Add More try_compile Feature Probes

### Security issue notifications

If you discover a potential security issue in s2n we ask that you notify
AWS Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/). Please do **not** create a public github issue.

### Problem:

We should attempt to turn all of our weird libcrypto version-checking logic into try_compile/feature probes. It makes our code much cleaner and easier to read. To do this we have to create a file in our tests/features folder that attempts to use a specific header or calls a specific function, and add a try_compile for that feature in both our CMakeLists.txt file and s2n.mk file.

### Example of our feature probe for evp_md5_sha1: https://github.com/aws/s2n-tls/pull/3128
[CMakeLists.txt](https://github.com/aws/s2n-tls/blob/fdf0b20cf82aab1d8caae23b23280c90b0794ca8/CMakeLists.txt#L409)
[s2n.mk](https://github.com/aws/s2n-tls/blob/fdf0b20cf82aab1d8caae23b23280c90b0794ca8/s2n.mk#L217)
[feature probe file](https://github.com/aws/s2n-tls/blob/main/tests/features/evp_md5_sha1.c)
Ideally we would also write a feature_probe unit test checking that if we are using a specific platform/libcrypto version/etc... this feature variable will be turned on. This lets us double check that our features are actually getting turned on.

### Very incomplete list of features that probably can be try_compiled

- [x] [RSA_PSS_SIGNING_SUPPORTED](https://github.com/aws/s2n-tls/blob/main/crypto/s2n_rsa_signing.h#L26)
- [ ] [S2N_AES_SHA256_COMPOSITE_AVAILABLE](https://github.com/aws/s2n-tls/blob/2a3fa0986e1ca3c9e336add2327e22d31853e7ed/crypto/s2n_composite_cipher_aes_sha.c#L44)
- [ ] [S2N_AES_SHA1_COMPOSITE_AVAILABLE](https://github.com/aws/s2n-tls/blob/2a3fa0986e1ca3c9e336add2327e22d31853e7ed/crypto/s2n_composite_cipher_aes_sha.c#L37)
- [ ] [`S2N_GCC_VERSION_AT_LEAST(4,6,0) || defined(__clang__)`](https://github.com/aws/s2n-tls/blob/eff95749338b8b643e6555e5a98c7538dc0082d8/tls/s2n_connection.c#L526-L529) for GCC diagnostic support

[//]: #  (NOTE: If you believe this might be a security issue, please email aws-security@amazon.com instead of creating a GitHub issue. For more details, see the AWS Vulnerability Reporting Guide: https://aws.amazon.com/security/vulnerability-reporting/ )


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add More try_compile Feature Probes #3327

Security issue notifications

Problem:

Example of our feature probe for evp_md5_sha1: #3128

Very incomplete list of features that probably can be try_compiled

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development