Skip to content

Several CLI Fixes#2898

Merged
justsmth merged 10 commits intoaws:mainfrom
nhatnghiho:cli-fixes
Dec 12, 2025
Merged

Several CLI Fixes#2898
justsmth merged 10 commits intoaws:mainfrom
nhatnghiho:cli-fixes

Conversation

@nhatnghiho
Copy link
Copy Markdown
Contributor

@nhatnghiho nhatnghiho commented Dec 11, 2025
edited
Loading

Description of changes:

Modify a few of our CLI commands to match OpenSSL's behavior:

  • ecparam:
    • Add secp256r1 as valid curve name
    • Enable write key when -genkey is provided despite -noout. Previously, writing is suppressed with -noout
  • x509: Set serial number when signing
  • pkeyutl:
    • Add support for -pkeyopt
    • Accept rsa_pss_saltlen:-1 as a valid pkeyopt value
  • req: Suppress key write if -key is provided and no -keyout is specified

Testing:

Unit tests

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and the ISC license.

@nhatnghiho nhatnghiho requested a review from a team as a code owner December 11, 2025 00:51
@nhatnghiho nhatnghiho force-pushed the cli-fixes branch 2 times, most recently from cdf5497 to 1ae912b Compare December 11, 2025 01:57
github-actions[bot]
github-actions bot reviewed Dec 11, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

clang-tidy made some suggestions

There were too many comments to post at once. Showing the first 10 out of 16. Check the log or trigger a new build to see more.

@codecov-commenter
Copy link
Copy Markdown

codecov-commenter commented Dec 11, 2025
edited
Loading

Codecov Report

❌ Patch coverage is 57.56757% with 157 lines in your changes missing coverage. Please review.
✅ Project coverage is 78.34%. Comparing base (f5e4585) to head (2653c19).
⚠️ Report is 18 commits behind head on main.

Files with missing lines Patch % Lines
tool-openssl/ecparam_test.cc 46.59% 40 Missing and 7 partials ⚠️
tool-openssl/x509_test.cc 56.25% 42 Missing ⚠️
tool-openssl/pkeyutl_test.cc 35.59% 38 Missing ⚠️
tool-openssl/x509.cc 63.63% 20 Missing ⚠️
tool-openssl/ecparam.cc 85.71% 5 Missing ⚠️
tool-openssl/pkeyutl.cc 81.48% 5 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #2898      +/-   ##
==========================================
+ Coverage   78.22%   78.34%   +0.11%     
==========================================
  Files         683      685       +2     
  Lines      117491   118348     +857     
  Branches    16510    16643     +133     
==========================================
+ Hits        91909    92716     +807     
- Misses      24694    24740      +46     
- Partials      888      892       +4

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

justsmth
justsmth previously approved these changes Dec 11, 2025
View reviewed changes
justsmth
justsmth previously approved these changes Dec 11, 2025
View reviewed changes
skmcgrail
skmcgrail reviewed Dec 11, 2025
View reviewed changes
justsmth
justsmth previously approved these changes Dec 12, 2025
View reviewed changes
@justsmth justsmth enabled auto-merge (squash) December 12, 2025 18:27
samuel40791765
samuel40791765 reviewed Dec 12, 2025
View reviewed changes
@justsmth justsmth merged commit e74bb95 into aws:main Dec 12, 2025
468 of 473 checks passed
nhatnghiho added a commit to nhatnghiho/aws-lc that referenced this pull request Jan 2, 2026
@nhatnghiho
Address remaining comments from aws#2898
4014a4b
@nhatnghiho nhatnghiho mentioned this pull request Jan 2, 2026
Merged
nhatnghiho added a commit to nhatnghiho/aws-lc that referenced this pull request Jan 13, 2026
@nhatnghiho
Address remaining comments from aws#2898
ebb3455
justsmth pushed a commit that referenced this pull request Mar 10, 2026
@nhatnghiho @samuel40791765
Clean up CLI code (#2927)
2f1bbe4 
### Description of changes: 
This PR addresses the remaining comments from PRs #2877 and #2898. I
also took the liberty to clean up `tool-openssl` to make our code easier
to read.

### Testing:
Unit tests

By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache 2.0 license and the ISC license.

---------

Co-authored-by: Samuel Chiang <sachiang@amazon.com>
WillChilds-Klein pushed a commit to WillChilds-Klein/aws-lc that referenced this pull request Mar 11, 2026
@nhatnghiho @samuel40791765 @WillChilds-Klein
Clean up CLI code (aws#2927)
726ec0e 
### Description of changes: 
This PR addresses the remaining comments from PRs aws#2877 and aws#2898. I
also took the liberty to clean up `tool-openssl` to make our code easier
to read.

### Testing:
Unit tests

By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache 2.0 license and the ISC license.

---------

Co-authored-by: Samuel Chiang <sachiang@amazon.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@skmcgrail skmcgrail skmcgrail left review comments

@github-actions github-actions[bot] github-actions[bot] left review comments

@samuel40791765 samuel40791765 samuel40791765 approved these changes

@justsmth justsmth justsmth approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@nhatnghiho @codecov-commenter @skmcgrail @samuel40791765 @justsmth