01005b90b5
Run some of the test configs twice, enabling MBEDTLS_USE_PSA_CRYPTO and MBEDTLS_PSA_CRYPTO_C in one of the runs. Add relevant comments in these configs. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
152 lines
4.3 KiB
Perl
Executable file
152 lines
4.3 KiB
Perl
Executable file
#!/usr/bin/env perl
|
|
|
|
# test-ref-configs.pl
|
|
#
|
|
# Copyright The Mbed TLS Contributors
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
# Purpose
|
|
#
|
|
# For each reference configuration file in the configs directory, build the
|
|
# configuration, run the test suites and compat.sh
|
|
#
|
|
# Usage: tests/scripts/test-ref-configs.pl [config-name [...]]
|
|
|
|
use warnings;
|
|
use strict;
|
|
|
|
my %configs = (
|
|
'config-ccm-psk-tls1_2.h' => {
|
|
'compat' => '-m tls12 -f \'^TLS-PSK-WITH-AES-...-CCM-8\'',
|
|
'test_again_with_use_psa' => 1
|
|
},
|
|
'config-no-entropy.h' => {
|
|
},
|
|
'config-suite-b.h' => {
|
|
'compat' => "-m tls12 -f 'ECDHE-ECDSA.*AES.*GCM' -p mbedTLS",
|
|
'test_again_with_use_psa' => 1,
|
|
},
|
|
'config-symmetric-only.h' => {
|
|
'test_again_with_use_psa' => 0, # Uses PSA by default, no need to test it twice
|
|
},
|
|
'config-thread.h' => {
|
|
'opt' => '-f ECJPAKE.*nolog',
|
|
'test_again_with_use_psa' => 1,
|
|
},
|
|
);
|
|
|
|
# If no config-name is provided, use all known configs.
|
|
# Otherwise, use the provided names only.
|
|
if ($#ARGV >= 0) {
|
|
my %configs_ori = ( %configs );
|
|
%configs = ();
|
|
|
|
foreach my $conf_name (@ARGV) {
|
|
if( ! exists $configs_ori{$conf_name} ) {
|
|
die "Unknown configuration: $conf_name\n";
|
|
} else {
|
|
$configs{$conf_name} = $configs_ori{$conf_name};
|
|
}
|
|
}
|
|
}
|
|
|
|
-d 'library' && -d 'include' && -d 'tests' or die "Must be run from root\n";
|
|
|
|
my $config_h = 'include/mbedtls/mbedtls_config.h';
|
|
|
|
system( "cp $config_h $config_h.bak" ) and die;
|
|
sub abort {
|
|
system( "mv $config_h.bak $config_h" ) and warn "$config_h not restored\n";
|
|
# use an exit code between 1 and 124 for git bisect (die returns 255)
|
|
warn $_[0];
|
|
exit 1;
|
|
}
|
|
|
|
# Create a seedfile for configurations that enable MBEDTLS_ENTROPY_NV_SEED.
|
|
# For test purposes, this doesn't have to be cryptographically random.
|
|
if (!-e "tests/seedfile" || -s "tests/seedfile" < 64) {
|
|
local *SEEDFILE;
|
|
open SEEDFILE, ">tests/seedfile" or die;
|
|
print SEEDFILE "*" x 64 or die;
|
|
close SEEDFILE or die;
|
|
}
|
|
|
|
sub perform_test {
|
|
my $conf = $_[0];
|
|
my $data = $_[1];
|
|
my $test_with_psa = $_[2];
|
|
|
|
system( "cp $config_h.bak $config_h" ) and die;
|
|
system( "make clean" ) and die;
|
|
|
|
print "\n******************************************\n";
|
|
print "* Testing configuration: $conf\n";
|
|
if ( $test_with_psa )
|
|
{
|
|
print "* ENABLING MBEDTLS_PSA_CRYPTO_C and MBEDTLS_USE_PSA_CRYPTO \n";
|
|
}
|
|
print "******************************************\n";
|
|
|
|
$ENV{MBEDTLS_TEST_CONFIGURATION} = $conf;
|
|
|
|
system( "cp configs/$conf $config_h" )
|
|
and abort "Failed to activate $conf\n";
|
|
|
|
if ( $test_with_psa )
|
|
{
|
|
system( "scripts/config.py set MBEDTLS_PSA_CRYPTO_C" );
|
|
system( "scripts/config.py set MBEDTLS_USE_PSA_CRYPTO" );
|
|
}
|
|
|
|
system( "CFLAGS='-Os -Werror -Wall -Wextra' make" ) and abort "Failed to build: $conf\n";
|
|
system( "make test" ) and abort "Failed test suite: $conf\n";
|
|
|
|
my $compat = $data->{'compat'};
|
|
if( $compat )
|
|
{
|
|
print "\nrunning compat.sh $compat\n";
|
|
system( "tests/compat.sh $compat" )
|
|
and abort "Failed compat.sh: $conf\n";
|
|
}
|
|
else
|
|
{
|
|
print "\nskipping compat.sh\n";
|
|
}
|
|
|
|
my $opt = $data->{'opt'};
|
|
if( $opt )
|
|
{
|
|
print "\nrunning ssl-opt.sh $opt\n";
|
|
system( "tests/ssl-opt.sh $opt" )
|
|
and abort "Failed ssl-opt.sh: $conf\n";
|
|
}
|
|
else
|
|
{
|
|
print "\nskipping ssl-opt.sh\n";
|
|
}
|
|
}
|
|
|
|
while( my ($conf, $data) = each %configs ) {
|
|
my $test_with_psa = $data->{'test_again_with_use_psa'};
|
|
if ( $test_with_psa )
|
|
{
|
|
perform_test( $conf, $data, $test_with_psa );
|
|
}
|
|
perform_test( $conf, $data, 0 );
|
|
}
|
|
|
|
system( "mv $config_h.bak $config_h" ) and warn "$config_h not restored\n";
|
|
system( "make clean" );
|
|
exit 0;
|