This commit was manufactured by cvs2git to create tag 'bluhm_20191119'.bluhm_20191119

author: cvs2svn <admin@example.com> 2019-11-19 19:57:05 +0000
committer: cvs2svn <admin@example.com> 2019-11-19 19:57:05 +0000
commit: e9f9eb6198f1757b7c0dfef043fadf1fa8243022 (patch)
tree: b5a648f6ccaf6c1cd9915ddb45503d1fccfeba0e /src/regress/lib/libssl/interop/cipher/Makefile
parent: ab72e3a6f7e8d5c71bbba034410468781d5923b6 (diff)
download: openbsd-bluhm_20191119.tar.gz
openbsd-bluhm_20191119.tar.bz2
openbsd-bluhm_20191119.zip
1 files changed, 0 insertions, 175 deletions
diff --git a/src/regress/lib/libssl/interop/cipher/Makefile b/src/regress/lib/libssl/interop/cipher/Makefile
deleted file mode 100644
index 3f43ce804e..0000000000
--- a/src/regress/lib/libssl/interop/cipher/Makefile
+++ /dev/null
@@ -1,175 +0,0 @@
-# $OpenBSD: Makefile,v 1.3 2019/03/28 22:24:13 bluhm Exp $
-# Connect a client to a server.  Both can be current libressl, or
-# openssl 1.0.2, or openssl 1.1.  Create lists of supported ciphers
-# and pin client and server to one of the ciphers.  Use server
-# certificate with compatible type.  Check that client and server
-# have used correct cipher by grepping in their session print out.
-check-cipher-ADH-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ADH-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-ADH-AES128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ADH-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
-check-cipher-ADH-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-ADH-AES256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ADH-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
-check-cipher-ADH-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ADH-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
-check-cipher-ADH-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-AECDH-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-AECDH-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
-check-cipher-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-AES128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
-check-cipher-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-AES256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
-check-cipher-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
-check-cipher-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-AES256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
-check-cipher-DHE-RSA-CHACHA20-POLY1305-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-AES256-SHA384-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-ECDSA-CHACHA20-POLY1305-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES128-SHA-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES128-SHA256-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES256-SHA-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-AES256-SHA384-client-openssl11-server-openssl11 \
-check-cipher-ECDHE-RSA-CHACHA20-POLY1305-client-openssl11-server-openssl11:
-        # openssl11 always prints TLS_AES_256_GCM_SHA384 as cipher in out file
-        @echo DISABLED
-LIBRARIES =             libressl
-.if exists(/usr/local/bin/eopenssl)
-LIBRARIES +=            openssl
-.endif
-.if exists(/usr/local/bin/eopenssl11)
-LIBRARIES +=            openssl11
-.endif
-CLEANFILES =    *.tmp *.ciphers ciphers.mk
-.for clib in ${LIBRARIES}
-client-${clib}.ciphers:
-        LD_LIBRARY_PATH=/usr/local/lib/e${clib} \
-            ../${clib}/client -l ALL -L >$@.tmp
-        sed -n 's/^cipher //p' <$@.tmp | sort -u >$@
-        rm $@.tmp
-.endfor
-.for slib in ${LIBRARIES}
-server-${slib}.ciphers: 127.0.0.1.crt dsa.crt ec.crt rsa.crt
-        LD_LIBRARY_PATH=/usr/local/lib/e${slib} \
-            ../${slib}/server -l ALL -L >$@.tmp
-        sed -n 's/^cipher //p' <$@.tmp | sort -u >$@
-        rm $@.tmp
-.endfor
-.for clib in ${LIBRARIES}
-.for slib in ${LIBRARIES}
-ciphers.mk: client-${clib}-server-${slib}.ciphers
-client-${clib}-server-${slib}.ciphers: \
-    client-${clib}.ciphers server-${slib}.ciphers client-libressl.ciphers
-        # get ciphers shared between client and server
-        sort client-${clib}.ciphers server-${slib}.ciphers >$@.tmp
-        uniq -d <$@.tmp >$@
-        # we are only interested in ciphers supported by libressl
-        sort $@ client-libressl.ciphers >$@.tmp
-        uniq -d <$@.tmp >$@
-        rm $@.tmp
-.endfor
-.endfor
-ciphers.mk:
-        rm -f $@ $@.tmp
-.for clib in ${LIBRARIES}
-.for slib in ${LIBRARIES}
-        echo 'CIPHERS_${clib}_${slib} =' >>$@.tmp \
-            `cat client-${clib}-server-${slib}.ciphers`
-.endfor
-.endfor
-        mv $@.tmp $@
-# hack to convert generated lists into usable make variables
-.if exists(ciphers.mk)
-.include "ciphers.mk"
-.else
-regress: ciphers.mk
-        ${MAKE} -C ${.CURDIR} regress
-.endif
-LEVEL_libressl =
-LEVEL_openssl =
-LEVEL_openssl11 = ,@SECLEVEL=0
-.for clib in ${LIBRARIES}
-.for slib in ${LIBRARIES}
-.for cipher in ${CIPHERS_${clib}_${slib}}
-.if "${cipher:M*-DSS-*}" != ""
-TYPE_${cipher} =        dsa
-.elif "${cipher:M*-ECDSA-*}" != ""
-TYPE_${cipher} =        ec
-.elif "${cipher:M*-GOST89-*}" != ""
-TYPE_${cipher} =        gost
-.elif "${cipher:M*-RSA-*}" != ""
-TYPE_${cipher} =        rsa
-.else
-TYPE_${cipher} =        127.0.0.1
-.endif
-.if "${slib}" == "openssl" && \
-    "${cipher:MADH-*}${cipher:MEDH-*}${cipher:MDHE-*}" != ""
-DHPARAM_${cipher}_${slib} =     -p dh.param
-.else
-DHPARAM_${cipher}_${slib} =
-.endif
-REGRESS_TARGETS +=      run-cipher-${cipher}-client-${clib}-server-${slib}
-run-cipher-${cipher}-client-${clib}-server-${slib} \
-client-cipher-${cipher}-client-${clib}-server-${slib}.out \
-server-cipher-${cipher}-client-${clib}-server-${slib}.out: dh.param \
-    127.0.0.1.crt ${TYPE_${cipher}}.crt ../${clib}/client ../${slib}/server
-        @echo '\n======== $@ ========'
-        LD_LIBRARY_PATH=/usr/local/lib/e${slib} \
-            ../${slib}/server >${@:S/^run/server/}.out \
-            -c ${TYPE_${cipher}}.crt -k ${TYPE_${cipher}}.key \
-            -l ${cipher}${LEVEL_${slib}} ${DHPARAM_${cipher}_${slib}} \
-            127.0.0.1 0
-        LD_LIBRARY_PATH=/usr/local/lib/e${clib} \
-            ../${clib}/client >${@:S/^run/client/}.out \
-            -l ${cipher}${LEVEL_${clib}} \
-            `sed -n 's/listen sock: //p' ${@:S/^run/server/}.out`
-        grep -q '^success$$' ${@:S/^run/server/}.out || \
-            { sleep 1; grep -q '^success$$' ${@:S/^run/server/}.out; }
-        grep -q '^success$$' ${@:S/^run/client/}.out
-REGRESS_TARGETS +=      check-cipher-${cipher}-client-${clib}-server-${slib}
-check-cipher-${cipher}-client-${clib}-server-${slib}: \
-    client-cipher-${cipher}-client-${clib}-server-${slib}.out \
-    server-cipher-${cipher}-client-${clib}-server-${slib}.out
-        @echo '\n======== $@ ========'
-        grep -q ' Cipher *: ${cipher}$$' ${@:S/^check/server/}.out
-        grep -q ' Cipher *: ${cipher}$$' ${@:S/^check/client/}.out
-.endfor
-.endfor
-.endfor
-.include <bsd.regress.mk>
author	cvs2svn <admin@example.com>	2019-11-19 19:57:05 +0000
committer	cvs2svn <admin@example.com>	2019-11-19 19:57:05 +0000
commit	e9f9eb6198f1757b7c0dfef043fadf1fa8243022 (patch)
tree	b5a648f6ccaf6c1cd9915ddb45503d1fccfeba0e /src/regress/lib/libssl/interop/cipher/Makefile
parent	ab72e3a6f7e8d5c71bbba034410468781d5923b6 (diff)
download	openbsd-bluhm_20191119.tar.gz openbsd-bluhm_20191119.tar.bz2 openbsd-bluhm_20191119.zip

diff --git a/src/regress/lib/libssl/interop/cipher/Makefile b/src/regress/lib/libssl/interop/cipher/Makefile deleted file mode 100644 index 3f43ce804e..0000000000 --- a/src/regress/lib/libssl/interop/cipher/Makefile +++ /dev/null
@@ -1,175 +0,0 @@
1	# $OpenBSD: Makefile,v 1.3 2019/03/28 22:24:13 bluhm Exp $
2
3	# Connect a client to a server. Both can be current libressl, or
4	# openssl 1.0.2, or openssl 1.1. Create lists of supported ciphers
5	# and pin client and server to one of the ciphers. Use server
6	# certificate with compatible type. Check that client and server
7	# have used correct cipher by grepping in their session print out.
8
9	check-cipher-ADH-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
10	check-cipher-ADH-AES128-SHA-client-openssl11-server-openssl11 \
11	check-cipher-ADH-AES128-SHA256-client-openssl11-server-openssl11 \
12	check-cipher-ADH-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
13	check-cipher-ADH-AES256-SHA-client-openssl11-server-openssl11 \
14	check-cipher-ADH-AES256-SHA256-client-openssl11-server-openssl11 \
15	check-cipher-ADH-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
16	check-cipher-ADH-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
17	check-cipher-ADH-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
18	check-cipher-ADH-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
19	check-cipher-AECDH-AES128-SHA-client-openssl11-server-openssl11 \
20	check-cipher-AECDH-AES256-SHA-client-openssl11-server-openssl11 \
21	check-cipher-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
22	check-cipher-AES128-SHA-client-openssl11-server-openssl11 \
23	check-cipher-AES128-SHA256-client-openssl11-server-openssl11 \
24	check-cipher-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
25	check-cipher-AES256-SHA-client-openssl11-server-openssl11 \
26	check-cipher-AES256-SHA256-client-openssl11-server-openssl11 \
27	check-cipher-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
28	check-cipher-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
29	check-cipher-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
30	check-cipher-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
31	check-cipher-DHE-RSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
32	check-cipher-DHE-RSA-AES128-SHA-client-openssl11-server-openssl11 \
33	check-cipher-DHE-RSA-AES128-SHA256-client-openssl11-server-openssl11 \
34	check-cipher-DHE-RSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
35	check-cipher-DHE-RSA-AES256-SHA-client-openssl11-server-openssl11 \
36	check-cipher-DHE-RSA-AES256-SHA256-client-openssl11-server-openssl11 \
37	check-cipher-DHE-RSA-CAMELLIA128-SHA-client-openssl11-server-openssl11 \
38	check-cipher-DHE-RSA-CAMELLIA128-SHA256-client-openssl11-server-openssl11 \
39	check-cipher-DHE-RSA-CAMELLIA256-SHA-client-openssl11-server-openssl11 \
40	check-cipher-DHE-RSA-CAMELLIA256-SHA256-client-openssl11-server-openssl11 \
41	check-cipher-DHE-RSA-CHACHA20-POLY1305-client-openssl11-server-openssl11 \
42	check-cipher-ECDHE-ECDSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
43	check-cipher-ECDHE-ECDSA-AES128-SHA-client-openssl11-server-openssl11 \
44	check-cipher-ECDHE-ECDSA-AES128-SHA256-client-openssl11-server-openssl11 \
45	check-cipher-ECDHE-ECDSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
46	check-cipher-ECDHE-ECDSA-AES256-SHA-client-openssl11-server-openssl11 \
47	check-cipher-ECDHE-ECDSA-AES256-SHA384-client-openssl11-server-openssl11 \
48	check-cipher-ECDHE-ECDSA-CHACHA20-POLY1305-client-openssl11-server-openssl11 \
49	check-cipher-ECDHE-RSA-AES128-GCM-SHA256-client-openssl11-server-openssl11 \
50	check-cipher-ECDHE-RSA-AES128-SHA-client-openssl11-server-openssl11 \
51	check-cipher-ECDHE-RSA-AES128-SHA256-client-openssl11-server-openssl11 \
52	check-cipher-ECDHE-RSA-AES256-GCM-SHA384-client-openssl11-server-openssl11 \
53	check-cipher-ECDHE-RSA-AES256-SHA-client-openssl11-server-openssl11 \
54	check-cipher-ECDHE-RSA-AES256-SHA384-client-openssl11-server-openssl11 \
55	check-cipher-ECDHE-RSA-CHACHA20-POLY1305-client-openssl11-server-openssl11:
56	# openssl11 always prints TLS_AES_256_GCM_SHA384 as cipher in out file
57	@echo DISABLED
58
59	LIBRARIES = libressl
60	.if exists(/usr/local/bin/eopenssl)
61	LIBRARIES += openssl
62	.endif
63	.if exists(/usr/local/bin/eopenssl11)
64	LIBRARIES += openssl11
65	.endif
66
67	CLEANFILES = .tmp .ciphers ciphers.mk
68
69	.for clib in ${LIBRARIES}
70	client-${clib}.ciphers:
71	LD_LIBRARY_PATH=/usr/local/lib/e${clib} \
72	../${clib}/client -l ALL -L >$@.tmp
73	sed -n 's/^cipher //p' <$@.tmp \| sort -u >$@
74	rm $@.tmp
75	.endfor
76	.for slib in ${LIBRARIES}
77	server-${slib}.ciphers: 127.0.0.1.crt dsa.crt ec.crt rsa.crt
78	LD_LIBRARY_PATH=/usr/local/lib/e${slib} \
79	../${slib}/server -l ALL -L >$@.tmp
80	sed -n 's/^cipher //p' <$@.tmp \| sort -u >$@
81	rm $@.tmp
82	.endfor
83
84	.for clib in ${LIBRARIES}
85	.for slib in ${LIBRARIES}
86	ciphers.mk: client-${clib}-server-${slib}.ciphers
87	client-${clib}-server-${slib}.ciphers: \
88	client-${clib}.ciphers server-${slib}.ciphers client-libressl.ciphers
89	# get ciphers shared between client and server
90	sort client-${clib}.ciphers server-${slib}.ciphers >$@.tmp
91	uniq -d <$@.tmp >$@
92	# we are only interested in ciphers supported by libressl
93	sort $@ client-libressl.ciphers >$@.tmp
94	uniq -d <$@.tmp >$@
95	rm $@.tmp
96	.endfor
97	.endfor
98
99	ciphers.mk:
100	rm -f $@ $@.tmp
101	.for clib in ${LIBRARIES}
102	.for slib in ${LIBRARIES}
103	echo 'CIPHERS_${clib}_${slib} =' >>$@.tmp \
104	`cat client-${clib}-server-${slib}.ciphers`
105	.endfor
106	.endfor
107	mv $@.tmp $@
108
109	# hack to convert generated lists into usable make variables
110	.if exists(ciphers.mk)
111	.include "ciphers.mk"
112	.else
113	regress: ciphers.mk
114	${MAKE} -C ${.CURDIR} regress
115	.endif
116
117	LEVEL_libressl =
118	LEVEL_openssl =
119	LEVEL_openssl11 = ,@SECLEVEL=0
120
121	.for clib in ${LIBRARIES}
122	.for slib in ${LIBRARIES}
123	.for cipher in ${CIPHERS_${clib}_${slib}}
124
125	.if "${cipher:M-DSS-}" != ""
126	TYPE_${cipher} = dsa
127	.elif "${cipher:M-ECDSA-}" != ""
128	TYPE_${cipher} = ec
129	.elif "${cipher:M-GOST89-}" != ""
130	TYPE_${cipher} = gost
131	.elif "${cipher:M-RSA-}" != ""
132	TYPE_${cipher} = rsa
133	.else
134	TYPE_${cipher} = 127.0.0.1
135	.endif
136
137	.if "${slib}" == "openssl" && \
138	"${cipher:MADH-}${cipher:MEDH-}${cipher:MDHE-*}" != ""
139	DHPARAM_${cipher}_${slib} = -p dh.param
140	.else
141	DHPARAM_${cipher}_${slib} =
142	.endif
143
144	REGRESS_TARGETS += run-cipher-${cipher}-client-${clib}-server-${slib}
145	run-cipher-${cipher}-client-${clib}-server-${slib} \
146	client-cipher-${cipher}-client-${clib}-server-${slib}.out \
147	server-cipher-${cipher}-client-${clib}-server-${slib}.out: dh.param \
148	127.0.0.1.crt ${TYPE_${cipher}}.crt ../${clib}/client ../${slib}/server
149	@echo '\n======== $@ ========'
150	LD_LIBRARY_PATH=/usr/local/lib/e${slib} \
151	../${slib}/server >${@:S/^run/server/}.out \
152	-c ${TYPE_${cipher}}.crt -k ${TYPE_${cipher}}.key \
153	-l ${cipher}${LEVEL_${slib}} ${DHPARAM_${cipher}_${slib}} \
154	127.0.0.1 0
155	LD_LIBRARY_PATH=/usr/local/lib/e${clib} \
156	../${clib}/client >${@:S/^run/client/}.out \
157	-l ${cipher}${LEVEL_${clib}} \
158	`sed -n 's/listen sock: //p' ${@:S/^run/server/}.out`
159	grep -q '^success$$' ${@:S/^run/server/}.out \|\| \
160	{ sleep 1; grep -q '^success$$' ${@:S/^run/server/}.out; }
161	grep -q '^success$$' ${@:S/^run/client/}.out
162
163	REGRESS_TARGETS += check-cipher-${cipher}-client-${clib}-server-${slib}
164	check-cipher-${cipher}-client-${clib}-server-${slib}: \
165	client-cipher-${cipher}-client-${clib}-server-${slib}.out \
166	server-cipher-${cipher}-client-${clib}-server-${slib}.out
167	@echo '\n======== $@ ========'
168	grep -q ' Cipher *: ${cipher}$$' ${@:S/^check/server/}.out
169	grep -q ' Cipher *: ${cipher}$$' ${@:S/^check/client/}.out
170
171	.endfor
172	.endfor
173	.endfor
174
175	.include <bsd.regress.mk>