +01:00
|
|
|
msg "test: compat.sh RC4, DES, 3DES & NULL (full config)" # ~ 2 min
|
2019-02-19 21:20:57 +01:00
|
|
|
if_build_succeeded env OPENSSL_CMD="$OPENSSL_LEGACY" GNUTLS_CLI="$GNUTLS_LEGACY_CLI" GNUTLS_SERV="$GNUTLS_LEGACY_SERV" tests/compat.sh -e '^$' -f 'NULL\|DES\|RC4\|ARCFOUR'
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: compat.sh ARIA + ChachaPoly"
|
|
|
|
|
if_build_succeeded env OPENSSL_CMD="$OPENSSL_NEXT" tests/compat.sh -e '^$' -f 'ARIA\|CHACHA'
|
|
|
|
|
}
|
2014-07-12 04:00:00 +02:00
|
|
|
|
2020-07-10 09:35:54 +02:00
|
|
|
component_test_memsan_constant_flow () {
|
2020-07-22 11:09:28 +02:00
|
|
|
# This tests both (1) accesses to undefined memory, and (2) branches or
|
|
|
|
|
# memory access depending on secret values. To distinguish between those:
|
|
|
|
|
# - unset MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN - does the failure persist?
|
|
|
|
|
# - or alternatively, change the build type to MemSanDbg, which enables
|
|
|
|
|
# origin tracking and nicer stack traces (which are useful for debugging
|
|
|
|
|
# anyway), and check if the origin was TEST_CF_SECRET() or something else.
|
|
|
|
|
msg "build: cmake MSan (clang), full config with constant flow testing"
|
2020-07-10 09:35:54 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_TEST_CONSTANT_FLOW_MEMSAN
|
|
|
|
|
scripts/config.py unset MBEDTLS_AESNI_C # memsan doesn't grok asm
|
|
|
|
|
CC=clang cmake -D CMAKE_BUILD_TYPE:String=MemSan .
|
|
|
|
|
make
|
|
|
|
|
|
2020-07-22 11:09:28 +02:00
|
|
|
msg "test: main suites (Msan + constant flow)"
|
2020-07-10 09:35:54 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-08-19 10:27:38 +02:00
|
|
|
component_test_valgrind_constant_flow () {
|
|
|
|
|
# This tests both (1) everything that valgrind's memcheck usually checks
|
|
|
|
|
# (heap buffer overflows, use of uninitialized memory, use-after-free,
|
|
|
|
|
# etc.) and (2) branches or memory access depending on secret values,
|
|
|
|
|
# which will be reported as uninitialized memory. To distinguish between
|
|
|
|
|
# secret and actually uninitialized:
|
|
|
|
|
# - unset MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND - does the failure persist?
|
|
|
|
|
# - or alternatively, build with debug info and manually run the offending
|
|
|
|
|
# test suite with valgrind --track-origins=yes, then check if the origin
|
|
|
|
|
# was TEST_CF_SECRET() or something else.
|
|
|
|
|
msg "build: cmake release GCC, full config with constant flow testing"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_TEST_CONSTANT_FLOW_VALGRIND
|
|
|
|
|
cmake -D CMAKE_BUILD_TYPE:String=Release .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
# this only shows a summary of the results (how many of each type)
|
|
|
|
|
# details are left in Testing/<date>/DynamicAnalysis.xml
|
|
|
|
|
msg "test: main suites (valgrind + constant flow)"
|
|
|
|
|
make memcheck
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-13 01:03:21 +02:00
|
|
|
component_test_default_no_deprecated () {
|
2020-04-30 09:07:29 +02:00
|
|
|
# Test that removing the deprecated features from the default
|
|
|
|
|
# configuration leaves something consistent.
|
2020-04-13 01:03:21 +02:00
|
|
|
msg "build: make, default + MBEDTLS_DEPRECATED_REMOVED" # ~ 30s
|
|
|
|
|
scripts/config.py set MBEDTLS_DEPRECATED_REMOVED
|
|
|
|
|
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra'
|
|
|
|
|
|
|
|
|
|
msg "test: make, default + MBEDTLS_DEPRECATED_REMOVED" # ~ 5s
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_full_no_deprecated () {
|
2020-04-20 21:39:22 +02:00
|
|
|
msg "build: make, full_no_deprecated config" # ~ 30s
|
|
|
|
|
scripts/config.py full_no_deprecated
|
2020-04-13 01:03:21 +02:00
|
|
|
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra'
|
|
|
|
|
|
2020-04-20 21:39:22 +02:00
|
|
|
msg "test: make, full_no_deprecated config" # ~ 5s
|
2020-04-13 01:03:21 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-30 09:07:29 +02:00
|
|
|
component_test_full_no_deprecated_deprecated_warning () {
|
|
|
|
|
# Test that there is nothing deprecated in "full_no_deprecated".
|
|
|
|
|
# A deprecated feature would trigger a warning (made fatal) from
|
|
|
|
|
# MBEDTLS_DEPRECATED_WARNING.
|
2020-04-20 21:39:22 +02:00
|
|
|
msg "build: make, full_no_deprecated config, MBEDTLS_DEPRECATED_WARNING" # ~ 30s
|
|
|
|
|
scripts/config.py full_no_deprecated
|
2020-04-13 01:03:21 +02:00
|
|
|
scripts/config.py unset MBEDTLS_DEPRECATED_REMOVED
|
|
|
|
|
scripts/config.py set MBEDTLS_DEPRECATED_WARNING
|
|
|
|
|
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra'
|
|
|
|
|
|
2020-04-20 21:39:22 +02:00
|
|
|
msg "test: make, full_no_deprecated config, MBEDTLS_DEPRECATED_WARNING" # ~ 5s
|
2020-04-13 01:03:21 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-30 09:07:29 +02:00
|
|
|
component_test_full_deprecated_warning () {
|
|
|
|
|
# Test that when MBEDTLS_DEPRECATED_WARNING is enabled, the build passes
|
|
|
|
|
# with only certain whitelisted types of warnings.
|
2020-04-13 01:03:21 +02:00
|
|
|
msg "build: make, full config + MBEDTLS_DEPRECATED_WARNING, expect warnings" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_DEPRECATED_WARNING
|
2020-04-13 01:03:21 +02:00
|
|
|
# Expect warnings from '#warning' directives in check_config.h.
|
|
|
|
|
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra -Wno-error=cpp' lib programs
|
2018-02-20 12:02:07 +01:00
|
|
|
|
2020-04-30 09:07:29 +02:00
|
|
|
msg "build: make tests, full config + MBEDTLS_DEPRECATED_WARNING, expect warnings" # ~ 30s
|
|
|
|
|
# Set MBEDTLS_TEST_DEPRECATED to enable tests for deprecated features.
|
|
|
|
|
# By default those are disabled when MBEDTLS_DEPRECATED_WARNING is set.
|
2020-04-13 01:03:21 +02:00
|
|
|
# Expect warnings from '#warning' directives in check_config.h and
|
|
|
|
|
# from the use of deprecated functions in test suites.
|
|
|
|
|
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra -Wno-error=deprecated-declarations -Wno-error=cpp -DMBEDTLS_TEST_DEPRECATED' tests
|
2019-11-26 17:37:37 +01:00
|
|
|
|
2020-04-13 01:03:21 +02:00
|
|
|
msg "test: full config + MBEDTLS_TEST_DEPRECATED" # ~ 30s
|
|
|
|
|
make test
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2020-01-31 14:24:14 +01:00
|
|
|
# Check that the specified libraries exist and are empty.
|
|
|
|
|
are_empty_libraries () {
|
|
|
|
|
nm "$@" >/dev/null 2>/dev/null
|
|
|
|
|
! nm "$@" 2>/dev/null | grep -v ':$' | grep .
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_build_crypto_default () {
|
|
|
|
|
msg "build: make, crypto only"
|
|
|
|
|
scripts/config.py crypto
|
2020-02-03 11:59:20 +01:00
|
|
|
make CFLAGS='-O1 -Werror'
|
2020-01-31 14:24:14 +01:00
|
|
|
if_build_succeeded are_empty_libraries library/libmbedx509.* library/libmbedtls.*
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_build_crypto_full () {
|
|
|
|
|
msg "build: make, crypto only, full config"
|
|
|
|
|
scripts/config.py crypto_full
|
2020-02-03 11:59:20 +01:00
|
|
|
make CFLAGS='-O1 -Werror'
|
2020-01-31 14:24:14 +01:00
|
|
|
if_build_succeeded are_empty_libraries library/libmbedx509.* library/libmbedtls.*
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_build_crypto_baremetal () {
|
|
|
|
|
msg "build: make, crypto only, baremetal config"
|
|
|
|
|
scripts/config.py crypto_baremetal
|
2020-02-03 11:59:20 +01:00
|
|
|
make CFLAGS='-O1 -Werror'
|
2020-01-31 14:24:14 +01:00
|
|
|
if_build_succeeded are_empty_libraries library/libmbedx509.* library/libmbedtls.*
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_depends_curves () {
|
|
|
|
|
msg "test/build: curves.pl (gcc)" # ~ 4 min
|
|
|
|
|
record_status tests/scripts/curves.pl
|
|
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2020-08-20 15:16:41 +02:00
|
|
|
component_test_depends_curves_psa () {
|
|
|
|
|
msg "test/build: curves.pl with MBEDTLS_USE_PSA_CRYPTO defined (gcc)"
|
|
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
record_status tests/scripts/curves.pl
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_depends_hashes () {
|
|
|
|
|
msg "test/build: depends-hashes.pl (gcc)" # ~ 2 min
|
|
|
|
|
record_status tests/scripts/depends-hashes.pl
|
|
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2020-08-25 03:29:15 +02:00
|
|
|
component_test_depends_hashes_psa () {
|
|
|
|
|
msg "test/build: depends-hashes.pl with MBEDTLS_USE_PSA_CRYPTO defined (gcc)"
|
|
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
record_status tests/scripts/depends-hashes.pl
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_depends_pkalgs () {
|
|
|
|
|
msg "test/build: depends-pkalgs.pl (gcc)" # ~ 2 min
|
|
|
|
|
record_status tests/scripts/depends-pkalgs.pl
|
|
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2020-09-09 07:19:56 +02:00
|
|
|
component_test_depends_pkalgs_psa () {
|
|
|
|
|
msg "test/build: depends-pkalgs.pl with MBEDTLS_USE_PSA_CRYPTO defined (gcc)"
|
|
|
|
|
scripts/config.py set MBEDTLS_USE_PSA_CRYPTO
|
2018-11-27 15:58:47 +01:00
|
|
|
record_status tests/scripts/depends-pkalgs.pl
|
|
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_key_exchanges () {
|
|
|
|
|
msg "test/build: key-exchanges (gcc)" # ~ 1 min
|
|
|
|
|
record_status tests/scripts/key-exchanges.pl
|
|
|
|
|
}
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_default_make_gcc_and_cxx () {
|
|
|
|
|
msg "build: Unix make, -Os (gcc)" # ~ 30s
|
|
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -Os'
|
2018-10-30 11:20:45 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: verify header list in cpp_dummy_build.cpp"
|
|
|
|
|
record_status check_headers_in_cpp
|
2014-11-20 13:29:53 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "build: Unix make, incremental g++"
|
|
|
|
|
make TEST_CPP=1
|
|
|
|
|
}
|
2017-06-06 11:36:16 +02:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
component_test_no_use_psa_crypto_full_cmake_asan() {
|
|
|
|
|
# full minus MBEDTLS_USE_PSA_CRYPTO: run the same set of tests as basic-build-test.sh
|
2019-09-03 11:42:04 +02:00
|
|
|
msg "build: cmake, full config minus MBEDTLS_USE_PSA_CRYPTO, ASan"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_ECP_RESTARTABLE # not using PSA, so enable restartable ECC
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_ITS_FILE_C
|
2020-04-12 14:21:55 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_SE_C
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C
|
2019-02-01 11:12:52 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
2019-02-01 13:03:03 +01:00
|
|
|
make
|
2018-07-02 15:08:21 +02:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
msg "test: main suites (full minus MBEDTLS_USE_PSA_CRYPTO)"
|
2019-02-01 13:03:03 +01:00
|
|
|
make test
|
2019-01-31 14:20:20 +01:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
msg "test: ssl-opt.sh (full minus MBEDTLS_USE_PSA_CRYPTO)"
|
2019-02-01 13:03:03 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
2019-01-31 14:20:20 +01:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
msg "test: compat.sh default (full minus MBEDTLS_USE_PSA_CRYPTO)"
|
2019-02-01 13:03:03 +01:00
|
|
|
if_build_succeeded tests/compat.sh
|
2019-01-31 14:20:20 +01:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
msg "test: compat.sh RC4, DES & NULL (full minus MBEDTLS_USE_PSA_CRYPTO)"
|
2019-02-01 13:03:03 +01:00
|
|
|
if_build_succeeded env OPENSSL_CMD="$OPENSSL_LEGACY" GNUTLS_CLI="$GNUTLS_LEGACY_CLI" GNUTLS_SERV="$GNUTLS_LEGACY_SERV" tests/compat.sh -e '3DES\|DES-CBC3' -f 'NULL\|DES\|RC4\|ARCFOUR'
|
2015-05-20 11:13:56 +02:00
|
|
|
|
2019-02-01 12:38:40 +01:00
|
|
|
msg "test: compat.sh ARIA + ChachaPoly (full minus MBEDTLS_USE_PSA_CRYPTO)"
|
2019-02-01 13:03:03 +01:00
|
|
|
if_build_succeeded env OPENSSL_CMD="$OPENSSL_NEXT" tests/compat.sh -e '^$' -f 'ARIA\|CHACHA'
|
|
|
|
|
}
|
2017-09-18 16:36:25 +02:00
|
|
|
|
2020-09-21 08:09:17 +02:00
|
|
|
component_test_psa_crypto_config_basic() {
|
2021-03-11 11:49:03 +01:00
|
|
|
# Test the library excluding all Mbed TLS cryptographic support for which
|
|
|
|
|
# we have an accelerator support. Acceleration is faked with the
|
|
|
|
|
# transparent test driver.
|
|
|
|
|
msg "test: full + MBEDTLS_PSA_CRYPTO_CONFIG + as much acceleration as supported"
|
2020-09-21 08:09:17 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2021-03-11 11:49:03 +01:00
|
|
|
|
|
|
|
|
# There is no intended accelerator support for ALG STREAM_CIPHER and
|
|
|
|
|
# ALG_ECB_NO_PADDING. Therefore, asking for them in the build implies the
|
|
|
|
|
# inclusion of the Mbed TLS cipher operations. As we want to test here with
|
|
|
|
|
# cipher operations solely supported by accelerators, disabled those
|
|
|
|
|
# PSA configuration options.
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_STREAM_CIPHER
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_ECB_NO_PADDING
|
|
|
|
|
|
|
|
|
|
# Don't test DES encryption as:
|
|
|
|
|
# 1) It is not an issue if we don't test all cipher types here.
|
|
|
|
|
# 2) That way we don't have to modify in psa_crypto.c the compilation
|
|
|
|
|
# guards MBEDTLS_PSA_BUILTIN_KEY_TYPE_DES for the code they guard to be
|
|
|
|
|
# available to the test driver. Modifications that we would need to
|
|
|
|
|
# revert when we move to compile the test driver separately.
|
|
|
|
|
# We also disable MBEDTLS_DES_C as the dependencies on DES in PSA test
|
|
|
|
|
# suites are still based on MBEDTLS_DES_C and not PSA_WANT_KEY_TYPE_DES.
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_KEY_TYPE_DES
|
|
|
|
|
scripts/config.py unset MBEDTLS_DES_C
|
|
|
|
|
|
2020-09-21 08:09:17 +02:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST"
|
2021-03-11 11:49:03 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_AES"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_CAMELLIA"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR"
|
2021-03-11 11:49:03 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_RSA_KEY_PAIR"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CBC_NO_PADDING"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CBC_PKCS7"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CTR"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CFB"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_ECDSA"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_DETERMINISTIC_ECDSA"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD2"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD4"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD5"
|
2021-03-11 11:49:03 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_OFB"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RIPEMD160"
|
2021-03-11 11:49:03 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RSA_PKCS1V15_SIGN"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RSA_PSS"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_1"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_224"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_256"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_384"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_512"
|
2021-03-11 11:49:03 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_XTS"
|
2021-03-19 19:36:38 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CMAC"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_HMAC"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -I../tests/include -O2"
|
|
|
|
|
|
|
|
|
|
make CC=gcc CFLAGS="$loc_cflags" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
unset loc_cflags
|
2020-09-21 08:09:17 +02:00
|
|
|
|
2020-10-23 10:26:57 +02:00
|
|
|
msg "test: full + MBEDTLS_PSA_CRYPTO_CONFIG"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_psa_crypto_config_no_driver() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG minus MBEDTLS_PSA_CRYPTO_DRIVERS"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-10-26 17:55:01 +01:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -O2" LDFLAGS="$ASAN_CFLAGS"
|
2020-10-23 10:26:57 +02:00
|
|
|
|
|
|
|
|
msg "test: full + MBEDTLS_PSA_CRYPTO_CONFIG minus MBEDTLS_PSA_CRYPTO_DRIVERS"
|
2020-09-21 08:09:17 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-10-23 10:32:15 +02:00
|
|
|
# This should be renamed to test and updated once the accelerator ECDSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_ecdsa() {
|
2020-10-13 06:47:19 +02:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_ECDSA
|
|
|
|
|
# without MBEDTLS_ECDSA_C
|
2020-10-23 09:51:52 +02:00
|
|
|
# PSA_WANT_ALG_ECDSA and PSA_WANT_ALG_DETERMINISTIC_ECDSA are already
|
|
|
|
|
# set in include/psa/crypto_config.h
|
2020-10-13 06:47:19 +02:00
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_ECDSA without MBEDTLS_ECDSA_C"
|
2020-09-21 08:09:17 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDSA_C
|
2020-10-23 09:51:52 +02:00
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
2020-09-21 08:09:17 +02:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-10-23 09:51:52 +02:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_ECDSA -DMBEDTLS_PSA_ACCEL_ALG_DETERMINISTIC_ECDSA -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
2020-09-21 08:09:17 +02:00
|
|
|
}
|
|
|
|
|
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# This should be renamed to test and updated once the accelerator ECDH code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_ecdh() {
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_ECDH
|
|
|
|
|
# without MBEDTLS_ECDH_C
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_ECDH without MBEDTLS_ECDH_C"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py unset MBEDTLS_ECDH_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
|
|
|
|
|
scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_ECDH -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
2020-10-29 04:09:55 +01:00
|
|
|
# This should be renamed to test and updated once the accelerator ECC key pair code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_key_type_ecc_key_pair() {
|
2020-11-04 21:28:15 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_KEY_TYPE_ECC_KEY_PAIR"
|
2020-10-29 04:09:55 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-11-04 21:28:15 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_KEY_TYPE_ECC_KEY_PAIR 1
|
2020-11-17 07:08:34 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY 1
|
2020-10-29 04:09:55 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-11-04 21:28:15 +01:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
2020-10-29 04:09:55 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator ECC public key code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_key_type_ecc_public_key() {
|
2020-11-04 21:28:15 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY"
|
2020-10-29 04:09:55 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-11-04 21:28:15 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY 1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
|
2020-10-29 04:09:55 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-11-04 21:28:15 +01:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_PUBLIC_KEY -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
2020-10-29 04:09:55 +01:00
|
|
|
}
|
|
|
|
|
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# This should be renamed to test and updated once the accelerator HMAC code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_hmac() {
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_HMAC
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_HMAC"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_HMAC -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator HKDF code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_hkdf() {
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_HKDF
|
|
|
|
|
# without MBEDTLS_HKDF_C
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_HKDF without MBEDTLS_HKDF_C"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py unset MBEDTLS_HKDF_C
|
2020-11-01 06:14:03 +01:00
|
|
|
# Make sure to unset TLS1_3_EXPERIMENTAL since it requires HKDF_C and will not build properly without it.
|
|
|
|
|
scripts/config.py unset MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_HKDF -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
2020-11-27 17:51:22 +01:00
|
|
|
# This should be renamed to test and updated once the accelerator MD2 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_md2() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_MD2 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_MD2 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_MD2 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator MD4 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_md4() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_MD4 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_MD4 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_MD4 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator MD5 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_md5() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_MD5 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_MD5 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_MD5 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RIPEMD160 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_ripemd160() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_RIPEMD160 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_RIPEMD160 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_RIPEMD160 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator SHA1 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_sha1() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_SHA_1 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_SHA_1 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_SHA_1 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator SHA224 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_sha224() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_SHA_224 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_SHA_224 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_SHA_224 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator SHA256 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_sha256() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_SHA_256 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_SHA_256 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_512
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_SHA_256 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator SHA384 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_sha384() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_SHA_384 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_SHA_384 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_SHA_384 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator SHA512 code is in place and ready to test.
|
|
|
|
|
component_build_psa_accel_alg_sha512() {
|
|
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_SHA_512 without other hashes
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_SHA_512 - other hashes"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD2
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD4
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_MD5
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RIPEMD160
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_224
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_256
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_SHA_384
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_SHA_512 -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_rsa_pkcs1v15_crypt() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_RSA_PKCS1V15_CRYPT + PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_PKCS1V15_CRYPT 1
|
2020-11-04 04:05:36 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_SIGN
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_OAEP
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PSS
|
2020-11-01 06:14:03 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_RSA_PKCS1V15_CRYPT -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_rsa_pkcs1v15_sign() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_RSA_PKCS1V15_SIGN and PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_RSA_PKCS1V15_SIGN + PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_PKCS1V15_SIGN 1
|
2020-11-04 04:05:36 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_OAEP
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PSS
|
2020-11-01 06:14:03 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_RSA_PKCS1V15_SIGN -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_rsa_oaep() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_RSA_OAEP and PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_RSA_OAEP + PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_OAEP 1
|
2020-11-04 04:05:36 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_SIGN
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PSS
|
2020-11-01 06:14:03 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_RSA_OAEP -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_alg_rsa_pss() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_ALG_RSA_PSS and PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_ALG_RSA_PSS + PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_PSS 1
|
2020-11-04 04:05:36 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_PKCS1V15_SIGN
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_RSA_OAEP
|
2020-11-01 06:14:03 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_ALG_RSA_PSS -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_key_type_rsa_key_pair() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_KEY_TYPE_RSA_KEY_PAIR and PSA_WANT_ALG_RSA_PSS
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_KEY_TYPE_RSA_KEY_PAIR + PSA_WANT_ALG_RSA_PSS"
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_PSS 1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_KEY_TYPE_RSA_KEY_PAIR 1
|
|
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
|
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_KEY_TYPE_RSA_KEY_PAIR -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# This should be renamed to test and updated once the accelerator RSA code is in place and ready to test.
|
2020-11-10 17:50:04 +01:00
|
|
|
component_build_psa_accel_key_type_rsa_public_key() {
|
2020-11-01 06:14:03 +01:00
|
|
|
# full plus MBEDTLS_PSA_CRYPTO_CONFIG with PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY and PSA_WANT_ALG_RSA_PSS
|
|
|
|
|
msg "build: full + MBEDTLS_PSA_CRYPTO_CONFIG + PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY + PSA_WANT_ALG_RSA_PSS"
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
|
|
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
|
|
|
|
scripts/config.py unset MBEDTLS_USE_PSA_CRYPTO
|
2020-11-01 06:14:03 +01:00
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_ALG_RSA_PSS 1
|
|
|
|
|
scripts/config.py -f include/psa/crypto_config.h set PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY 1
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-11-01 06:14:03 +01:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_PSA_ACCEL_KEY_TYPE_RSA_PUBLIC_KEY -I../tests/include -O2" LDFLAGS="$ASAN_CFLAGS"
|
Phase 2 support for MBEDTLS_PSA_CRYPTO_CONFIG
This phase adds in support for the following features being
added to the list of features that can be configured in the
include/psa/crypto_config.h header file using the PSA_WANT_ALG_xxx
macros: ECDH, HMAC, HKDF, and RSA. These changes include changes to
the PSA crypto library to use the appropriate new guards that
will allow the feature to be compiled in or out either using
new PSA_WANT_ALG_xxx or the previous MBEDTLS_xxx macros.
For HKDF and HMAC, most of the PSA library code did not have a
specific matching MBEDTLS_xxx macro for that feature, but was instead
using the generic dependent MBEDTLS_MD_C macro. The ECDH and RSA
features more closely aligned with a direct replacement with a similar
macro.
The new tests for RSA, HMAC, and HKDF would normally unset additional
dependent macros, but when attempting to implement that level of
testing it required removal of too many core features like MD_C, PK_C,
ECP_C and other low level features. This may point to additional phases of
work to complete the transition of these features to the new model.
Signed-off-by: John Durkop <john.durkop@fermatsoftware.com>
2020-10-30 05:37:36 +01:00
|
|
|
}
|
|
|
|
|
|
2019-06-12 16:05:50 +02:00
|
|
|
component_test_check_params_functionality () {
|
|
|
|
|
msg "build+test: MBEDTLS_CHECK_PARAMS functionality"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full # includes CHECK_PARAMS
|
2019-06-12 16:05:50 +02:00
|
|
|
# Make MBEDTLS_PARAM_FAILED call mbedtls_param_failed().
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_CHECK_PARAMS_ASSERT
|
2020-07-01 16:01:21 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -O1' all test
|
2019-06-12 16:05:50 +02:00
|
|
|
}
|
|
|
|
|
|
2019-01-02 19:06:24 +01:00
|
|
|
component_test_check_params_without_platform () {
|
|
|
|
|
msg "build+test: MBEDTLS_CHECK_PARAMS without MBEDTLS_PLATFORM_C"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full # includes CHECK_PARAMS
|
2019-06-12 16:05:50 +02:00
|
|
|
# Keep MBEDTLS_PARAM_FAILED as assert.
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_EXIT_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_TIME_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_FPRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_MEMORY
|
2020-04-12 23:43:28 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_NV_SEED_ALT
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_PRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_SNPRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_NV_SEED
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_C
|
2019-01-02 19:06:24 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -O1' all test
|
|
|
|
|
}
|
2015-05-29 10:31:13 +02:00
|
|
|
|
2019-01-02 19:06:24 +01:00
|
|
|
component_test_check_params_silent () {
|
|
|
|
|
msg "build+test: MBEDTLS_CHECK_PARAMS with alternative MBEDTLS_PARAM_FAILED()"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full # includes CHECK_PARAMS
|
2019-06-12 16:05:50 +02:00
|
|
|
# Set MBEDTLS_PARAM_FAILED to nothing.
|
2019-01-02 19:06:24 +01:00
|
|
|
sed -i 's/.*\(#define MBEDTLS_PARAM_FAILED( cond )\).*/\1/' "$CONFIG_H"
|
|
|
|
|
make CC=gcc CFLAGS='-Werror -O1' all test
|
|
|
|
|
}
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_platform () {
|
|
|
|
|
# Full configuration build, without platform support, file IO and net sockets.
|
|
|
|
|
# This should catch missing mbedtls_printf definitions, and by disabling file
|
|
|
|
|
# IO, it should catch missing '#include <stdio.h>'
|
|
|
|
|
msg "build: full config except platform/fsio/net, make, gcc, C99" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_NET_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_MEMORY
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_PRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_FPRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_SNPRINTF_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_TIME_ALT
|
|
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_EXIT_ALT
|
2020-04-12 23:43:28 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_NV_SEED_ALT
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_NV_SEED
|
|
|
|
|
scripts/config.py unset MBEDTLS_FS_IO
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_SE_C
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PSA_CRYPTO_STORAGE_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_PSA_ITS_FILE_C
|
2018-11-27 15:58:47 +01:00
|
|
|
# Note, _DEFAULT_SOURCE needs to be defined for platforms using glibc version >2.19,
|
|
|
|
|
# to re-enable platform integration features otherwise disabled in C99 builds
|
2019-09-20 19:23:10 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -std=c99 -pedantic -Os -D_DEFAULT_SOURCE' lib programs
|
|
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -Os' test
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-04-11 08:28:39 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_no_std_function () {
|
|
|
|
|
# catch compile bugs in _uninit functions
|
|
|
|
|
msg "build: full config with NO_STD_FUNCTION, make, gcc" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_NO_STD_FUNCTIONS
|
|
|
|
|
scripts/config.py unset MBEDTLS_ENTROPY_NV_SEED
|
2020-04-12 23:43:28 +02:00
|
|
|
scripts/config.py unset MBEDTLS_PLATFORM_NV_SEED_ALT
|
2019-09-20 19:23:10 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -Os'
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-10-11 12:02:52 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_no_ssl_srv () {
|
|
|
|
|
msg "build: full config except ssl_srv.c, make, gcc" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_SSL_SRV_C
|
2019-09-20 19:23:10 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -O1'
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-10-11 12:02:52 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_no_ssl_cli () {
|
|
|
|
|
msg "build: full config except ssl_cli.c, make, gcc" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_SSL_CLI_C
|
2019-09-20 19:23:10 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -O1'
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_no_sockets () {
|
|
|
|
|
# Note, C99 compliance can also be tested with the sockets support disabled,
|
|
|
|
|
# as that requires a POSIX platform (which isn't the same as C99).
|
|
|
|
|
msg "build: full config except net_sockets.c, make, gcc -std=c99 -pedantic" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_NET_C # getaddrinfo() undeclared, etc.
|
|
|
|
|
scripts/config.py set MBEDTLS_NO_PLATFORM_ENTROPY # uses syscall() on GNU/Linux
|
2019-09-20 19:23:10 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -O1 -std=c99 -pedantic' lib
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2019-09-05 15:27:47 +02:00
|
|
|
component_test_memory_buffer_allocator_backtrace () {
|
|
|
|
|
msg "build: default config with memory buffer allocator and backtrace enabled"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_MEMORY
|
|
|
|
|
scripts/config.py set MBEDTLS_MEMORY_BACKTRACE
|
|
|
|
|
scripts/config.py set MBEDTLS_MEMORY_DEBUG
|
2019-09-05 15:27:47 +02:00
|
|
|
CC=gcc cmake .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_MEMORY_BUFFER_ALLOC_C and MBEDTLS_MEMORY_BACKTRACE"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_memory_buffer_allocator () {
|
|
|
|
|
msg "build: default config with memory buffer allocator"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_MEMORY
|
2019-02-26 15:34:13 +01:00
|
|
|
CC=gcc cmake .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_MEMORY_BUFFER_ALLOC_C"
|
|
|
|
|
make test
|
2020-03-04 20:46:15 +01:00
|
|
|
|
|
|
|
|
msg "test: ssl-opt.sh, MBEDTLS_MEMORY_BUFFER_ALLOC_C"
|
|
|
|
|
# MBEDTLS_MEMORY_BUFFER_ALLOC is slow. Skip tests that tend to time out.
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -e '^DTLS proxy'
|
2019-02-26 15:34:13 +01:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_max_fragment_length () {
|
|
|
|
|
# Run max fragment length tests with MFL disabled
|
|
|
|
|
msg "build: default config except MFL extension (ASan build)" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: ssl-opt.sh, MFL-related tests"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "Max fragment length"
|
|
|
|
|
}
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2019-02-19 12:10:48 +01:00
|
|
|
component_test_asan_remove_peer_certificate () {
|
|
|
|
|
msg "build: default config with MBEDTLS_SSL_KEEP_PEER_CERTIFICATE disabled (ASan build)"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
|
2019-02-19 12:10:48 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: ssl-opt.sh, !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
|
|
|
|
|
msg "test: compat.sh, !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
|
|
|
|
|
if_build_succeeded tests/compat.sh
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
msg "test: context-info.sh, !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE"
|
|
|
|
|
if_build_succeeded tests/context-info.sh
|
2019-02-19 12:10:48 +01:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_max_fragment_length_small_ssl_out_content_len () {
|
|
|
|
|
msg "build: no MFL extension, small SSL_OUT_CONTENT_LEN (ASan build)"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_IN_CONTENT_LEN 16384
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_OUT_CONTENT_LEN 4096
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: MFL tests (disabled MFL extension case) & large packet tests"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "Max fragment length\|Large buffer"
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
msg "test: context-info.sh (disabled MFL extension case)"
|
|
|
|
|
if_build_succeeded tests/context-info.sh
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-07-07 13:29:15 +02:00
|
|
|
|
2019-12-02 11:53:11 +01:00
|
|
|
component_test_variable_ssl_in_out_buffer_len () {
|
|
|
|
|
msg "build: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH enabled (ASan build)"
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH enabled"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: ssl-opt.sh, MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH enabled"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
|
|
|
|
|
msg "test: compat.sh, MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH enabled"
|
|
|
|
|
if_build_succeeded tests/compat.sh
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_variable_ssl_in_out_buffer_len_CID () {
|
|
|
|
|
msg "build: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH and MBEDTLS_SSL_DTLS_CONNECTION_ID enabled (ASan build)"
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_DTLS_CONNECTION_ID
|
|
|
|
|
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH and MBEDTLS_SSL_DTLS_CONNECTION_ID"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: ssl-opt.sh, MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH and MBEDTLS_SSL_DTLS_CONNECTION_ID enabled"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
|
|
|
|
|
msg "test: compat.sh, MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH and MBEDTLS_SSL_DTLS_CONNECTION_ID enabled"
|
|
|
|
|
if_build_succeeded tests/compat.sh
|
|
|
|
|
}
|
|
|
|
|
|
2019-11-26 16:32:40 +01:00
|
|
|
component_test_ssl_alloc_buffer_and_mfl () {
|
|
|
|
|
msg "build: default config with memory buffer allocator and MFL extension"
|
|
|
|
|
scripts/config.py set MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_MEMORY
|
|
|
|
|
scripts/config.py set MBEDTLS_MEMORY_DEBUG
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_MAX_FRAGMENT_LENGTH
|
|
|
|
|
scripts/config.py set MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH
|
|
|
|
|
CC=gcc cmake .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH, MBEDTLS_MEMORY_BUFFER_ALLOC_C, MBEDTLS_MEMORY_DEBUG and MBEDTLS_SSL_MAX_FRAGMENT_LENGTH"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH, MBEDTLS_MEMORY_BUFFER_ALLOC_C, MBEDTLS_MEMORY_DEBUG and MBEDTLS_SSL_MAX_FRAGMENT_LENGTH"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f "Handshake memory usage"
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
component_test_when_no_ciphersuites_have_mac () {
|
|
|
|
|
msg "build: when no ciphersuites have MAC"
|
|
|
|
|
scripts/config.py unset MBEDTLS_CIPHER_NULL_CIPHER
|
|
|
|
|
scripts/config.py unset MBEDTLS_ARC4_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_CIPHER_MODE_CBC
|
2021-04-28 16:50:20 +02:00
|
|
|
scripts/config.py unset MBEDTLS_CMAC_C
|
2020-03-04 20:46:15 +01:00
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: !MBEDTLS_SSL_SOME_MODES_USE_MAC"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test ssl-opt.sh: !MBEDTLS_SSL_SOME_MODES_USE_MAC"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f 'Default\|EtM' -e 'without EtM'
|
|
|
|
|
}
|
|
|
|
|
|
2020-06-15 17:03:13 +02:00
|
|
|
component_test_no_date_time () {
|
|
|
|
|
msg "build: default config without MBEDTLS_HAVE_TIME_DATE"
|
|
|
|
|
scripts/config.py unset MBEDTLS_HAVE_TIME_DATE
|
|
|
|
|
CC=gcc cmake
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: !MBEDTLS_HAVE_TIME_DATE - main suites"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_platform_calloc_macro () {
|
|
|
|
|
msg "build: MBEDTLS_PLATFORM_{CALLOC/FREE}_MACRO enabled (ASan build)"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_MEMORY
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_CALLOC_MACRO calloc
|
|
|
|
|
scripts/config.py set MBEDTLS_PLATFORM_FREE_MACRO free
|
2018-11-27 15:58:47 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_PLATFORM_{CALLOC/FREE}_MACRO enabled (ASan build)"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2019-09-17 19:04:38 +02:00
|
|
|
component_test_malloc_0_null () {
|
|
|
|
|
msg "build: malloc(0) returns NULL (ASan+UBSan build)"
|
2020-03-04 10:34:47 +01:00
|
|
|
scripts/config.py full
|
2019-10-21 17:11:33 +02:00
|
|
|
make CC=gcc CFLAGS="'-DMBEDTLS_CONFIG_FILE=\"$PWD/tests/configs/config-wrapper-malloc-0-null.h\"' $ASAN_CFLAGS -O" LDFLAGS="$ASAN_CFLAGS"
|
2019-09-17 19:04:38 +02:00
|
|
|
|
|
|
|
|
msg "test: malloc(0) returns NULL (ASan+UBSan build)"
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "selftest: malloc(0) returns NULL (ASan+UBSan build)"
|
|
|
|
|
# Just the calloc selftest. "make test" ran the others as part of the
|
|
|
|
|
# test suites.
|
|
|
|
|
if_build_succeeded programs/test/selftest calloc
|
2020-02-11 18:26:34 +01:00
|
|
|
|
|
|
|
|
msg "test ssl-opt.sh: malloc(0) returns NULL (ASan+UBSan build)"
|
|
|
|
|
# Run a subset of the tests. The choice is a balance between coverage
|
|
|
|
|
# and time (including time indirectly wasted due to flaky tests).
|
|
|
|
|
# The current choice is to skip tests whose description includes
|
|
|
|
|
# "proxy", which is an approximation of skipping tests that use the
|
|
|
|
|
# UDP proxy, which tend to be slower and flakier.
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -e 'proxy'
|
2019-09-17 19:04:38 +02:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_aes_fewer_tables () {
|
|
|
|
|
msg "build: default config with AES_FEWER_TABLES enabled"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_AES_FEWER_TABLES
|
2018-11-27 15:58:47 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra'
|
|
|
|
|
|
|
|
|
|
msg "test: AES_FEWER_TABLES"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_aes_rom_tables () {
|
|
|
|
|
msg "build: default config with AES_ROM_TABLES enabled"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_AES_ROM_TABLES
|
2018-11-27 15:58:47 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra'
|
|
|
|
|
|
|
|
|
|
msg "test: AES_ROM_TABLES"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_aes_fewer_tables_and_rom_tables () {
|
|
|
|
|
msg "build: default config with AES_ROM_TABLES and AES_FEWER_TABLES enabled"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_AES_FEWER_TABLES
|
|
|
|
|
scripts/config.py set MBEDTLS_AES_ROM_TABLES
|
2018-11-27 15:58:47 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra'
|
|
|
|
|
|
|
|
|
|
msg "test: AES_FEWER_TABLES + AES_ROM_TABLES"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2019-10-07 18:49:32 +02:00
|
|
|
component_test_ctr_drbg_aes_256_sha_256 () {
|
|
|
|
|
msg "build: full + MBEDTLS_ENTROPY_FORCE_SHA256 (ASan build)"
|
2020-02-18 17:56:33 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_ENTROPY_FORCE_SHA256
|
2019-10-07 18:49:32 +02:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: full + MBEDTLS_ENTROPY_FORCE_SHA256 (ASan build)"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_ctr_drbg_aes_128_sha_512 () {
|
|
|
|
|
msg "build: full + MBEDTLS_CTR_DRBG_USE_128_BIT_KEY (ASan build)"
|
2020-02-18 17:56:33 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
2019-10-07 18:49:32 +02:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: full + MBEDTLS_CTR_DRBG_USE_128_BIT_KEY (ASan build)"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_ctr_drbg_aes_128_sha_256 () {
|
|
|
|
|
msg "build: full + MBEDTLS_CTR_DRBG_USE_128_BIT_KEY + MBEDTLS_ENTROPY_FORCE_SHA256 (ASan build)"
|
2020-02-18 17:56:33 +01:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py unset MBEDTLS_MEMORY_BUFFER_ALLOC_C
|
|
|
|
|
scripts/config.py set MBEDTLS_CTR_DRBG_USE_128_BIT_KEY
|
|
|
|
|
scripts/config.py set MBEDTLS_ENTROPY_FORCE_SHA256
|
2019-10-07 18:49:32 +02:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: full + MBEDTLS_CTR_DRBG_USE_128_BIT_KEY + MBEDTLS_ENTROPY_FORCE_SHA256 (ASan build)"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2019-07-24 14:58:38 +02:00
|
|
|
component_test_se_default () {
|
|
|
|
|
msg "build: default config + MBEDTLS_PSA_CRYPTO_SE_C"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_SE_C
|
2019-10-21 17:11:33 +02:00
|
|
|
make CC=clang CFLAGS="$ASAN_CFLAGS -Os" LDFLAGS="$ASAN_CFLAGS"
|
2019-07-24 14:58:38 +02:00
|
|
|
|
|
|
|
|
msg "test: default config + MBEDTLS_PSA_CRYPTO_SE_C"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-16 20:28:59 +02:00
|
|
|
component_test_psa_crypto_drivers () {
|
2020-07-17 19:46:15 +02:00
|
|
|
msg "build: MBEDTLS_PSA_CRYPTO_DRIVERS w/ driver hooks"
|
2021-03-15 11:38:44 +01:00
|
|
|
scripts/config.py full
|
2020-07-16 20:28:59 +02:00
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
|
2021-02-19 17:21:22 +01:00
|
|
|
scripts/config.py set MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS
|
2020-07-23 16:26:08 +02:00
|
|
|
# Need to define the correct symbol and include the test driver header path in order to build with the test driver
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="$ASAN_CFLAGS -DPSA_CRYPTO_DRIVER_TEST"
|
2021-03-19 14:57:08 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_AES"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_CAMELLIA"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_ECC_KEY_PAIR"
|
2021-03-19 14:57:08 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_KEY_TYPE_RSA_KEY_PAIR"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CBC_NO_PADDING"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CBC_PKCS7"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CTR"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CFB"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_ECDSA"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_DETERMINISTIC_ECDSA"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD2"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD4"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_MD5"
|
2021-03-19 14:57:08 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_OFB"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RIPEMD160"
|
2021-03-19 14:57:08 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RSA_PKCS1V15_SIGN"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_RSA_PSS"
|
2021-03-08 17:17:15 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_1"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_224"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_256"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_384"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_SHA_512"
|
2021-03-19 14:57:08 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_XTS"
|
2021-03-19 19:36:38 +01:00
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_CMAC"
|
|
|
|
|
loc_cflags="${loc_cflags} -DMBEDTLS_PSA_ACCEL_ALG_HMAC"
|
2020-12-10 18:17:09 +01:00
|
|
|
loc_cflags="${loc_cflags} -I../tests/include -O2"
|
|
|
|
|
|
|
|
|
|
make CC=gcc CFLAGS="${loc_cflags}" LDFLAGS="$ASAN_CFLAGS"
|
|
|
|
|
unset loc_cflags
|
2020-07-16 20:28:59 +02:00
|
|
|
|
2021-03-15 11:38:44 +01:00
|
|
|
msg "test: full + MBEDTLS_PSA_CRYPTO_DRIVERS"
|
2020-07-16 20:28:59 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_make_shared () {
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "build/test: make shared" # ~ 40s
|
2019-10-03 09:18:01 +02:00
|
|
|
make SHARED=1 all check
|
2019-07-03 20:43:32 +02:00
|
|
|
ldd programs/util/strerror | grep libmbedcrypto
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2015-06-25 09:56:07 +02:00
|
|
|
|
2019-07-03 20:43:05 +02:00
|
|
|
component_test_cmake_shared () {
|
|
|
|
|
msg "build/test: cmake shared" # ~ 2min
|
|
|
|
|
cmake -DUSE_SHARED_MBEDTLS_LIBRARY=On .
|
|
|
|
|
make
|
2019-07-03 20:43:32 +02:00
|
|
|
ldd programs/util/strerror | grep libmbedcrypto
|
2019-07-03 20:43:05 +02:00
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2019-09-20 19:56:06 +02:00
|
|
|
test_build_opt () {
|
|
|
|
|
info=$1 cc=$2; shift 2
|
|
|
|
|
for opt in "$@"; do
|
|
|
|
|
msg "build/test: $cc $opt, $info" # ~ 30s
|
2020-04-14 20:08:41 +02:00
|
|
|
make CC="$cc" CFLAGS="$opt -std=c99 -pedantic -Wall -Wextra -Werror"
|
2019-09-20 19:56:06 +02:00
|
|
|
# We're confident enough in compilers to not run _all_ the tests,
|
|
|
|
|
# but at least run the unit tests. In particular, runs with
|
|
|
|
|
# optimizations use inline assembly whereas runs with -O0
|
|
|
|
|
# skip inline assembly.
|
|
|
|
|
make test # ~30s
|
|
|
|
|
make clean
|
|
|
|
|
done
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_clang_opt () {
|
2020-03-04 10:34:47 +01:00
|
|
|
scripts/config.py full
|
2019-09-20 19:56:06 +02:00
|
|
|
test_build_opt 'full config' clang -O0 -Os -O2
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_test_gcc_opt () {
|
2020-03-04 10:34:47 +01:00
|
|
|
scripts/config.py full
|
2019-09-20 19:56:06 +02:00
|
|
|
test_build_opt 'full config' gcc -O0 -Os -O2
|
|
|
|
|
}
|
|
|
|
|
|
2019-07-03 20:42:16 +02:00
|
|
|
component_build_mbedtls_config_file () {
|
|
|
|
|
msg "build: make with MBEDTLS_CONFIG_FILE" # ~40s
|
|
|
|
|
# Use the full config so as to catch a maximum of places where
|
|
|
|
|
# the check of MBEDTLS_CONFIG_FILE might be missing.
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-07-03 20:42:16 +02:00
|
|
|
sed 's!"check_config.h"!"mbedtls/check_config.h"!' <"$CONFIG_H" >full_config.h
|
|
|
|
|
echo '#error "MBEDTLS_CONFIG_FILE is not working"' >"$CONFIG_H"
|
|
|
|
|
make CFLAGS="-I '$PWD' -DMBEDTLS_CONFIG_FILE='\"full_config.h\"'"
|
|
|
|
|
rm -f full_config.h
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2015-06-25 09:56:07 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_m32_o0 () {
|
2018-07-20 22:27:33 +02:00
|
|
|
# Build once with -O0, to compile out the i386 specific inline assembly
|
|
|
|
|
msg "build: i386, make, gcc -O0 (ASan build)" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-10-21 17:11:33 +02:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -m32 -O0" LDFLAGS="-m32 $ASAN_CFLAGS"
|
2017-05-04 12:35:51 +02:00
|
|
|
|
2018-07-20 22:27:33 +02:00
|
|
|
msg "test: i386, make, gcc -O0 (ASan build)"
|
|
|
|
|
make test
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2019-01-06 21:50:38 +01:00
|
|
|
support_test_m32_o0 () {
|
|
|
|
|
case $(uname -m) in
|
|
|
|
|
*64*) true;;
|
|
|
|
|
*) false;;
|
|
|
|
|
esac
|
|
|
|
|
}
|
2018-07-20 22:27:33 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_m32_o1 () {
|
2018-07-20 22:27:33 +02:00
|
|
|
# Build again with -O1, to compile in the i386 specific inline assembly
|
|
|
|
|
msg "build: i386, make, gcc -O1 (ASan build)" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-10-21 17:11:33 +02:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -m32 -O1" LDFLAGS="-m32 $ASAN_CFLAGS"
|
2018-07-20 22:27:33 +02:00
|
|
|
|
|
|
|
|
msg "test: i386, make, gcc -O1 (ASan build)"
|
2017-05-08 12:19:19 +02:00
|
|
|
make test
|
2020-03-04 20:46:15 +01:00
|
|
|
|
|
|
|
|
msg "test ssl-opt.sh, i386, make, gcc-O1"
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2019-01-06 21:50:38 +01:00
|
|
|
support_test_m32_o1 () {
|
|
|
|
|
support_test_m32_o0 "$@"
|
|
|
|
|
}
|
2017-05-08 12:19:19 +02:00
|
|
|
|
2019-04-12 20:29:48 +02:00
|
|
|
component_test_m32_everest () {
|
|
|
|
|
msg "build: i386, Everest ECDH context (ASan build)" # ~ 6 min
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_ECDH_VARIANT_EVEREST_ENABLED
|
2019-10-21 17:11:33 +02:00
|
|
|
make CC=gcc CFLAGS="$ASAN_CFLAGS -m32 -O2" LDFLAGS="-m32 $ASAN_CFLAGS"
|
2019-04-12 20:29:48 +02:00
|
|
|
|
|
|
|
|
msg "test: i386, Everest ECDH context - main suites (inc. selftests) (ASan build)" # ~ 50s
|
|
|
|
|
make test
|
2020-03-04 20:46:15 +01:00
|
|
|
|
|
|
|
|
msg "test: i386, Everest ECDH context - ECDH-related part of ssl-opt.sh (ASan build)" # ~ 5s
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh -f ECDH
|
|
|
|
|
|
|
|
|
|
msg "test: i386, Everest ECDH context - compat.sh with some ECDH ciphersuites (ASan build)" # ~ 3 min
|
|
|
|
|
# Exclude some symmetric ciphers that are redundant here to gain time.
|
|
|
|
|
if_build_succeeded tests/compat.sh -f ECDH -V NO -e 'ARCFOUR\|ARIA\|CAMELLIA\|CHACHA\|DES\|RC4'
|
2019-04-12 20:29:48 +02:00
|
|
|
}
|
|
|
|
|
support_test_m32_everest () {
|
|
|
|
|
support_test_m32_o0 "$@"
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_mx32 () {
|
2017-05-08 12:19:19 +02:00
|
|
|
msg "build: 64-bit ILP32, make, gcc" # ~ 30s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
2019-06-07 14:50:09 +02:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -mx32' LDFLAGS='-mx32'
|
2017-05-08 12:19:19 +02:00
|
|
|
|
|
|
|
|
msg "test: 64-bit ILP32, make, gcc"
|
|
|
|
|
make test
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2019-01-06 21:50:38 +01:00
|
|
|
support_test_mx32 () {
|
|
|
|
|
case $(uname -m) in
|
|
|
|
|
amd64|x86_64) true;;
|
|
|
|
|
*) false;;
|
|
|
|
|
esac
|
|
|
|
|
}
|
2017-05-04 12:35:51 +02:00
|
|
|
|
2018-12-27 13:59:04 +01:00
|
|
|
component_test_min_mpi_window_size () {
|
|
|
|
|
msg "build: Default + MBEDTLS_MPI_WINDOW_SIZE=1 (ASan build)" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py set MBEDTLS_MPI_WINDOW_SIZE 1
|
2018-12-27 13:59:04 +01:00
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
|
|
|
|
|
msg "test: MBEDTLS_MPI_WINDOW_SIZE=1 - main suites (inc. selftests) (ASan build)" # ~ 10s
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_have_int32 () {
|
|
|
|
|
msg "build: gcc, force 32-bit bignum limbs"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_HAVE_ASM
|
|
|
|
|
scripts/config.py unset MBEDTLS_AESNI_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_PADLOCK_C
|
2018-11-27 15:58:47 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -DMBEDTLS_HAVE_INT32'
|
2016-09-27 16:05:15 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: gcc, force 32-bit bignum limbs"
|
|
|
|
|
make test
|
|
|
|
|
}
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_have_int64 () {
|
|
|
|
|
msg "build: gcc, force 64-bit bignum limbs"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_HAVE_ASM
|
|
|
|
|
scripts/config.py unset MBEDTLS_AESNI_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_PADLOCK_C
|
2018-11-27 15:58:47 +01:00
|
|
|
make CC=gcc CFLAGS='-Werror -Wall -Wextra -DMBEDTLS_HAVE_INT64'
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: gcc, force 64-bit bignum limbs"
|
|
|
|
|
make test
|
|
|
|
|
}
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_udbl_division () {
|
|
|
|
|
msg "build: MBEDTLS_NO_UDBL_DIVISION native" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_NO_UDBL_DIVISION
|
2018-11-27 15:58:47 +01:00
|
|
|
make CFLAGS='-Werror -O1'
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: MBEDTLS_NO_UDBL_DIVISION native" # ~ 10s
|
|
|
|
|
make test
|
|
|
|
|
}
|
2015-02-10 17:38:54 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_no_64bit_multiplication () {
|
|
|
|
|
msg "build: MBEDTLS_NO_64BIT_MULTIPLICATION native" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py full
|
|
|
|
|
scripts/config.py set MBEDTLS_NO_64BIT_MULTIPLICATION
|
2018-11-27 15:58:47 +01:00
|
|
|
make CFLAGS='-Werror -O1'
|
2015-02-16 17:18:36 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: MBEDTLS_NO_64BIT_MULTIPLICATION native" # ~ 10s
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-11-09 15:40:05 +01:00
|
|
|
component_test_no_strings () {
|
|
|
|
|
msg "build: no strings" # ~10s
|
|
|
|
|
scripts/config.py full
|
|
|
|
|
# Disable options that activate a large amount of string constants.
|
|
|
|
|
scripts/config.py unset MBEDTLS_DEBUG_C
|
|
|
|
|
scripts/config.py unset MBEDTLS_ERROR_C
|
|
|
|
|
scripts/config.py set MBEDTLS_ERROR_STRERROR_DUMMY
|
|
|
|
|
scripts/config.py unset MBEDTLS_VERSION_FEATURES
|
|
|
|
|
make CFLAGS='-Werror -Os'
|
|
|
|
|
|
|
|
|
|
msg "test: no strings" # ~ 10s
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2020-10-09 12:10:42 +02:00
|
|
|
component_test_no_x509_info () {
|
|
|
|
|
msg "build: full + MBEDTLS_X509_REMOVE_INFO" # ~ 10s
|
|
|
|
|
scripts/config.pl full
|
|
|
|
|
scripts/config.pl unset MBEDTLS_MEMORY_BACKTRACE # too slow for tests
|
|
|
|
|
scripts/config.pl set MBEDTLS_X509_REMOVE_INFO
|
|
|
|
|
make CFLAGS='-Werror -O1'
|
|
|
|
|
|
|
|
|
|
msg "test: full + MBEDTLS_X509_REMOVE_INFO" # ~ 10s
|
|
|
|
|
make test
|
|
|
|
|
|
|
|
|
|
msg "test: ssl-opt.sh, full + MBEDTLS_X509_REMOVE_INFO" # ~ 1 min
|
|
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_arm_none_eabi_gcc () {
|
2020-04-30 23:11:54 +02:00
|
|
|
msg "build: ${ARM_NONE_EABI_GCC_PREFIX}gcc -O1" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py baremetal
|
2020-09-02 11:03:04 +02:00
|
|
|
make CC="${ARM_NONE_EABI_GCC_PREFIX}gcc" AR="${ARM_NONE_EABI_GCC_PREFIX}ar" LD="${ARM_NONE_EABI_GCC_PREFIX}ld" CFLAGS='-std=c99 -Werror -Wall -Wextra -O1' lib
|
2020-04-30 23:11:54 +02:00
|
|
|
|
|
|
|
|
msg "size: ${ARM_NONE_EABI_GCC_PREFIX}gcc -O1"
|
|
|
|
|
${ARM_NONE_EABI_GCC_PREFIX}size library/*.o
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2018-06-07 10:51:44 +02:00
|
|
|
|
2019-08-09 16:05:05 +02:00
|
|
|
component_build_arm_none_eabi_gcc_arm5vte () {
|
2020-04-30 23:11:54 +02:00
|
|
|
msg "build: ${ARM_NONE_EABI_GCC_PREFIX}gcc -march=arm5vte" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py baremetal
|
2019-08-09 16:05:05 +02:00
|
|
|
# Build for a target platform that's close to what Debian uses
|
|
|
|
|
# for its "armel" distribution (https://wiki.debian.org/ArmEabiPort).
|
|
|
|
|
# See https://github.com/ARMmbed/mbedtls/pull/2169 and comments.
|
|
|
|
|
# It would be better to build with arm-linux-gnueabi-gcc but
|
|
|
|
|
# we don't have that on our CI at this time.
|
2020-09-02 11:03:04 +02:00
|
|
|
make CC="${ARM_NONE_EABI_GCC_PREFIX}gcc" AR="${ARM_NONE_EABI_GCC_PREFIX}ar" CFLAGS='-std=c99 -Werror -Wall -Wextra -march=armv5te -O1' LDFLAGS='-march=armv5te' SHELL='sh -x' lib
|
2020-04-30 23:11:54 +02:00
|
|
|
|
|
|
|
|
msg "size: ${ARM_NONE_EABI_GCC_PREFIX}gcc -march=armv5te -O1"
|
|
|
|
|
${ARM_NONE_EABI_GCC_PREFIX}size library/*.o
|
2019-08-05 11:34:25 +02:00
|
|
|
}
|
|
|
|
|
|
2020-04-30 23:00:53 +02:00
|
|
|
component_build_arm_none_eabi_gcc_m0plus () {
|
|
|
|
|
msg "build: ${ARM_NONE_EABI_GCC_PREFIX}gcc -mthumb -mcpu=cortex-m0plus" # ~ 10s
|
|
|
|
|
scripts/config.py baremetal
|
2020-09-02 11:03:04 +02:00
|
|
|
make CC="${ARM_NONE_EABI_GCC_PREFIX}gcc" AR="${ARM_NONE_EABI_GCC_PREFIX}ar" LD="${ARM_NONE_EABI_GCC_PREFIX}ld" CFLAGS='-std=c99 -Werror -Wall -Wextra -mthumb -mcpu=cortex-m0plus -Os' lib
|
2020-04-30 23:11:54 +02:00
|
|
|
|
|
|
|
|
msg "size: ${ARM_NONE_EABI_GCC_PREFIX}gcc -mthumb -mcpu=cortex-m0plus -Os"
|
|
|
|
|
${ARM_NONE_EABI_GCC_PREFIX}size library/*.o
|
2020-04-30 23:00:53 +02:00
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_arm_none_eabi_gcc_no_udbl_division () {
|
2020-04-30 18:19:32 +02:00
|
|
|
msg "build: ${ARM_NONE_EABI_GCC_PREFIX}gcc -DMBEDTLS_NO_UDBL_DIVISION, make" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py baremetal
|
|
|
|
|
scripts/config.py set MBEDTLS_NO_UDBL_DIVISION
|
2020-09-02 11:03:04 +02:00
|
|
|
make CC="${ARM_NONE_EABI_GCC_PREFIX}gcc" AR="${ARM_NONE_EABI_GCC_PREFIX}ar" LD="${ARM_NONE_EABI_GCC_PREFIX}ld" CFLAGS='-std=c99 -Werror -Wall -Wextra' lib
|
2018-11-27 15:58:47 +01:00
|
|
|
echo "Checking that software 64-bit division is not required"
|
|
|
|
|
if_build_succeeded not grep __aeabi_uldiv library/*.o
|
|
|
|
|
}
|
2018-06-07 10:51:44 +02:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_arm_none_eabi_gcc_no_64bit_multiplication () {
|
2020-04-30 18:19:32 +02:00
|
|
|
msg "build: ${ARM_NONE_EABI_GCC_PREFIX}gcc MBEDTLS_NO_64BIT_MULTIPLICATION, make" # ~ 10s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py baremetal
|
|
|
|
|
scripts/config.py set MBEDTLS_NO_64BIT_MULTIPLICATION
|
2020-09-02 11:03:04 +02:00
|
|
|
make CC="${ARM_NONE_EABI_GCC_PREFIX}gcc" AR="${ARM_NONE_EABI_GCC_PREFIX}ar" LD="${ARM_NONE_EABI_GCC_PREFIX}ld" CFLAGS='-std=c99 -Werror -O1 -march=armv6-m -mthumb' lib
|
2018-11-27 15:58:47 +01:00
|
|
|
echo "Checking that software 64-bit multiplication is not required"
|
|
|
|
|
if_build_succeeded not grep __aeabi_lmul library/*.o
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
component_build_armcc () {
|
2020-04-30 23:11:54 +02:00
|
|
|
msg "build: ARM Compiler 5"
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py baremetal
|
2017-12-19 18:24:31 +01:00
|
|
|
make CC="$ARMC5_CC" AR="$ARMC5_AR" WARNING_CFLAGS='--strict --c99' lib
|
2020-04-30 23:11:54 +02:00
|
|
|
|
|
|
|
|
msg "size: ARM Compiler 5"
|
|
|
|
|
"$ARMC5_FROMELF" -z library/*.o
|
|
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
make clean
|
2016-09-27 16:05:15 +02:00
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
# ARM Compiler 6 - Target ARMv7-A
|
|
|
|
|
armc6_build_test "--target=arm-arm-none-eabi -march=armv7-a"
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
# ARM Compiler 6 - Target ARMv7-M
|
|
|
|
|
armc6_build_test "--target=arm-arm-none-eabi -march=armv7-m"
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
# ARM Compiler 6 - Target ARMv8-A - AArch32
|
|
|
|
|
armc6_build_test "--target=arm-arm-none-eabi -march=armv8.2-a"
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
# ARM Compiler 6 - Target ARMv8-M
|
|
|
|
|
armc6_build_test "--target=arm-arm-none-eabi -march=armv8-m.main"
|
2017-07-23 13:42:36 +02:00
|
|
|
|
2017-12-19 18:24:31 +01:00
|
|
|
# ARM Compiler 6 - Target ARMv8-A - AArch64
|
|
|
|
|
armc6_build_test "--target=aarch64-arm-none-eabi -march=armv8.2-a"
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-05-12 15:26:58 +02:00
|
|
|
|
2020-05-04 13:03:51 +02:00
|
|
|
component_test_tls13_experimental () {
|
|
|
|
|
msg "build: default config with MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL enabled"
|
|
|
|
|
scripts/config.pl set MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
|
|
|
|
|
CC=gcc cmake -D CMAKE_BUILD_TYPE:String=Asan .
|
|
|
|
|
make
|
|
|
|
|
msg "test: default config with MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL enabled"
|
|
|
|
|
make test
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_build_mingw () {
|
|
|
|
|
msg "build: Windows cross build - mingw64, make (Link Library)" # ~ 30s
|
2019-10-03 09:18:01 +02:00
|
|
|
make CC=i686-w64-mingw32-gcc AR=i686-w64-mingw32-ar LD=i686-w64-minggw32-ld CFLAGS='-Werror -Wall -Wextra' WINDOWS_BUILD=1 lib programs
|
2016-11-10 18:25:58 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
# note Make tests only builds the tests, but doesn't run them
|
2019-10-03 09:18:01 +02:00
|
|
|
make CC=i686-w64-mingw32-gcc AR=i686-w64-mingw32-ar LD=i686-w64-minggw32-ld CFLAGS='-Werror' WINDOWS_BUILD=1 tests
|
2018-11-27 15:58:47 +01:00
|
|
|
make WINDOWS_BUILD=1 clean
|
2015-02-16 17:18:36 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "build: Windows cross build - mingw64, make (DLL)" # ~ 30s
|
2019-10-03 09:18:01 +02:00
|
|
|
make CC=i686-w64-mingw32-gcc AR=i686-w64-mingw32-ar LD=i686-w64-minggw32-ld CFLAGS='-Werror -Wall -Wextra' WINDOWS_BUILD=1 SHARED=1 lib programs
|
|
|
|
|
make CC=i686-w64-mingw32-gcc AR=i686-w64-mingw32-ar LD=i686-w64-minggw32-ld CFLAGS='-Werror -Wall -Wextra' WINDOWS_BUILD=1 SHARED=1 tests
|
2018-11-27 15:58:47 +01:00
|
|
|
make WINDOWS_BUILD=1 clean
|
|
|
|
|
}
|
2019-04-17 16:19:26 +02:00
|
|
|
support_build_mingw() {
|
|
|
|
|
case $(i686-w64-mingw32-gcc -dumpversion) in
|
|
|
|
|
[0-5]*) false;;
|
|
|
|
|
*) true;;
|
|
|
|
|
esac
|
|
|
|
|
}
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_memsan () {
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "build: MSan (clang)" # ~ 1 min 20s
|
2019-07-27 23:52:53 +02:00
|
|
|
scripts/config.py unset MBEDTLS_AESNI_C # memsan doesn't grok asm
|
2017-12-10 23:22:20 +01:00
|
|
|
CC=clang cmake -D CMAKE_BUILD_TYPE:String=MemSan .
|
|
|
|
|
make
|
2014-11-20 13:10:22 +01:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "test: main suites (MSan)" # ~ 10s
|
|
|
|
|
make test
|
2014-05-09 13:46:59 +02:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "test: ssl-opt.sh (MSan)" # ~ 1 min
|
2017-12-11 00:01:40 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh
|
2014-05-09 13:46:59 +02:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
# Optional part(s)
|
2014-11-20 13:10:22 +01:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
if [ "$MEMORY" -gt 0 ]; then
|
|
|
|
|
msg "test: compat.sh (MSan)" # ~ 6 min 20s
|
2017-12-11 00:01:40 +01:00
|
|
|
if_build_succeeded tests/compat.sh
|
2017-12-10 23:22:20 +01:00
|
|
|
fi
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2019-01-10 00:11:42 +01:00
|
|
|
component_test_valgrind () {
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "build: Release (clang)"
|
|
|
|
|
CC=clang cmake -D CMAKE_BUILD_TYPE:String=Release .
|
|
|
|
|
make
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
msg "test: main suites valgrind (Release)"
|
|
|
|
|
make memcheck
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2020-03-04 20:46:15 +01:00
|
|
|
# Optional parts (slow; currently broken on OS X because programs don't
|
|
|
|
|
# seem to receive signals under valgrind on OS X).
|
2017-12-10 23:22:20 +01:00
|
|
|
if [ "$MEMORY" -gt 0 ]; then
|
|
|
|
|
msg "test: ssl-opt.sh --memcheck (Release)"
|
2017-12-11 00:01:40 +01:00
|
|
|
if_build_succeeded tests/ssl-opt.sh --memcheck
|
2017-12-10 23:22:20 +01:00
|
|
|
fi
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2017-12-10 23:22:20 +01:00
|
|
|
if [ "$MEMORY" -gt 1 ]; then
|
|
|
|
|
msg "test: compat.sh --memcheck (Release)"
|
2017-12-11 00:01:40 +01:00
|
|
|
if_build_succeeded tests/compat.sh --memcheck
|
2017-12-10 23:22:20 +01:00
|
|
|
fi
|
2020-04-07 16:07:05 +02:00
|
|
|
|
|
|
|
|
if [ "$MEMORY" -gt 0 ]; then
|
|
|
|
|
msg "test: context-info.sh --memcheck (Release)"
|
|
|
|
|
if_build_succeeded tests/context-info.sh --memcheck
|
|
|
|
|
fi
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_cmake_out_of_source () {
|
|
|
|
|
msg "build: cmake 'out-of-source' build"
|
|
|
|
|
MBEDTLS_ROOT_DIR="$PWD"
|
|
|
|
|
mkdir "$OUT_OF_SOURCE_DIR"
|
|
|
|
|
cd "$OUT_OF_SOURCE_DIR"
|
|
|
|
|
cmake "$MBEDTLS_ROOT_DIR"
|
|
|
|
|
make
|
2015-01-26 15:03:56 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
msg "test: cmake 'out-of-source' build"
|
|
|
|
|
make test
|
|
|
|
|
# Test an SSL option that requires an auxiliary script in test/scripts/.
|
|
|
|
|
# Also ensure that there are no error messages such as
|
|
|
|
|
# "No such file or directory", which would indicate that some required
|
|
|
|
|
# file is missing (ssl-opt.sh tolerates the absence of some files so
|
|
|
|
|
# may exit with status 0 but emit errors).
|
|
|
|
|
if_build_succeeded ./tests/ssl-opt.sh -f 'Fallback SCSV: beginning of list' 2>ssl-opt.err
|
|
|
|
|
if [ -s ssl-opt.err ]; then
|
|
|
|
|
cat ssl-opt.err >&2
|
|
|
|
|
record_status [ ! -s ssl-opt.err ]
|
|
|
|
|
rm ssl-opt.err
|
|
|
|
|
fi
|
|
|
|
|
cd "$MBEDTLS_ROOT_DIR"
|
|
|
|
|
rm -rf "$OUT_OF_SOURCE_DIR"
|
|
|
|
|
unset MBEDTLS_ROOT_DIR
|
|
|
|
|
}
|
|
|
|
|
|
2019-06-20 18:38:22 +02:00
|
|
|
component_test_cmake_as_subdirectory () {
|
|
|
|
|
msg "build: cmake 'as-subdirectory' build"
|
|
|
|
|
MBEDTLS_ROOT_DIR="$PWD"
|
|
|
|
|
|
|
|
|
|
cd programs/test/cmake_subproject
|
|
|
|
|
cmake .
|
|
|
|
|
make
|
|
|
|
|
if_build_succeeded ./cmake_subproject
|
|
|
|
|
|
|
|
|
|
cd "$MBEDTLS_ROOT_DIR"
|
|
|
|
|
unset MBEDTLS_ROOT_DIR
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_test_zeroize () {
|
|
|
|
|
# Test that the function mbedtls_platform_zeroize() is not optimized away by
|
|
|
|
|
# different combinations of compilers and optimization flags by using an
|
|
|
|
|
# auxiliary GDB script. Unfortunately, GDB does not return error values to the
|
|
|
|
|
# system in all cases that the script fails, so we must manually search the
|
|
|
|
|
# output to check whether the pass string is present and no failure strings
|
|
|
|
|
# were printed.
|
2019-01-06 20:52:22 +01:00
|
|
|
|
|
|
|
|
# Don't try to disable ASLR. We don't care about ASLR here. We do care
|
|
|
|
|
# about a spurious message if Gdb tries and fails, so suppress that.
|
|
|
|
|
gdb_disable_aslr=
|
|
|
|
|
if [ -z "$(gdb -batch -nw -ex 'set disable-randomization off' 2>&1)" ]; then
|
|
|
|
|
gdb_disable_aslr='set disable-randomization off'
|
|
|
|
|
fi
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
for optimization_flag in -O2 -O3 -Ofast -Os; do
|
2019-01-09 22:28:21 +01:00
|
|
|
for compiler in clang gcc; do
|
|
|
|
|
msg "test: $compiler $optimization_flag, mbedtls_platform_zeroize()"
|
|
|
|
|
make programs CC="$compiler" DEBUG=1 CFLAGS="$optimization_flag"
|
2019-01-06 20:52:22 +01:00
|
|
|
if_build_succeeded gdb -ex "$gdb_disable_aslr" -x tests/scripts/test_zeroize.gdb -nw -batch -nx 2>&1 | tee test_zeroize.log
|
2019-01-09 22:28:21 +01:00
|
|
|
if_build_succeeded grep "The buffer was correctly zeroized" test_zeroize.log
|
|
|
|
|
if_build_succeeded not grep -i "error" test_zeroize.log
|
|
|
|
|
rm -f test_zeroize.log
|
|
|
|
|
make clean
|
|
|
|
|
done
|
2017-10-25 11:35:51 +02:00
|
|
|
done
|
2017-10-25 10:01:31 +02:00
|
|
|
|
2019-01-06 20:52:22 +01:00
|
|
|
unset gdb_disable_aslr
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-12-21 15:59:21 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_python_files () {
|
|
|
|
|
msg "Lint: Python scripts"
|
|
|
|
|
record_status tests/scripts/check-python-files.sh
|
|
|
|
|
}
|
2017-12-21 15:59:21 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
component_check_generate_test_code () {
|
|
|
|
|
msg "uint test: generate_test_code.py"
|
2020-06-02 11:40:08 +02:00
|
|
|
# unittest writes out mundane stuff like number or tests run on stderr.
|
|
|
|
|
# Our convention is to reserve stderr for actual errors, and write
|
|
|
|
|
# harmless info on stdout so it can be suppress with --quiet.
|
|
|
|
|
record_status ./tests/scripts/test_generate_test_code.py 2>&1
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
2017-12-21 15:59:21 +01:00
|
|
|
|
|
|
|
|
################################################################
|
|
|
|
|
#### Termination
|
|
|
|
|
################################################################
|
|
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
post_report () {
|
|
|
|
|
msg "Done, cleaning up"
|
|
|
|
|
cleanup
|
|
|
|
|
|
|
|
|
|
final_report
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
################################################################
|
|
|
|
|
#### Run all the things
|
|
|
|
|
################################################################
|
|
|
|
|
|
2018-11-27 16:06:30 +01:00
|
|
|
# Run one component and clean up afterwards.
|
2018-11-27 15:58:47 +01:00
|
|
|
run_component () {
|
2019-01-02 18:57:02 +01:00
|
|
|
# Back up the configuration in case the component modifies it.
|
|
|
|
|
# The cleanup function will restore it.
|
|
|
|
|
cp -p "$CONFIG_H" "$CONFIG_BAK"
|
2020-11-01 06:14:03 +01:00
|
|
|
cp -p "$CRYPTO_CONFIG_H" "$CRYPTO_CONFIG_BAK"
|
2018-12-04 12:49:28 +01:00
|
|
|
current_component="$1"
|
2019-09-16 15:20:36 +02:00
|
|
|
export MBEDTLS_TEST_CONFIGURATION="$current_component"
|
2019-10-07 18:44:21 +02:00
|
|
|
|
|
|
|
|
# Unconditionally create a seedfile that's sufficiently long.
|
|
|
|
|
# Do this before each component, because a previous component may
|
|
|
|
|
# have messed it up or shortened it.
|
2020-06-08 10:46:35 +02:00
|
|
|
redirect_err dd if=/dev/urandom of=./tests/seedfile bs=64 count=1
|
2019-10-07 18:44:21 +02:00
|
|
|
|
|
|
|
|
# Run the component code.
|
2020-06-02 11:28:07 +02:00
|
|
|
if [ $QUIET -eq 1 ]; then
|
|
|
|
|
# msg() is silenced, so just print the component name here
|
|
|
|
|
echo "${current_component#component_}"
|
|
|
|
|
fi
|
|
|
|
|
redirect_out "$@"
|
2019-10-07 18:44:21 +02:00
|
|
|
|
|
|
|
|
# Restore the build tree to a clean state.
|
2018-11-27 16:06:30 +01:00
|
|
|
cleanup
|
2020-06-08 10:59:41 +02:00
|
|
|
unset current_component
|
2018-11-27 15:58:47 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Preliminary setup
|
|
|
|
|
pre_check_environment
|
|
|
|
|
pre_initialize_variables
|
|
|
|
|
pre_parse_command_line "$@"
|
2018-11-27 17:04:29 +01:00
|
|
|
|
2019-01-06 21:50:38 +01:00
|
|
|
pre_check_git
|
2019-02-14 13:18:59 +01:00
|
|
|
|
2019-01-06 21:50:38 +01:00
|
|
|
build_status=0
|
|
|
|
|
if [ $KEEP_GOING -eq 1 ]; then
|
|
|
|
|
pre_setup_keep_going
|
2018-11-27 18:15:35 +01:00
|
|
|
else
|
2019-01-06 21:50:38 +01:00
|
|
|
record_status () {
|
|
|
|
|
"$@"
|
|
|
|
|
}
|
2018-11-27 15:58:47 +01:00
|
|
|
fi
|
2020-06-02 11:28:07 +02:00
|
|
|
pre_setup_quiet_redirect
|
2019-09-16 15:55:46 +02:00
|
|
|
pre_prepare_outcome_file
|
2019-01-06 21:50:38 +01:00
|
|
|
pre_print_configuration
|
|
|
|
|
pre_check_tools
|
2014-03-19 18:29:01 +01:00
|
|
|
cleanup
|
2021-04-22 01:10:12 +02:00
|
|
|
pre_generate_files
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2019-01-06 23:11:25 +01:00
|
|
|
# Run the requested tests.
|
|
|
|
|
for component in $RUN_COMPONENTS; do
|
|
|
|
|
run_component "component_$component"
|
|
|
|
|
done
|
2014-03-19 18:29:01 +01:00
|
|
|
|
2018-11-27 15:58:47 +01:00
|
|
|
# We're done.
|
2019-01-06 21:50:38 +01:00
|
|
|
post_report
|
