Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Core] - Support azure-core version without OpenSSL dependency #2839

Merged
merged 29 commits into from
Oct 27, 2021
Merged

[Core] - Support azure-core version without OpenSSL dependency #2839

merged 29 commits into from
Oct 27, 2021

Conversation

vhvb1989
Copy link
Member

@vhvb1989 vhvb1989 commented Sep 7, 2021
edited
Loading

An azure-core lib version without OpenSSL is required for the speech service which will consume only UUID (and HTTP in some future).

This PR makes some changes to the current azure core components consuming OpenSSL :

  • Uuid on Linux : It is used to generate a random buffer. Switching to use the win-implementation which uses the std lib lib.
  • base64 : Removing the current implementation calling openSSL for base64 for the azure-core for C99 implementation created in the past by @antkmsft
  • Crypto / Hashing : MD5 and Sha hashing is currently exposed on the public surface and implemented by calling OpenSSL lib. This PR is making all the Cryptographic namespace an optional feature that can be opt-out when building the azure-core lib

fixes: #2790

@vhvb1989 vhvb1989 self-assigned this Sep 7, 2021
@vhvb1989 vhvb1989 added Azure.Core Client This issue points to a problem in the data-plane of the library. Cognitive - Speech labels Sep 7, 2021
@vhvb1989 vhvb1989 added this to the [2021] October milestone Sep 7, 2021
RickWinter
RickWinter requested changes Sep 8, 2021
View reviewed changes
Copy link
Member

@RickWinter RickWinter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This change will result in non-unique UUIDs on linux platforms. std::random is not cryptographically secure on linux

@vhvb1989
Copy link
Member Author

vhvb1989 commented Sep 9, 2021
edited
Loading

Linux perf results:

64-bit Mersenne Twister by Matsumoto
=== Results ===
Completed 536,943 operations in a weighted-average of 10s (53,693.482313 ops/s, 1.86242e-05 s/op)

OpenSSL
=== Results ===
Completed 44,534 operations in a weighted-average of 10s (4,453.341869 ops/s, 0.00022455 s/op)

@vhvb1989 vhvb1989 requested a review from RickWinter September 9, 2021 18:34
RickWinter
RickWinter previously approved these changes Sep 13, 2021
View reviewed changes
@RickWinter RickWinter self-requested a review September 13, 2021 18:49
ahsonkhan
ahsonkhan reviewed Sep 24, 2021
View reviewed changes
Copy link
Member

@ahsonkhan ahsonkhan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am not sure we should expose the build crypto option, if we can remove the openssl dependency all together.

Will review base64 impl in a bit, do we have sufficient test coverage for it?

sdk/core/azure-core/CHANGELOG.md Outdated Show resolved Hide resolved
sdk/core/azure-core/CHANGELOG.md Outdated Show resolved Hide resolved
sdk/core/azure-core/CMakeLists.txt Outdated Show resolved Hide resolved
sdk/core/azure-core/src/uuid.cpp Outdated Show resolved Hide resolved
ahsonkhan
ahsonkhan reviewed Sep 24, 2021
View reviewed changes
Copy link
Member

@ahsonkhan ahsonkhan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we need more testing of the base64 implementation, especially around edge cases (for integer overflow) and invalid input.

sdk/core/azure-core/src/base64.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Outdated

while (sourceIndex < static_cast<int64_t>(inputSize) - 4)
{
int64_t result = base64Decode(inputPtr + sourceIndex);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If result is negative, it means invalid input and we should throw.

We need test cases like the following, which are invalid input:
"A" - too small
"AB" - too small
"ABC" - too small
"ABCD==" - not a multiple of 4
"ABCD====" - invalid padding count
"A%%%" - non-base64 chars

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The input has to be of characters from "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"

sdk/core/azure-core/src/base64.cpp Outdated
i0 |= i3;
i0 |= i2;

base64WriteThreeLowOrderBytes(destinationPtr, i0);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here and elsewhere - add input validation checks (if i0 < 0) and throw for invalid input

https://github.com/Azure/azure-sdk-for-c/blob/d7b388c68b07ee769dd9b061114b93336fd53385/sdk/src/azure/core/az_base64.c#L487-L490

sdk/core/azure-core/src/base64.cpp Outdated
Comment on lines 463 to 464
destination.resize(resultSize);
destination.shrink_to_fit();
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Resizing strings and vectors after the fact seems to be a relatively expensive operation.
@CaseyCarter how do we avoid this, and maybe just create the vector of the right size at the end without having to do linear data copy or re-allocation? In .NET/C#, this was relatively easy with span/slicing for buffers.

CaseyCarter
CaseyCarter reviewed Sep 25, 2021
View reviewed changes
sdk/core/azure-core/src/uuid.cpp Show resolved Hide resolved
sdk/core/azure-core/src/uuid.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/uuid.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/test/perf/inc/azure/core/test/uuid_test.hpp Outdated Show resolved Hide resolved
sdk/core/azure-core/test/perf/inc/azure/core/test/uuid_test.hpp Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Outdated
Comment on lines 396 to 397
int64_t sourceIndex = 0;
int64_t destinationIndex = 0;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ditto "indices into memory buffers, these should be size_t"

sdk/core/azure-core/src/base64.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Outdated
int64_t result = base64Decode(inputPtr + sourceIndex);
base64WriteThreeLowOrderBytes(destinationPtr, result);
destinationPtr += 3;
destinationIndex += 3;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

destinationIndex is unused.

sdk/core/azure-core/src/base64.cpp Outdated Show resolved Hide resolved
sdk/core/azure-core/src/base64.cpp Show resolved Hide resolved
vhvb1989 and others added 2 commits September 27, 2021 10:16
@vhvb1989 @ahsonkhan @CaseyCarter
Apply suggestions from code review
a8a0703 
Co-authored-by: Ahson Khan <ahkha@microsoft.com>
Co-authored-by: Casey Carter <cartec69@gmail.com>
@vhvb1989 @ahsonkhan
Apply suggestions from code review
53de278 
Co-authored-by: Ahson Khan <ahkha@microsoft.com>
antkmsft
antkmsft approved these changes Oct 18, 2021
View reviewed changes
Copy link
Member

@antkmsft antkmsft left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Casey has some good feedback, can we at least open work items? Re: random seems pretty important. Prefix increment, not so important, but I'd take it as well, but I am biased.

@vhvb1989 vhvb1989 enabled auto-merge (squash) October 27, 2021 20:59
@vhvb1989 vhvb1989 merged commit 3be793d into Azure:main Oct 27, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ahsonkhan ahsonkhan ahsonkhan left review comments

@CaseyCarter CaseyCarter CaseyCarter left review comments

@antkmsft antkmsft antkmsft approved these changes

@gearama gearama Awaiting requested review from gearama gearama is a code owner

@RickWinter RickWinter Awaiting requested review from RickWinter RickWinter is a code owner

Assignees

@vhvb1989 vhvb1989

Labels
Azure.Core Client This issue points to a problem in the data-plane of the library. Cognitive - Speech
Projects
None yet
Milestone
[2021] November
Development

Successfully merging this pull request may close these issues.

Remove OpenSSL dependency for Base64 encoding
5 participants
@vhvb1989 @CaseyCarter @RickWinter @ahsonkhan @antkmsft