This commit was manufactured by cvs2git to create tag 'tb_20250414'.tb_20250414

author: cvs2svn <admin@example.com> 2025-04-14 17:32:06 +0000
committer: cvs2svn <admin@example.com> 2025-04-14 17:32:06 +0000
commit: eb8dd9dca1228af0cd132f515509051ecfabf6f6 (patch)
tree: edb6da6af7e865d488dc1a29309f1e1ec226e603 /src/regress/lib/libssl/interop/botan
parent: 247f0352e0ed72a4f476db9dc91f4d982bc83eb2 (diff)
download: openbsd-tb_20250414.tar.gz
openbsd-tb_20250414.tar.bz2
openbsd-tb_20250414.zip
2 files changed, 0 insertions, 312 deletions
diff --git a/src/regress/lib/libssl/interop/botan/Makefile b/src/regress/lib/libssl/interop/botan/Makefile
deleted file mode 100644
index 85877d4290..0000000000
--- a/src/regress/lib/libssl/interop/botan/Makefile
+++ /dev/null
@@ -1,84 +0,0 @@
-# $OpenBSD: Makefile,v 1.10 2025/01/15 10:54:17 tb Exp $
-.include <bsd.own.mk>
-.if ! exists(/usr/local/bin/botan)
-regress:
-        # install botan2 from ports for interop tests
-        @echo 'Run "pkg_add botan2" to run tests against Botan 2'
-        @echo SKIPPED
-.elif (${COMPILER_VERSION:L} != "clang" && ! exists(/usr/local/bin/eg++))
-regress:
-        # on gcc-archs install g++ from ports for botan2 interop tests
-        @echo 'Run "pkg_add g++" to run tests against Botan 2 on GCC architectures'
-        @echo SKIPPED
-.else
-# C++11
-.if ${COMPILER_VERSION:L} != "clang" && ${CXX} == "c++"
-CXX = /usr/local/bin/eg++
-.endif
-LIBRARIES =             libressl
-.if exists(/usr/local/bin/eopenssl33)
-LIBRARIES +=            openssl33
-.endif
-.if exists(/usr/local/bin/eopenssl34)
-LIBRARIES +=            openssl34
-.endif
-PROGS =         client
-SRCS_client =   client.cpp
-CXXFLAGS =      -I/usr/local/include/botan-2 -Wall
-LDFLAGS =       -L/usr/local/lib
-LDADD =         -lbotan-2
-DPADD =         /usr/local/lib/libbotan-2.a
-.for lib in ${LIBRARIES}
-REGRESS_TARGETS += run-client-botan-server-${lib}
-run-client-botan-server-${lib}: client server.crt
-        LD_LIBRARY_PATH=/usr/local/lib/e${lib} \
-            ../${lib}/server >server-${lib}.out \
-            -c server.crt -k server.key \
-            127.0.0.1 0
-        ./client >client-botan.out \
-            -C ca.crt \
-            127.0.0.1 \
-            `sed -n 's/listen sock: 127.0.0.1 //p' server-${lib}.out`
-        # check that the server child run successfully to the end
-        grep -q '^success$$' server-${lib}.out || \
-            { sleep 1; grep -q '^success$$' server-${lib}.out; }
-        # server must have read client hello
-        grep -q '^<<< hello$$' server-${lib}.out
-        # check that the client run successfully to the end
-        grep -q '^success$$' client-botan.out
-        # client must have read server greeting
-        grep -q '^<<< greeting$$' client-botan.out
-        # currently botan supports TLS 1.2, adapt later
-        grep -q ' Protocol *: TLSv1.2$$' server-${lib}.out
-.endfor
-server.key ca.key:
-        /usr/local/bin/botan keygen >$@.tmp
-        mv $@.tmp $@
-ca.crt: ${@:R}.key
-        /usr/local/bin/botan gen_self_signed ${@:R}.key ${@:R} >$@.tmp \
-            --organization=tls-regress --ca
-        mv $@.tmp $@
-server.req: ${@:R}.key
-        /usr/local/bin/botan gen_pkcs10 ${@:R}.key localhost >$@.tmp \
-            --organization=tls-regress --dns=127.0.0.1
-        mv $@.tmp $@
-server.crt: ca.crt ${@:R}.req
-        /usr/local/bin/botan sign_cert ca.crt ca.key ${@:R}.req >$@.tmp
-        mv $@.tmp $@
-.endif # exists(/usr/local/bin/botan)
-.include <bsd.regress.mk>
diff --git a/src/regress/lib/libssl/interop/botan/client.cpp b/src/regress/lib/libssl/interop/botan/client.cpp
deleted file mode 100644
index 2352d7bba2..0000000000
--- a/src/regress/lib/libssl/interop/botan/client.cpp
+++ /dev/null
@@ -1,228 +0,0 @@
-/*      $OpenBSD: client.cpp,v 1.1 2020/09/15 01:45:16 bluhm Exp $      */
-/*
- * Copyright (c) 2019-2020 Alexander Bluhm <bluhm@openbsd.org>
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <err.h>
-#include <netdb.h>
-#include <unistd.h>
-#include <botan/tls_client.h>
-#include <botan/tls_callbacks.h>
-#include <botan/tls_session_manager.h>
-#include <botan/tls_policy.h>
-#include <botan/auto_rng.h>
-#include <botan/certstor.h>
-#include <iostream>
-#include <string>
-using namespace std;
-class Callbacks : public Botan::TLS::Callbacks {
-public:
-        Callbacks(int socket) :
-                m_socket(socket)
-        {}
-        void print_sockname()
-        {
-                struct sockaddr_storage ss;
-                char host[NI_MAXHOST], port[NI_MAXSERV];
-                socklen_t slen;
-                slen = sizeof(ss);
-                if (getsockname(m_socket, (struct sockaddr *)&ss, &slen) == -1)
-                        err(1, "getsockname");
-                if (getnameinfo((struct sockaddr *)&ss, ss.ss_len, host,
-                    sizeof(host), port, sizeof(port),
-                    NI_NUMERICHOST | NI_NUMERICSERV))
-                        errx(1, "getnameinfo");
-                cout <<"sock: " <<host <<" " <<port <<endl <<flush;
-        }
-        void print_peername()
-        {
-                struct sockaddr_storage ss;
-                char host[NI_MAXHOST], port[NI_MAXSERV];
-                socklen_t slen;
-                slen = sizeof(ss);
-                if (getpeername(m_socket, (struct sockaddr *)&ss, &slen) == -1)
-                        err(1, "getpeername");
-                if (getnameinfo((struct sockaddr *)&ss, ss.ss_len, host,
-                    sizeof(host), port, sizeof(port),
-                    NI_NUMERICHOST | NI_NUMERICSERV))
-                        errx(1, "getnameinfo");
-                cout <<"peer: " <<host <<" " <<port <<endl <<flush;
-        }
-        void tls_emit_data(const uint8_t data[], size_t size) override
-        {
-                size_t off = 0, len = size;
-                while (len > 0) {
-                        ssize_t n;
-                        n = send(m_socket, data + off, len, 0);
-                        if (n < 0)
-                                err(1, "send");
-                        off += n;
-                        len -= n;
-                }
-        }
-        void tls_record_received(uint64_t seq_no, const uint8_t data[],
-            size_t size) override
-        {
-                cout <<"<<< " <<string((const char *)data, size) <<flush;
-                string str("hello\n");
-                cout <<">>> " <<str <<flush;
-                m_channel->send(str);
-                m_channel->close();
-        }
-        void tls_alert(Botan::TLS::Alert alert) override
-        {
-                errx(1, "alert: %s", alert.type_string().c_str());
-        }
-        bool tls_session_established(const Botan::TLS::Session& session)
-            override
-        {
-                cout <<"established" <<endl <<flush;
-                return false;
-        }
-        void set_channel(Botan::TLS::Channel &channel) {
-                m_channel = &channel;
-        }
-protected:
-        int m_socket = -1;
-        Botan::TLS::Channel *m_channel = nullptr;
-};
-class Credentials : public Botan::Credentials_Manager {
-public:
-        std::vector<Botan::Certificate_Store*> trusted_certificate_authorities(
-            const std::string  &type, const std::string  &context)
-            override
-        {
-                std::vector<Botan::Certificate_Store*> cs { &m_ca };
-                return cs;
-        }
-        void add_certificate_file(const std::string &file) {
-                Botan::X509_Certificate cert(file);
-                m_ca.add_certificate(cert);
-        }
-private:
-        Botan::Certificate_Store_In_Memory m_ca;
-};
-class Policy : public Botan::TLS::Strict_Policy {
-public:
-        bool require_cert_revocation_info() const override {
-                return false;
-        }
-};
-void __dead
-usage(void)
-{
-        fprintf(stderr, "usage: client [-C CA] host port\n");
-        exit(2);
-}
-int
-main(int argc, char *argv[])
-{
-        struct addrinfo hints, *res;
-        int ch, s, error;
-        char buf[256];
-        char *cafile = NULL;
-        char *host, *port;
-        while ((ch = getopt(argc, argv, "C:")) != -1) {
-                switch (ch) {
-                case 'C':
-                        cafile = optarg;
-                        break;
-                default:
-                        usage();
-                }
-        }
-        argc -= optind;
-        argv += optind;
-        if (argc == 2) {
-                host = argv[0];
-                port = argv[1];
-        } else {
-                usage();
-        }
-        memset(&hints, 0, sizeof(hints));
-        hints.ai_family = AF_INET;
-        hints.ai_socktype = SOCK_STREAM;
-        error = getaddrinfo(host, port, &hints, &res);
-        if (error)
-                errx(1, "getaddrinfo: %s", gai_strerror(error));
-        if (res == NULL)
-                errx(1, "getaddrinfo empty");
-        s = socket(res->ai_family, res->ai_socktype, res->ai_protocol);
-        if (s == -1)
-                err(1, "socket");
-        if (connect(s, res->ai_addr, res->ai_addrlen) == -1)
-                err(1, "connect");
-        freeaddrinfo(res);
-        {
-                Callbacks callbacks(s);
-                Botan::AutoSeeded_RNG rng;
-                Botan::TLS::Session_Manager_In_Memory session_mgr(rng);
-                Credentials creds;
-                if (cafile != NULL)
-                        creds.add_certificate_file(cafile);
-                Policy policy;
-                callbacks.print_sockname();
-                callbacks.print_peername();
-                Botan::TLS::Client client(callbacks, session_mgr, creds,
-                    policy, rng);
-                callbacks.set_channel(client);
-                while (!client.is_closed()) {
-                        ssize_t n;
-                        n = recv(s, buf, sizeof(buf), 0);
-                        if (n < 0)
-                                err(1, "recv");
-                        if (n == 0)
-                                errx(1, "eof");
-                        client.received_data((uint8_t *)&buf, n);
-                }
-        }
-        if (close(s) == -1)
-                err(1, "close");
-        cout <<"success" <<endl;
-        return 0;
-}
author	cvs2svn <admin@example.com>	2025-04-14 17:32:06 +0000
committer	cvs2svn <admin@example.com>	2025-04-14 17:32:06 +0000
commit	eb8dd9dca1228af0cd132f515509051ecfabf6f6 (patch)
tree	edb6da6af7e865d488dc1a29309f1e1ec226e603 /src/regress/lib/libssl/interop/botan
parent	247f0352e0ed72a4f476db9dc91f4d982bc83eb2 (diff)
download	openbsd-tb_20250414.tar.gz openbsd-tb_20250414.tar.bz2 openbsd-tb_20250414.zip

diff --git a/src/regress/lib/libssl/interop/botan/Makefile b/src/regress/lib/libssl/interop/botan/Makefile deleted file mode 100644 index 85877d4290..0000000000 --- a/src/regress/lib/libssl/interop/botan/Makefile +++ /dev/null
@@ -1,84 +0,0 @@
1	# $OpenBSD: Makefile,v 1.10 2025/01/15 10:54:17 tb Exp $
2
3	.include <bsd.own.mk>
4
5	.if ! exists(/usr/local/bin/botan)
6	regress:
7	# install botan2 from ports for interop tests
8	@echo 'Run "pkg_add botan2" to run tests against Botan 2'
9	@echo SKIPPED
10	.elif (${COMPILER_VERSION:L} != "clang" && ! exists(/usr/local/bin/eg++))
11	regress:
12	# on gcc-archs install g++ from ports for botan2 interop tests
13	@echo 'Run "pkg_add g++" to run tests against Botan 2 on GCC architectures'
14	@echo SKIPPED
15	.else
16
17	# C++11
18	.if ${COMPILER_VERSION:L} != "clang" && ${CXX} == "c++"
19	CXX = /usr/local/bin/eg++
20	.endif
21
22	LIBRARIES = libressl
23	.if exists(/usr/local/bin/eopenssl33)
24	LIBRARIES += openssl33
25	.endif
26	.if exists(/usr/local/bin/eopenssl34)
27	LIBRARIES += openssl34
28	.endif
29
30	PROGS = client
31	SRCS_client = client.cpp
32	CXXFLAGS = -I/usr/local/include/botan-2 -Wall
33	LDFLAGS = -L/usr/local/lib
34	LDADD = -lbotan-2
35	DPADD = /usr/local/lib/libbotan-2.a
36
37	.for lib in ${LIBRARIES}
38
39	REGRESS_TARGETS += run-client-botan-server-${lib}
40
41	run-client-botan-server-${lib}: client server.crt
42	LD_LIBRARY_PATH=/usr/local/lib/e${lib} \
43	../${lib}/server >server-${lib}.out \
44	-c server.crt -k server.key \
45	127.0.0.1 0
46	./client >client-botan.out \
47	-C ca.crt \
48	127.0.0.1 \
49	`sed -n 's/listen sock: 127.0.0.1 //p' server-${lib}.out`
50	# check that the server child run successfully to the end
51	grep -q '^success$$' server-${lib}.out \|\| \
52	{ sleep 1; grep -q '^success$$' server-${lib}.out; }
53	# server must have read client hello
54	grep -q '^<<< hello$$' server-${lib}.out
55	# check that the client run successfully to the end
56	grep -q '^success$$' client-botan.out
57	# client must have read server greeting
58	grep -q '^<<< greeting$$' client-botan.out
59	# currently botan supports TLS 1.2, adapt later
60	grep -q ' Protocol *: TLSv1.2$$' server-${lib}.out
61
62	.endfor
63
64	server.key ca.key:
65	/usr/local/bin/botan keygen >$@.tmp
66	mv $@.tmp $@
67
68	ca.crt: ${@:R}.key
69	/usr/local/bin/botan gen_self_signed ${@:R}.key ${@:R} >$@.tmp \
70	--organization=tls-regress --ca
71	mv $@.tmp $@
72
73	server.req: ${@:R}.key
74	/usr/local/bin/botan gen_pkcs10 ${@:R}.key localhost >$@.tmp \
75	--organization=tls-regress --dns=127.0.0.1
76	mv $@.tmp $@
77
78	server.crt: ca.crt ${@:R}.req
79	/usr/local/bin/botan sign_cert ca.crt ca.key ${@:R}.req >$@.tmp
80	mv $@.tmp $@
81
82	.endif # exists(/usr/local/bin/botan)
83
84	.include <bsd.regress.mk>


diff --git a/src/regress/lib/libssl/interop/botan/client.cpp b/src/regress/lib/libssl/interop/botan/client.cpp deleted file mode 100644 index 2352d7bba2..0000000000 --- a/src/regress/lib/libssl/interop/botan/client.cpp +++ /dev/null
@@ -1,228 +0,0 @@
1	/* $OpenBSD: client.cpp,v 1.1 2020/09/15 01:45:16 bluhm Exp $ */
2	/*
3	* Copyright (c) 2019-2020 Alexander Bluhm <bluhm@openbsd.org>
4	*
5	* Permission to use, copy, modify, and distribute this software for any
6	* purpose with or without fee is hereby granted, provided that the above
7	* copyright notice and this permission notice appear in all copies.
8	*
9	* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10	* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11	* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12	* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13	* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14	* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15	* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16	*/
17
18	#include <sys/types.h>
19	#include <sys/socket.h>
20
21	#include <err.h>
22	#include <netdb.h>
23	#include <unistd.h>
24
25	#include <botan/tls_client.h>
26	#include <botan/tls_callbacks.h>
27	#include <botan/tls_session_manager.h>
28	#include <botan/tls_policy.h>
29	#include <botan/auto_rng.h>
30	#include <botan/certstor.h>
31
32	#include <iostream>
33	#include <string>
34	using namespace std;
35
36	class Callbacks : public Botan::TLS::Callbacks {
37	public:
38	Callbacks(int socket) :
39	m_socket(socket)
40	{}
41
42	void print_sockname()
43	{
44	struct sockaddr_storage ss;
45	char host[NI_MAXHOST], port[NI_MAXSERV];
46	socklen_t slen;
47
48	slen = sizeof(ss);
49	if (getsockname(m_socket, (struct sockaddr *)&ss, &slen) == -1)
50	err(1, "getsockname");
51	if (getnameinfo((struct sockaddr *)&ss, ss.ss_len, host,
52	sizeof(host), port, sizeof(port),
53	NI_NUMERICHOST \| NI_NUMERICSERV))
54	errx(1, "getnameinfo");
55	cout <<"sock: " <<host <<" " <<port <<endl <<flush;
56	}
57
58	void print_peername()
59	{
60	struct sockaddr_storage ss;
61	char host[NI_MAXHOST], port[NI_MAXSERV];
62	socklen_t slen;
63
64	slen = sizeof(ss);
65	if (getpeername(m_socket, (struct sockaddr *)&ss, &slen) == -1)
66	err(1, "getpeername");
67	if (getnameinfo((struct sockaddr *)&ss, ss.ss_len, host,
68	sizeof(host), port, sizeof(port),
69	NI_NUMERICHOST \| NI_NUMERICSERV))
70	errx(1, "getnameinfo");
71	cout <<"peer: " <<host <<" " <<port <<endl <<flush;
72	}
73
74	void tls_emit_data(const uint8_t data[], size_t size) override
75	{
76	size_t off = 0, len = size;
77
78	while (len > 0) {
79	ssize_t n;
80
81	n = send(m_socket, data + off, len, 0);
82	if (n < 0)
83	err(1, "send");
84	off += n;
85	len -= n;
86	}
87	}
88
89	void tls_record_received(uint64_t seq_no, const uint8_t data[],
90	size_t size) override
91	{
92	cout <<"<<< " <<string((const char *)data, size) <<flush;
93
94	string str("hello\n");
95	cout <<">>> " <<str <<flush;
96	m_channel->send(str);
97	m_channel->close();
98	}
99
100	void tls_alert(Botan::TLS::Alert alert) override
101	{
102	errx(1, "alert: %s", alert.type_string().c_str());
103	}
104
105	bool tls_session_established(const Botan::TLS::Session& session)
106	override
107	{
108	cout <<"established" <<endl <<flush;
109	return false;
110	}
111
112	void set_channel(Botan::TLS::Channel &channel) {
113	m_channel = &channel;
114	}
115
116	protected:
117	int m_socket = -1;
118	Botan::TLS::Channel *m_channel = nullptr;
119	};
120
121	class Credentials : public Botan::Credentials_Manager {
122	public:
123	std::vector<Botan::Certificate_Store*> trusted_certificate_authorities(
124	const std::string &type, const std::string &context)
125	override
126	{
127	std::vector<Botan::Certificate_Store*> cs { &m_ca };
128	return cs;
129	}
130
131	void add_certificate_file(const std::string &file) {
132	Botan::X509_Certificate cert(file);
133	m_ca.add_certificate(cert);
134	}
135	private:
136	Botan::Certificate_Store_In_Memory m_ca;
137	};
138
139	class Policy : public Botan::TLS::Strict_Policy {
140	public:
141	bool require_cert_revocation_info() const override {
142	return false;
143	}
144	};
145
146	void __dead
147	usage(void)
148	{
149	fprintf(stderr, "usage: client [-C CA] host port\n");
150	exit(2);
151	}
152
153	int
154	main(int argc, char *argv[])
155	{
156	struct addrinfo hints, *res;
157	int ch, s, error;
158	char buf[256];
159	char *cafile = NULL;
160	char host, port;
161
162	while ((ch = getopt(argc, argv, "C:")) != -1) {
163	switch (ch) {
164	case 'C':
165	cafile = optarg;
166	break;
167	default:
168	usage();
169	}
170	}
171	argc -= optind;
172	argv += optind;
173	if (argc == 2) {
174	host = argv[0];
175	port = argv[1];
176	} else {
177	usage();
178	}
179
180	memset(&hints, 0, sizeof(hints));
181	hints.ai_family = AF_INET;
182	hints.ai_socktype = SOCK_STREAM;
183	error = getaddrinfo(host, port, &hints, &res);
184	if (error)
185	errx(1, "getaddrinfo: %s", gai_strerror(error));
186	if (res == NULL)
187	errx(1, "getaddrinfo empty");
188	s = socket(res->ai_family, res->ai_socktype, res->ai_protocol);
189	if (s == -1)
190	err(1, "socket");
191	if (connect(s, res->ai_addr, res->ai_addrlen) == -1)
192	err(1, "connect");
193	freeaddrinfo(res);
194
195	{
196	Callbacks callbacks(s);
197	Botan::AutoSeeded_RNG rng;
198	Botan::TLS::Session_Manager_In_Memory session_mgr(rng);
199	Credentials creds;
200	if (cafile != NULL)
201	creds.add_certificate_file(cafile);
202	Policy policy;
203
204	callbacks.print_sockname();
205	callbacks.print_peername();
206	Botan::TLS::Client client(callbacks, session_mgr, creds,
207	policy, rng);
208	callbacks.set_channel(client);
209
210	while (!client.is_closed()) {
211	ssize_t n;
212
213	n = recv(s, buf, sizeof(buf), 0);
214	if (n < 0)
215	err(1, "recv");
216	if (n == 0)
217	errx(1, "eof");
218	client.received_data((uint8_t *)&buf, n);
219	}
220	}
221
222	if (close(s) == -1)
223	err(1, "close");
224
225	cout <<"success" <<endl;
226
227	return 0;
228	}