Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

nix: Alias the openssl3 binary #4252

Closed
wants to merge 2 commits into from
Closed

nix: Alias the openssl3 binary #4252

wants to merge 2 commits into from
+1 −0

Conversation

dougch
Copy link
Contributor

@dougch dougch commented Oct 18, 2023
edited
Loading

Resolved issues:

none

Description of changes:

In nix, we need the openssl binary in the path 'pinned' to version 1.1.1, but sometimes we'd like to be able to use the libcrypto that we picked as part of the build environment. Add an alias based on the full nix path to openssl3.

Call-outs:

Do we need this for everything else ? awslc=bsdsl, openssl102, etc...

Testing:

How is this change tested (unit tests, fuzz tests, etc.)? locally

[nix openssl-3.0] [dougch@dev-dsk-dougch-2c-096ea84b s2n-tls]$ test_toolchain_counts
+---------------------------------------------------------+
| Checking the CMAKE_INCLUDE_PATH for libcrypto counts    |
+---------------------------------------------------------+

Openssl3:        2
Openssl1.1:      0
Openssl1.0.2:    0
Awlc:            0
LibreSSL:        0
+---------------------------------------------------------+
| Checking tooling counts (these should all be 1)         |
+---------------------------------------------------------+

Openssl integ:   1
Corretto 17:     1
gnutls-cli:      1
gnutls-serv:     1
Nix Python:      1
Nix pytest:      1
Nix sslyze:      1
python nassl:    1

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@github-actions github-actions bot added the s2n-core team label Oct 18, 2023
@dougch dougch marked this pull request as ready for review October 18, 2023 21:07
@dougch dougch requested a review from lrstewart October 18, 2023 21:07
lrstewart
lrstewart reviewed Oct 18, 2023
View reviewed changes
flake.nix
Comment on lines +100 to 101
alias openssl3=${openssl_3_0}/bin/openssl
export PS1="[nix $S2N_LIBCRYPTO] $PS1"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we print some message saying this alias is available? It was the first command I tried when I wanted openssl-3, but idk if that's a universal thought :)

Copy link
Contributor

@lrstewart lrstewart Oct 18, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe print both the commands and the outputs of "openssl version" and "openssl3 version". Maybe every shell should do that?

@github-actions GitHub Actions
Copy link

This PR has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

dougch added a commit to dougch/s2n-tls that referenced this pull request Feb 16, 2024
@dougch
feedback from aws#4252
dd0fd1f
@dougch dougch mentioned this pull request Feb 16, 2024
Merged
@dougch
Copy link
Contributor Author

dougch commented Feb 16, 2024

closing in favor of #4422

@dougch dougch closed this Feb 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lrstewart lrstewart lrstewart left review comments

Assignees
No one assigned
Labels
s2n-core team status/stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dougch @lrstewart