gh-131050: Allow CPython test to handle TLS libraries lacking FFDHE ciphersuites

[WillChilds-Klein]

Notes

Please see #131050's description.

Testing

• CPython CI
• Build CPython main against AWS-LC's libcrypto and libssl, observed that the modified test now skips itself:

$ make && ./python -m unittest test.test_ssl.ThreadedTests.test_dh_params
...
AWS-LC 1.41.1
test_ssl: testing with 'AWS-LC 1.41.1' (1, 1, 1, 7, 15)
          under 'Linux-6.8.0-1015-aws-x86_64-with-glibc2.35'
          HAS_SNI = True
          OP_ALL = 0x       0
          OP_NO_TLSv1_1 = 0x10000000
s
----------------------------------------------------------------------
Ran 1 test in 0.007s

OK (skipped=1)

• Issue: Allow CPython test to handle TLS libraries lacking FFDHE ciphersuites #131050

[picnixz]

Strictly speaking, the (FF) part is usually used to distinguish between FF-based DH and elliptic curve DH. Rather than skipping the test, I think we should actually add a test for checking ECDHE in this case. The reason is that ADH and EDH/DHE do not contain EC-based DH.

Otherwise, it's as if we're skipping a test that shouldn't really be skipped (we're not testing loading of DH parameters). Are AWS-LC and BoringSSL only supporting EC-based DH?

[bedevere-bot]

🤖 New build scheduled with the buildbot fleet by @picnixz for commit 9bf7e6c 🤖

Results will be shown at:

https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F131051%2Fmerge

If you want to schedule another build, you need to add the 🔨 test-with-buildbots label again.

[picnixz]

Until the build bots are done, don't update the PR. TiA

[picnixz]

Some build bots may fail due to other issues (like the BigMem one as I think it doesn't contain the fix from yesterday) but I'm just interested in testing the various supported build bots.

[WillChilds-Klein]

Hi @picnixz, do you think the buildbot failures are caused by this PR? Going by the buildbot logs, it doesn't look like the reference leaks are related to test_ssl.

[picnixz]

Click on "Update branch" and I'll rerun them! I don't think they are related though but some fixes were added recently.

[WillChilds-Klein]

Ok, branch updated. Thanks @picnixz!

[bedevere-bot]

🤖 New build scheduled with the buildbot fleet by @gpshead for commit 781d531 🤖

Results will be shown at:

https://buildbot.python.org/all/#/grid?branch=refs%2Fpull%2F131051%2Fmerge

If you want to schedule another build, you need to add the 🔨 test-with-buildbots label again.

[picnixz]

I have a suggestion where we can remove the return tpe annotation and also extract supports_dhe into a more general function of the form:

def supports_kx_alias(context, aliases):
    for cipher in ctx.get_ciphers():
        for alias in aliases:
            if f"Kx={alias}" in cipher['description']:
                return True
    return False

Maybe we can use it later or in some other parts of the code. But first, let the build bots finish before committing (namely, don't touch this PR!)

[picnixz]

Everything looks good now. Maybe you want to extract the little helper to help refactoring the test suite, otherwise we can let it like this.

[WillChilds-Klein]

Sure @picnixz, added in 7a8375a

[picnixz]

Sorry for the back-and-forth with the auto squash-merge but I changed the commit message quite a lot and since I can't preview it...

[miss-islington-app]

Thanks @WillChilds-Klein for the PR, and @picnixz for merging it 🌮🎉.. I'm working now to backport this PR to: 3.12, 3.13.
🐍🍒⛏🤖

[bedevere-app]

GH-131874 is a backport of this pull request to the 3.13 branch.

[bedevere-app]

GH-131875 is a backport of this pull request to the 3.12 branch.

[bedevere-bot]

⚠️⚠️⚠️ Buildbot failure ⚠️⚠️⚠️

Hi! The buildbot aarch64 Fedora Stable LTO + PGO 3.x (tier-2) has failed when building commit be2d218.

What do you need to do:

1. Don't panic.
2. Check the buildbot page in the devguide if you don't know what the buildbots are or how they work.
3. Go to the page of the buildbot that failed (https://buildbot.python.org/#/builders/524/builds/7281) and take a look at the build logs.
4. Check if the failure is related to this commit (be2d218) or if it is a false positive.
5. If the failure is related to this commit, please, reflect that on the issue and make a new Pull Request with a fix.

You can take a look at the buildbot page here:

https://buildbot.python.org/#/builders/524/builds/7281

Failed tests:

• test_perf_profiler

Failed subtests:

• test_python_calls_appear_in_the_stack_if_perf_activated - test.test_perf_profiler.TestPerfProfilerWithDwarf.test_python_calls_appear_in_the_stack_if_perf_activated

Summary of the results of the build (if available):

==

Click to see traceback logs

Traceback (most recent call last):
  File "/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/Lib/test/test_perf_profiler.py", line 364, in test_python_calls_appear_in_the_stack_if_perf_activated
    self.assertIn(f"py::foo:{script}", stdout)
    ~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
AssertionError: 'py::foo:/tmp/test_python_kh5d19x3/tmp7z551xcy/perftest.py' not found in 'python 2914497 403081.224020:          1 cycles:Pu: \n\t    ffff80982ac0 _start+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2914497 403081.224107:        215 cycles:Pu: \n\t    ffff8097e56c _dl_start+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff80982ad3 _start+0x13 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2914497 403081.224143:        215 cycles:Pu: \n\t    ffff8097e56c _dl_start+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff80982ad3 _start+0x13 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2914497 403081.225081:       3266 cycles:Pu: \n\t    ffff80983580 _dl_find_object_init+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff80980ff7 dl_main+0x21f7 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8097d5ff _dl_sysdep_start+0x1df (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8097eb17 _dl_start_final+0x5ab (inlined)\n\t    ffff8097eb17 _dl_start+0x5ab (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff80982ad3 _start+0x13 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2914497 403081.225428:     102123 cycles:Pu: \n\t          5854e4 _mi_strnicmp+0x64 (inlined)\n\t          5854e4 _mi_prim_getenv.constprop.0+0x64 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          5851c3 mi_getenv+0x5f (inlined)\n\t          5851c3 mi_option_init+0x5f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          584b9f mi_option_get+0x9f (inlined)\n\t          584b9f _mi_options_init+0x9f (inlined)\n\t          584b9f mi_process_load+0x9f (inlined)\n\t          584b9f _mi_process_init+0x9f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t    ffff807163b7 __libc_start_main@@GLIBC_2.34+0x117 (/usr/lib64
ined)\n\t          591e9c PyDict_Contains+0x358 (inlined)\n\t          591e9c add_operators+0x358 (inlined)\n\t          591e9c type_ready_fill_dict+0x358 (inlined)\n\t          591e9c type_ready+0x358 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          5919ab init_static_type+0xcb (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          590ecf _PyTypes_InitTypes+0x47 (inlined)\n\t          590ecf pycore_init_types+0x47 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58fd8f pycore_interp_init+0x25cb (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58812f pyinit_config+0x3cf (inlined)\n\t          58812f pyinit_core.constprop.0+0x3cf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          587c23 Py_InitializeFromConfig+0x33 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585f6f pymain_init+0xc3 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585e33 pymain_main+0xf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585da3 Py_BytesMain+0x23 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t    ffff8071625b __libc_start_call_main+0x7b (/usr/lib64/libc.so.6)\n\t    ffff8071633b __libc_start_main@@GLIBC_2.34+0x9b (/usr/lib64/libc.so.6)\n\t          5849ef _start+0x2f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\npython 2914497 403081.229542:    2614835 cycles:Pu: \n\t          49e340 _PyObject_HashFast+0x9c (inlined)\n\t          49e340 find_name_in_mro+0x9c (inlined)\n\t          49e340 update_one_slot+0x9c (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          59a60f fixup_slot_dispatchers+0x407 (inlined)\n\t          59a60f type_new_impl+0x407 (inlined)\n\t          59a60f type_new+0x407 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          49bd87 type_call+0x1e3 (inlined)\n\t          49bd87 _PyObject_MakeTpCall+0x1e3 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          497467 _PyObject_VectorcallTstate+0xdb (inlined)\n\t          497467 _PyObject_CallFunctionVa+0xdb (inlined)\n\t          497467 PyObject_CallFunction+0xdb (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          599fa3 PyErr_NewException+0xd7 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          5901c7 init_heap_exctypes+0x2a03 (inlined)\n\t          5901c7 _Py_xi_state_init+0x2a03 (inlined)\n\t          5901c7 _PyXI_Init+0x2a03 (inlined)\n\t          5901c7 pycore_interp_init+0x2a03 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58812f pyinit_config+0x3cf (inlined)\n\t          58812f pyinit_core.constprop.0+0x3cf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          587c23 Py_InitializeFromConfig+0x33 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585f6f pymain_init+0xc3 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585e33 pymain_main+0xf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585da3 Py_BytesMain+0x23 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t    ffff8071625b __libc_start_call_main+0x7b (/usr/lib64/libc.so.6)\n\t    ffff8071633b __libc_start_main@@GLIBC_2.34+0x9b (/usr/lib64/libc.so.6)\n\t          5849ef _start+0x2f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\npython 2914497 403081.235245:    7583866 cycles:Pu: \n\t          4d5b54 _PyType_LookupStackRefAndVersion+0x2f4 (inlined)\n\t          4d5b


Traceback (most recent call last):
  File "/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/Lib/test/test_perf_profiler.py", line 364, in test_python_calls_appear_in_the_stack_if_perf_activated
    self.assertIn(f"py::foo:{script}", stdout)
    ~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
AssertionError: 'py::foo:/tmp/test_python_tl6omha8/tmprecj9xvf/perftest.py' not found in 'python 2938980 403188.214703:          1 cycles:Pu: \n\t    ffff82670ac0 _start+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2938980 403188.214736:          1 cycles:Pu: \n\tffffaa282d37fc78 [unknown] ([unknown])\n\tffffaa282d38049c [unknown] ([unknown])\n\tffffaa282bf215e4 [unknown] ([unknown])\n\t    ffff82670ac0 _start+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2938980 403188.215066:          1 cycles:Pu: \n\t    ffff8265a4b4 open_verify.constprop.0+0x114 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8265d2fb _dl_map_object+0x3af (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff826585bf openaux+0x3f (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff82657303 _dl_catch_exception+0x63 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff82658b33 _dl_map_object_deps+0x553 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8266e19f dl_main+0x139f (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8266b5ff _dl_sysdep_start+0x1df (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8266cb17 _dl_start_final+0x5ab (inlined)\n\t    ffff8266cb17 _dl_start+0x5ab (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff82670ad3 _start+0x13 (/usr/lib/ld-linux-aarch64.so.1)\n\npython 2938980 403188.215090:        288 cycles:Pu: \n\npython 2938980 403188.216092:       1352 cycles:Pu: \n\t    ffff8265dc80 do_lookup_x+0x0 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff8265e833 _dl_lookup_symbol_x+0x113 (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff82663a5b _dl_fixup+0xfb (/usr/lib/ld-linux-aarch64.so.1)\n\t    ffff82665ef7 _dl_runtime_resolve+0x47 (/usr/lib/ld-linux-aarch64.so.1)\n\t          58644f init_condattr+0x4f (inlined)\n\t          58644f PyThread__init_thread+0x4f (inlined)\n\t          58644f PyThread_init_thread+0x4f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58644f PyThread_init_thread+0x4f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58644f init_condattr+0x4f (inlined)\n\t          58644f PyThread__init_thread+0x4f (inlined)\n\t          58644f PyThread_init_thread+0x4f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58644f PyThread_init_thread+0x4f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\npython 2938980 403188.216202:      63313 cycles:Pu: \n\t    ffff8247b1d4 _int_free+0x148 (/usr/lib64/libc.so.6)\n\t    ffff8247dd4f cfree@GLIBC_2.17+0xe3 (/usr/lib64/libc.so.6)\n\t    ffff824117fb _nl_load_locale_from_archive+0x35b (/usr/lib64/libc.so.6)\n\t    ffff82410c7f _nl_find_locale+0xff (/usr/lib64/libc.so.6)\n\t    ffff8241344f setlocale+0x3cf (/usr/lib64/libc.so.6)\n\t          58715f _Py_SetLocaleFromEnv+0x13 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          586577 _PyPreConfig_Read+0x10b (inlined)\n\t          586577 _Py_PreInitializeFromPyArgv+0x10
    590ecf _PyTypes_InitTypes+0x47 (inlined)\n\t          590ecf pycore_init_types+0x47 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58fd8f pycore_interp_init+0x25cb (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58812f pyinit_config+0x3cf (inlined)\n\t          58812f pyinit_core.constprop.0+0x3cf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          587c23 Py_InitializeFromConfig+0x33 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585f6f pymain_init+0xc3 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585e33 pymain_main+0xf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585da3 Py_BytesMain+0x23 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t    ffff8240625b __libc_start_call_main+0x7b (/usr/lib64/libc.so.6)\n\t    ffff8240633b __libc_start_main@@GLIBC_2.34+0x9b (/usr/lib64/libc.so.6)\n\t          5849ef _start+0x2f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\npython 2938980 403188.218183:    1535913 cycles:Pu: \n\tffffaa282d37f654 [unknown] ([unknown])\n\tffffaa282d380484 [unknown] ([unknown])\n\tffffaa282bf215e4 [unknown] ([unknown])\n\t    ffff8247c980 _int_malloc+0xd80 (/usr/lib64/libc.so.6)\n\t    ffff8247d5cb malloc+0x22b (/usr/lib64/libc.so.6)\n\t          487a23 _PyMem_RawMalloc+0x11b (inlined)\n\t          487a23 PyMem_RawMalloc+0x11b (inlined)\n\t          487a23 _PyObject_Malloc+0x11b (inlined)\n\t          487a23 PyMem_Malloc+0x11b (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          490287 PyType_FromMetaclass+0x187 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          590f1f _Py_initialize_generic+0x97 (inlined)\n\t          590f1f _PyTypes_InitTypes+0x97 (inlined)\n\t          590f1f pycore_init_types+0x97 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58fd8f pycore_interp_init+0x25cb (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58812f pyinit_config+0x3cf (inlined)\n\t          58812f pyinit_core.constprop.0+0x3cf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          587c23 Py_InitializeFromConfig+0x33 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585f6f pymain_init+0xc3 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585e33 pymain_main+0xf (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585da3 Py_BytesMain+0x23 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t    ffff8240625b __libc_start_call_main+0x7b (/usr/lib64/libc.so.6)\n\t    ffff8240633b __libc_start_main@@GLIBC_2.34+0x9b (/usr/lib64/libc.so.6)\n\t          5849ef _start+0x2f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\npython 2938980 403188.220921:    4809440 cycles:Pu: \n\t          5b6d04 _PyConfig_AsDict+0x44 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          58b797 _PyConfig_InitPathConfig+0xd7 (inlined)\n\t          58b797 _PyConfig_InitPathConfig+0xd7 (inlined)\n\t          58b797 config_init_import+0xd7 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          5b581f _PyConfig_InitImportConfig+0x5f (inlined)\n\t          5b581f init_interp_main+0x5f (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          587c57 pyinit_main+0x67 (inlined)\n\t          587c57 Py_InitializeFromConfig+0x67 (/home/buildbot/buildarea/3.x.cstratak-fedora-stable-aarch64.lto-pgo/build/python)\n\t          585f6f pymain_init+0xc3 (/home/bui