Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add the active crypto backend to build info (go version -m app) #972

Draft
wants to merge 2 commits into
base: microsoft/main
Choose a base branch
from
Draft

Add the active crypto backend to build info (go version -m app) #972

wants to merge 2 commits into from

Conversation

dagood
Copy link
Member

@dagood dagood commented Jul 5, 2023
edited
Loading

This change makes it easier to tell what backend a program ended up being built with by adding lines like cryptobackend=openssl to the build info key-value pairs:

$ GOEXPERIMENT=systemcrypto go build . && go version -m exp
exp: devel go1.21-a011bc5ece Mon Jul 3 13:03:24 2023 -0500 X:systemcrypto
        build   GOEXPERIMENT=systemcrypto
        build   GOOS=linux
        build   cryptobackend=openssl
... [more pairs above and below this output]

$ go build -tags=goexperiment.systemcrypto . && go version -m exp
exp: devel go1.21-a011bc5ece Mon Jul 3 13:03:24 2023 -0500
        build   -tags=goexperiment.systemcrypto
        build   cryptobackend=openssl
...

$ GOOS=windows GOEXPERIMENT=systemcrypto go build . && go version -m exp.exe
exp.exe: devel go1.21-a011bc5ece Mon Jul 3 13:03:24 2023 -0500 X:systemcrypto
        build   GOEXPERIMENT=systemcrypto
        build   GOOS=windows
        build   cryptobackend=cng
...

Note that X:systemcrypto shows up when using GOEXPERIMENT, but -tags doesn't show up there. The -tags line only shows up when the -tags flag is used for go build. Technically, someone (or a program) can look for these signs and figure out what the program is using by understanding the build logic, but this could be fairly fragile. Instead, we can include the info directly.

buildinfo was added in 1.18.

The built-in pairs are defined at https://pkg.go.dev/runtime/debug#BuildSetting, and I haven't seen any reason we shouldn't add our own pairs. The most likely break I can think of is that an external tool will fail if it sees an unrecognized pair, but it seems more likely to me that it would skip them.

@dagood dagood mentioned this pull request Aug 8, 2023
Open
@karianna
Copy link
Member

karianna commented Oct 1, 2024

@dagood We intending to keep this PR? I noted it was a year old :-)

@dagood
Copy link
Member Author

dagood commented Oct 7, 2024
edited
Loading

I would still argue that we should do this. I think now, it's even more important given #1352 (@qmuntal). We should probably also add some straightforward "used Microsoft Go" data (because there will no longer be an explicit GOEXPERIMENT or tag).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@microsoft-golang-review-bot microsoft-golang-review-bot Awaiting requested review from microsoft-golang-review-bot microsoft-golang-review-bot will be requested when the pull request is marked ready for review microsoft-golang-review-bot is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add debug.BuildSetting entries corresponding to crypto backend usage
2 participants
@dagood @karianna