haxe [eval] https tests

There's something wrong with mbedtls (or more likely how we use it), but I couldn't fix this yet.. :/

Also, hl on mac seems to have a similar issue :thinking:

Apr 18 '24 13:04 kLabz

@Apprentice-Alchemist do you have an idea what we're doing wrong there that could cause this Unix.Unix_error(Unix.EBADF, "recv", "") error?

https://github.com/HaxeFoundation/haxe/blob/db842bfd6c815784f16da415d6718bcb7d393a66/libs/mbedtls/mbedtls_stubs.c#L447-L450

https://github.com/HaxeFoundation/haxe/blob/db842bfd6c815784f16da415d6718bcb7d393a66/std/eval/_std/sys/ssl/Socket.hx#L27-L37

https://github.com/HaxeFoundation/haxe/blob/db842bfd6c815784f16da415d6718bcb7d393a66/std/sys/Http.hx#L444-L453

Edit: Seems like I can dodge the issue with some GC runs

Apr 19 '24 06:04 kLabz

Hmm. If I try haxe.Http.requestUrl("https://raw.githubusercontent.com/HaxeFoundation/haxe/development/tests/unit/res1.txt") it works, if I try with https://build.haxe.org/builds/haxe/linux64/haxe_latest.tar.gz I get a segfault.

As for that EBADF issue, the cause would be this function being called with a bad socket https://github.com/HaxeFoundation/haxe/blob/db842bfd6c815784f16da415d6718bcb7d393a66/src/macro/eval/evalSsl.ml#L72-L74 aka the issue would be somehwere here https://github.com/HaxeFoundation/haxe/blob/db842bfd6c815784f16da415d6718bcb7d393a66/libs/mbedtls/mbedtls_stubs.c#L462-L481 I don't know enough about Ocaml FFI to immediately see anything wrong with the bindings.

Apr 19 '24 16:04 Apprentice-Alchemist

Yes the file needs to be big enough to trigger that issue. The GC workaround makes me think we're allocating a bit too much there, and eval GC doesn't like while loops ? 🤔

Apr 19 '24 18:04 kLabz

I'm not very familiar with OCaml FFI either, but I always thought that only CAMLprim value kind of functions were supposed to have all this CAMLparam0 and such cruft. If that isn't the case then at the very least it looks suspicious that there's a param0 thing on a function that clearly has 3 parameters.

Apr 22 '24 08:04 Simn

That param0 thing is needed for that function to be able to declare value locals, but since it doesn't take any value parameters it doesn't need to use CAMLparam3. https://ocaml.org/manual/5.1/intfc.html#sec503

Apr 22 '24 08:04 Apprentice-Alchemist

Hmm, but it does have this vctx = (value)ctx; line which makes me wonder if ctx shouldn't be a value in the first place.

Apr 22 '24 09:04 Simn

Thinking about it some more, the real problem is probably that ctx is stored somewhere the GC can't see.

Apr 22 '24 09:04 Apprentice-Alchemist

Yes I think that's what I'm trying to get at as well.

Apr 22 '24 09:04 Simn

Update please!

Apr 26 '24 14:04 Simn

Well.. locally it's worse than before (the workaround isn't working anymore), even if CI seems fine so far :thinking: There's something wrong with the mbedtls 3 impl I think, will investigate tomorrow.

Apr 29 '24 20:04 kLabz

Works fine on my machine, with or without the workaround. (Arch Linux, compiler linked with mbedtls 3)

Apr 30 '24 09:04 Apprentice-Alchemist

Works fine on my machine, with or without the workaround. (Arch Linux, compiler linked with mbedtls 3)

You do enable https tests by commenting out this line, right? https://github.com/HaxeFoundation/haxe/blob/6bda9cca3e56c5172e016511c8804f36730cc677/tests/unit/src/unit/TestHttps.hx#L7

I'm on Arch Linux too and I get this with or without the workaround:

src/unit/TestMainNow.hx:6: Generated at: 2024-04-30 11:49:31
src/unit/TestMain.hx:31: START
malloc(): invalid size (unsorted)
[3]    2210161 IOT instruction (core dumped)  haxe compile-macro.hxml

(unless I use nightlies which are not compiled with mbedtls 3, then it's fine)

Apr 30 '24 09:04 kLabz

Yes, I enabled https tests.

Does the core dump give a useful backtrace?

Apr 30 '24 10:04 Apprentice-Alchemist

Doesn't give anything :/ Can't repro my issue on CI, but also can't make it work locally unless I force mbedtls 2..

Also, a similar fix might be needed for mac+hl for these tests to pass

Apr 30 '24 12:04 kLabz

Regarding the HL+macOS failure, I don't think it's caused by GC issues or stuff like that.

I did a little bit of debugging using CI (https://github.com/Apprentice-Alchemist/hashlink/actions/runs/8907771743/job/24462210850) The error is caused by mbedtls failing in TLS 1.3 stuff: https://github.com/Mbed-TLS/mbedtls/blob/2ca6c285a0dd3f33982dd57299012dacab1ff206/library/ssl_tls13_generic.c#L1684-L1693

Not yet sure what the root cause is, but I suspect it might be due to some compile option getting enable by Homebrew somehow?

May 01 '24 10:05 Apprentice-Alchemist

Ah, figured it out.

Starting in MbedTLS 3.6 MBEDTLS_SSL_PROTO_TLS1_3 is enabled by default. The TLS 1.3 code uses PSA Crypto, which requires psa_crypto_init to be called before using any mbedtls functions.

May 01 '24 10:05 Apprentice-Alchemist

Ah nice, thanks! Would be nice to have a draft PR with your branch so that it could be done at some point (by you or someone else), and I could disable the test here in the meantime.

As for my local issue, as long as it's only happening for me I guess it's ok... :/

May 02 '24 12:05 kLabz

I have merged #11655, please update the branch!

Jul 25 '24 13:07 Simn

I'm still getting malloc(): invalid size (unsorted) locally, which

is really annoying, since I do work with eval target (and it's worse than before for me since I can't work around the issue anymore)
tells me there's still something wrong even if CI isn't catching it

Jul 29 '24 07:07 kLabz

Not failing locally anymore (I did comment out the line to run https tests locally :sweat_smile:), seems good to merge if CI still agrees.

Jan 21 '25 06:01 kLabz

haxe haxe copied to clipboard

[eval] https tests

haxe
haxe copied to clipboard