Skip to content

chore(everest-ci): bump build-kit base image version to debian13 #1381

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 7 commits into
base: main
Choose a base branch
from
Draft

chore(everest-ci): bump build-kit base image version to debian13 #1381

wants to merge 7 commits into from

Conversation

andistorm
Copy link
Member

Describe your changes

Issue ticket number and link

Checklist before requesting a review

  • I have performed a self-review of my code
  • I have made corresponding changes to the documentation
  • I read the contribution documentation and made sure that my changes meet its requirements

@andistorm
tmp use branch
a7a5073 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm andistorm marked this pull request as draft September 24, 2025 11:49
@andistorm
minor fix
1bc8287 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm
add include
b627f96 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm
Fix openssl tests, changed behaviour of function openssl::base64_decode
d12989d 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm andistorm changed the title tmp use branch chore(everest-ci): bump build-kit base image version to debian13 Sep 25, 2025
james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp

TEST(openssl, base64Decode) {
auto res = openssl::base64_decode(&iso_exi_a_hash_b64[0], sizeof(iso_exi_a_hash_b64));
auto res = openssl::base64_decode(iso_exi_a_hash_b64, std::strlen(iso_exi_a_hash_b64));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change needs to be reverted.
openssl::base64_decode() takes a constant pointer and a length - normally from a buffer of known size. It does not need to be null terminated.
And it if isn't null terminated then strlen() will not help.

james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp
ASSERT_EQ(res.size(), sizeof(iso_exi_a_hash));
EXPECT_EQ(std::memcmp(res.data(), &iso_exi_a_hash[0], res.size()), 0);
res = openssl::base64_decode(&iso_exi_sig_b64[0], sizeof(iso_exi_sig_b64));
res = openssl::base64_decode(iso_exi_sig_b64, std::strlen(iso_exi_sig_b64));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change needs to be reverted.
openssl::base64_decode() takes a constant pointer and a length - normally from a buffer of known size. It does not need to be null terminated.
And it if isn't null terminated then strlen() will not help.

james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp
std::size_t buffer_len = buffer.size();

EXPECT_TRUE(openssl::base64_decode(&iso_exi_a_hash_b64[0], sizeof(iso_exi_a_hash_b64), buffer.data(), buffer_len));
EXPECT_TRUE(openssl::base64_decode(iso_exi_a_hash_b64, std::strlen(iso_exi_a_hash_b64), buffer.data(), buffer_len));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see above why strlen isn't a solution

james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp

TEST(openssl, base64DecodeNl) {
auto res = openssl::base64_decode(&iso_exi_a_hash_b64_nl[0], sizeof(iso_exi_a_hash_b64_nl));
auto res = openssl::base64_decode(iso_exi_a_hash_b64_nl, std::strlen(iso_exi_a_hash_b64_nl));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see above why strlen isn't a solution

james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp
ASSERT_EQ(res.size(), sizeof(iso_exi_a_hash));
EXPECT_EQ(std::memcmp(res.data(), &iso_exi_a_hash[0], res.size()), 0);
res = openssl::base64_decode(&iso_exi_sig_b64_nl[0], sizeof(iso_exi_sig_b64_nl));
res = openssl::base64_decode(iso_exi_sig_b64_nl, std::strlen(iso_exi_sig_b64_nl));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see above why strlen isn't a solution

james-ctc
james-ctc reviewed Sep 29, 2025
View reviewed changes
lib/everest/tls/tests/openssl_util_test.cpp

EXPECT_TRUE(
openssl::base64_decode(&iso_exi_a_hash_b64_nl[0], sizeof(iso_exi_a_hash_b64_nl), buffer.data(), buffer_len));
openssl::base64_decode(iso_exi_a_hash_b64_nl, std::strlen(iso_exi_a_hash_b64_nl), buffer.data(), buffer_len));
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

see above why strlen isn't a solution

james-ctc
james-ctc requested changes Sep 29, 2025
View reviewed changes
Copy link
Member

@james-ctc james-ctc left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

strlen() doesn't solve a "problem" where a string isn't null terminated.

@andistorm
run integration tests in venv
1cc89d0 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm
switch to bash
95e53c0 
Signed-off-by: Andreas Heinrich <[email protected]>
@andistorm
add --system-site-packages flag
3150c93 
Signed-off-by: Andreas Heinrich <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@james-ctc james-ctc james-ctc requested changes

@Pietfried Pietfried Awaiting requested review from Pietfried Pietfried is a code owner

@corneliusclaussen corneliusclaussen Awaiting requested review from corneliusclaussen corneliusclaussen is a code owner

@mlitre mlitre Awaiting requested review from mlitre mlitre will be requested when the pull request is marked ready for review mlitre is a code owner

@SebaLukas SebaLukas Awaiting requested review from SebaLukas SebaLukas will be requested when the pull request is marked ready for review SebaLukas is a code owner

@hikinggrass hikinggrass Awaiting requested review from hikinggrass hikinggrass will be requested when the pull request is marked ready for review hikinggrass is a code owner

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@andistorm @james-ctc