tinc/debian/patches/0002-Add-cipher-suite-selection-options-to-sptps_test.patch

From 1d0eea4899f9642a3945c07b9266e660b9f9ce71 Mon Sep 17 00:00:00 2001
From: Guus Sliepen <guus@tinc-vpn.org>
Date: Tue, 3 Aug 2021 00:38:37 +0200
Subject: [PATCH 02/10] Add cipher suite selection options to sptps_test.

---
 src/sptps_test.c | 38 +++++++++++++++++++++++++++-----------
 1 file changed, 27 insertions(+), 11 deletions(-)

diff --git a/src/sptps_test.c b/src/sptps_test.c
index e77ab9c7..32ed62d3 100644
--- a/src/sptps_test.c
+++ b/src/sptps_test.c
@@ -127,6 +127,8 @@ static struct option const long_options[] = {
 	{"replay-window", required_argument, NULL, 'W'},
 	{"special", no_argument, NULL, 's'},
 	{"verbose", required_argument, NULL, 'v'},
+	{"cipher-suites", required_argument, NULL, 'M'},
+	{"preferred-cipher", required_argument, NULL, 'P'},
 	{"help", no_argument, NULL, 1},
 	{NULL, 0, NULL, 0}
 };
@@ -136,19 +138,21 @@ static void usage(void) {
 	        "Usage: %s [options] my_ed25519_key_file his_ed25519_key_file [host] port\n"
 	        "\n"
 	        "Valid options are:\n"
-	        "  -d, --datagram          Enable datagram mode.\n"
-	        "  -q, --quit              Quit when EOF occurs on stdin.\n"
-	        "  -r, --readonly          Only send data from the socket to stdout.\n"
+	        "  -d, --datagram            Enable datagram mode.\n"
+	        "  -q, --quit                Quit when EOF occurs on stdin.\n"
+	        "  -r, --readonly            Only send data from the socket to stdout.\n"
 #ifdef HAVE_LINUX
-	        "  -t, --tun               Use a tun device instead of stdio.\n"
+	        "  -t, --tun                 Use a tun device instead of stdio.\n"
 #endif
-	        "  -w, --writeonly         Only send data from stdin to the socket.\n"
-	        "  -L, --packet-loss RATE  Fake packet loss of RATE percent.\n"
-	        "  -R, --replay-window N   Set replay window to N bytes.\n"
-	        "  -s, --special           Enable special handling of lines starting with #, ^ and $.\n"
-	        "  -v, --verbose           Display debug messages.\n"
-	        "  -4                      Use IPv4.\n"
-	        "  -6                      Use IPv6.\n"
+	        "  -w, --writeonly           Only send data from stdin to the socket.\n"
+	        "  -L, --packet-loss RATE    Fake packet loss of RATE percent.\n"
+	        "  -R, --replay-window N     Set replay window to N bytes.\n"
+	        "  -M, --cipher-suites MASK  Set the mask of allowed cipher suites.\n"
+	        "  -P, --preferred-suite N   Set the preferred cipher suite.\n"
+	        "  -s, --special             Enable special handling of lines starting with #, ^ and $.\n"
+	        "  -v, --verbose             Display debug messages.\n"
+	        "  -4                        Use IPv4.\n"
+	        "  -6                        Use IPv6.\n"
 	        "\n"
 	        "Report bugs to tinc@tinc-vpn.org.\n";
 
@@ -326,6 +330,8 @@ static int run_test(int argc, char *argv[]) {
 	int r;
 	int option_index = 0;
 	bool quit = false;
+	unsigned long cipher_suites = SPTPS_ALL_CIPHER_SUITES;
+	unsigned long preferred_suite = 0;
 
 	while((r = getopt_long(argc, argv, "dqrstwL:W:v46", long_options, &option_index)) != EOF) {
 		switch(r) {
@@ -366,6 +372,14 @@ static int run_test(int argc, char *argv[]) {
 			sptps_replaywin = atoi(optarg);
 			break;
 
+		case 'M': /* cipher suites */
+			cipher_suites = strtoul(optarg, NULL, 0);
+			break;
+
+		case 'P': /* preferred cipher */
+			preferred_suite = strtoul(optarg, NULL, 0);
+			break;
+
 		case 'v': /* be verbose */
 			verbose = true;
 			break;
@@ -571,6 +585,8 @@ static int run_test(int argc, char *argv[]) {
 		.label = "sptps_test",
 		.send_data = send_data,
 		.receive_record = receive_record,
+		.cipher_suites = cipher_suites,
+		.preferred_suite = preferred_suite,
 	};
 
 	if(!sptps_start(&s, &params)) {
-- 
2.36.0
Add patches for alternative ciphersuite 2022-04-25 11:11:44 +00:00			`From 1d0eea4899f9642a3945c07b9266e660b9f9ce71 Mon Sep 17 00:00:00 2001`
			`From: Guus Sliepen <guus@tinc-vpn.org>`
			`Date: Tue, 3 Aug 2021 00:38:37 +0200`
			`Subject: [PATCH 02/10] Add cipher suite selection options to sptps_test.`

			`---`
			`src/sptps_test.c \| 38 +++++++++++++++++++++++++++-----------`
			`1 file changed, 27 insertions(+), 11 deletions(-)`

			`diff --git a/src/sptps_test.c b/src/sptps_test.c`
			`index e77ab9c7..32ed62d3 100644`
			`--- a/src/sptps_test.c`
			`+++ b/src/sptps_test.c`
			`@@ -127,6 +127,8 @@ static struct option const long_options[] = {`
			`{"replay-window", required_argument, NULL, 'W'},`
			`{"special", no_argument, NULL, 's'},`
			`{"verbose", required_argument, NULL, 'v'},`
			`+ {"cipher-suites", required_argument, NULL, 'M'},`
			`+ {"preferred-cipher", required_argument, NULL, 'P'},`
			`{"help", no_argument, NULL, 1},`
			`{NULL, 0, NULL, 0}`
			`};`
			`@@ -136,19 +138,21 @@ static void usage(void) {`
			`"Usage: %s [options] my_ed25519_key_file his_ed25519_key_file [host] port\n"`
			`"\n"`
			`"Valid options are:\n"`
			`- " -d, --datagram Enable datagram mode.\n"`
			`- " -q, --quit Quit when EOF occurs on stdin.\n"`
			`- " -r, --readonly Only send data from the socket to stdout.\n"`
			`+ " -d, --datagram Enable datagram mode.\n"`
			`+ " -q, --quit Quit when EOF occurs on stdin.\n"`
			`+ " -r, --readonly Only send data from the socket to stdout.\n"`
			`#ifdef HAVE_LINUX`
			`- " -t, --tun Use a tun device instead of stdio.\n"`
			`+ " -t, --tun Use a tun device instead of stdio.\n"`
			`#endif`
			`- " -w, --writeonly Only send data from stdin to the socket.\n"`
			`- " -L, --packet-loss RATE Fake packet loss of RATE percent.\n"`
			`- " -R, --replay-window N Set replay window to N bytes.\n"`
			`- " -s, --special Enable special handling of lines starting with #, ^ and $.\n"`
			`- " -v, --verbose Display debug messages.\n"`
			`- " -4 Use IPv4.\n"`
			`- " -6 Use IPv6.\n"`
			`+ " -w, --writeonly Only send data from stdin to the socket.\n"`
			`+ " -L, --packet-loss RATE Fake packet loss of RATE percent.\n"`
			`+ " -R, --replay-window N Set replay window to N bytes.\n"`
			`+ " -M, --cipher-suites MASK Set the mask of allowed cipher suites.\n"`
			`+ " -P, --preferred-suite N Set the preferred cipher suite.\n"`
			`+ " -s, --special Enable special handling of lines starting with #, ^ and $.\n"`
			`+ " -v, --verbose Display debug messages.\n"`
			`+ " -4 Use IPv4.\n"`
			`+ " -6 Use IPv6.\n"`
			`"\n"`
			`"Report bugs to tinc@tinc-vpn.org.\n";`

			`@@ -326,6 +330,8 @@ static int run_test(int argc, char *argv[]) {`
			`int r;`
			`int option_index = 0;`
			`bool quit = false;`
			`+ unsigned long cipher_suites = SPTPS_ALL_CIPHER_SUITES;`
			`+ unsigned long preferred_suite = 0;`

			`while((r = getopt_long(argc, argv, "dqrstwL:W:v46", long_options, &option_index)) != EOF) {`
			`switch(r) {`
			`@@ -366,6 +372,14 @@ static int run_test(int argc, char *argv[]) {`
			`sptps_replaywin = atoi(optarg);`
			`break;`

			`+ case 'M': /* cipher suites */`
			`+ cipher_suites = strtoul(optarg, NULL, 0);`
			`+ break;`
			`+`
			`+ case 'P': /* preferred cipher */`
			`+ preferred_suite = strtoul(optarg, NULL, 0);`
			`+ break;`
			`+`
			`case 'v': /* be verbose */`
			`verbose = true;`
			`break;`
			`@@ -571,6 +585,8 @@ static int run_test(int argc, char *argv[]) {`
			`.label = "sptps_test",`
			`.send_data = send_data,`
			`.receive_record = receive_record,`
			`+ .cipher_suites = cipher_suites,`
			`+ .preferred_suite = preferred_suite,`
			`};`

			`if(!sptps_start(&s, &params)) {`
			`--`
			`2.36.0`