[Core] - Support azure-core version without OpenSSL dependency #2839
Conversation
vhvb1989
requested review from
RickWinter,
ahsonkhan,
antkmsft and
gearama
as code owners
vhvb1989
added
Azure.Core
Client
RickWinter
left a comment
RickWinter
left a comment
There was a problem hiding this comment.
This change will result in non-unique UUIDs on linux platforms. std::random is not cryptographically secure on linux
…re-sdk-for-cpp into update-uuid-without-openssl
|
Linux perf results: 64-bit Mersenne Twister by Matsumoto OpenSSL |
ahsonkhan
left a comment
ahsonkhan
left a comment
There was a problem hiding this comment.
I am not sure we should expose the build crypto option, if we can remove the openssl dependency all together.
Will review base64 impl in a bit, do we have sufficient test coverage for it?
ahsonkhan
left a comment
ahsonkhan
left a comment
There was a problem hiding this comment.
I think we need more testing of the base64 implementation, especially around edge cases (for integer overflow) and invalid input.
sdk/core/azure-core/src/base64.cpp
Outdated
|
|
||
| while (sourceIndex < static_cast<int64_t>(inputSize) - 4) | ||
| { | ||
| int64_t result = base64Decode(inputPtr + sourceIndex); |
There was a problem hiding this comment.
If result is negative, it means invalid input and we should throw.
We need test cases like the following, which are invalid input:
"A" - too small
"AB" - too small
"ABC" - too small
"ABCD==" - not a multiple of 4
"ABCD====" - invalid padding count
"A%%%" - non-base64 chars
There was a problem hiding this comment.
The input has to be of characters from "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"
sdk/core/azure-core/src/base64.cpp
Outdated
| i0 |= i3; | ||
| i0 |= i2; | ||
|
|
||
| base64WriteThreeLowOrderBytes(destinationPtr, i0); |
There was a problem hiding this comment.
Same here and elsewhere - add input validation checks (if i0 < 0) and throw for invalid input
sdk/core/azure-core/src/base64.cpp
Outdated
| destination.resize(resultSize); | ||
| destination.shrink_to_fit(); |
There was a problem hiding this comment.
Resizing strings and vectors after the fact seems to be a relatively expensive operation.
@CaseyCarter how do we avoid this, and maybe just create the vector of the right size at the end without having to do linear data copy or re-allocation? In .NET/C#, this was relatively easy with span/slicing for buffers.
sdk/core/azure-core/test/perf/inc/azure/core/test/uuid_test.hpp
Outdated
Show resolved
Hide resolved
sdk/core/azure-core/src/base64.cpp
Outdated
| int64_t sourceIndex = 0; | ||
| int64_t destinationIndex = 0; |
There was a problem hiding this comment.
Ditto "indices into memory buffers, these should be size_t"
sdk/core/azure-core/src/base64.cpp
Outdated
| int64_t result = base64Decode(inputPtr + sourceIndex); | ||
| base64WriteThreeLowOrderBytes(destinationPtr, result); | ||
| destinationPtr += 3; | ||
| destinationIndex += 3; |
There was a problem hiding this comment.
destinationIndex is unused.
Co-authored-by: Ahson Khan <[email protected]> Co-authored-by: Casey Carter <[email protected]>
Co-authored-by: Ahson Khan <[email protected]>
antkmsft
left a comment
antkmsft
left a comment
There was a problem hiding this comment.
Casey has some good feedback, can we at least open work items? Re: random seems pretty important. Prefix increment, not so important, but I'd take it as well, but I am biased.
…re-sdk-for-cpp into update-uuid-without-openssl
5 participants
An azure-core lib version without OpenSSL is required for the speech service which will consume only UUID (and HTTP in some future).
This PR makes some changes to the current azure core components consuming OpenSSL :
fixes: #2790