Uploaded image for project: 'OpenShift Service Mesh'
  1. OpenShift Service Mesh
  2. OSSM-1011

Bridge BoringSSL API to OpenSSL

    XMLWordPrintable

Details

    • Epic
    • Resolution: Unresolved
    • Major
    • None
    • None
    • Envoy, Maistra
    • None
    • Bridge BoringSSL API to OpenSSL
    • False
    • False
    • To Do
    • 82
    • 82% 82%

    Description

      Develop a bridge layer that implements BoringSSL using OpenSSL.  The goal is to contain the effort required to maintain a version of Envoy that uses OpenSSL to a distinct code base/project.  Currently, all code that access BoringSSL is replaced with OpenSSL calls, which frequently creates merge conflicts as the Envoy project evolves.  In addition to Envoy itself, some additional libraries used by Envoy have started to have dependencies on BoringSSL as well.

      • Add a list of BoringSSL calls made by upstream envoy i.e. the calls we need to support in our layer
      • Implement the required API calls, and reuse the corresponding BoringSSL utests here possible
      • Work out how to incrementally integrate the layer into maistra/envoy, if possible, to verify progress.
      • support for x64 and IBM platforms

      Related

      Attachments

        Issue Links

          is related to

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. OSSM-1776 MTT: Add mTLS tests for Maistra (QE)

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed

          Task - Represents a small unit of work that is not end-user facing. OSSM-2281 Maistra Envoy Test rationalization.

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Closed

          Spike - Represents a research-related task. OSSM-1586 Maistra Envoy handshaker code compatibility

          • Undefined - Priority not specified.
          • In Progress
          relates to

          Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. OSSM-717 Reduce time & effort required for rebasing to new istio & envoy versions

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. OSSM-1201 [proxy] Cleanup build flags, especially warning supressions

          • Undefined - Priority not specified.
          • New

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. OSSM-1208 [proxy] Re-enable cryptomb Envoy extension

          • Undefined - Priority not specified.
          • Backlog

          Spike - Represents a research-related task. OSSM-918 [SPIKE] OpenSSL vs BoringSSL investigation

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              rhn-support-twalsh Tim Walsh
              rcernich1 Rob Cernich
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated: