From patchwork Thu Aug 21 12:14:34 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Gert Doering X-Patchwork-Id: 4369 Return-Path: Delivered-To: patchwork@openvpn.net Received: by 2002:a05:7000:c414:b0:671:5a2c:6455 with SMTP id jt20csp3259404mab; Thu, 21 Aug 2025 05:14:57 -0700 (PDT) X-Forwarded-Encrypted: i=2; AJvYcCWC30cAMtsvyFwpu8C/jh18von/QEqpFfE73r44f9o+E9ibPZdKhHtxhX1bYha+moM+Ut4s7ARvVIg=@openvpn.net X-Google-Smtp-Source: AGHT+IHlozFqCp4drJIvduGxlk7jLw7B66YYpk0w0Kz2g7ZyUVOrxkHcNWcdF3IT/8etMCX8Fyqn X-Received: by 2002:a05:6808:4fe8:b0:437:761b:dd3 with SMTP id 5614622812f47-4377d809edemr941008b6e.50.1755778496581; Thu, 21 Aug 2025 05:14:56 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1755778496; cv=none; d=google.com; s=arc-20240605; b=aThooQtpg2UXdlmkVzz7sWoQtIgb0smpObVdHl346rLfmldZ4C49p7+pItPdHL7A/m WnXmnb2ugvpIu4hE5yEnOMno707ohsQRf6FHxykvR3rmXzO5ZuEGAvvNVXlB9Jg7LZOo 8joct5VW2J81djo9slLer73epjNZCaLmVfjHpVZiTyhndqIGpJVWXN00nAoELBWlodVH qxBN3pla8IzM1cbAm7N7Bis/6PP7yLE1uz6zbfU1jLOSRWsg1Rt0MLfoX510jAE+wPAd FFVx8wOPYF2e0dsoHcSBqG4Wvzm4BJ+6NLi7bQ59dHMuPtr5tjY/ZlAXpKPlvdglg+dj SU1Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=errors-to:content-transfer-encoding:list-subscribe:list-help :list-post:list-archive:list-unsubscribe:list-id:precedence:subject :mime-version:references:in-reply-to:message-id:date:to:from :dkim-signature:dkim-signature:dkim-signature; bh=ZQABaQgBj0Rt5S0i27B+rFBt3t0mF7OyYvuI4NXFfh4=; fh=4NbAC/LsuMLI0S0hprUlLSLCiHwg6SCAifhH718Jh0Q=; b=bjcPGJvEy3TBDWhmpm4N37NTln/zG0F9qMVJ2CCDZErdLvav6+u4SiNpYme7gU6pMJ KBox/PdwEXKbSXduVvTzSuJjyyq/HpLQfNWM52iQhRflkX3RbztFDZO140QtBrHra9yp lNbnky2uoUDWJE8bknYWp3tjrhX/2vPQ8Ji2UxNR/jxY0AnvXc1HS9iRi+oD7lK9gQTs 3Vl5sfqE8Jp20vFR8Owyoyk7JloPz12ubHx04owVnfAF+QIQ7KhrmtedEsHQ43lIbPp+ y3pfgxP0UYUjsSGSLfXt/X7uR/oTNWIqPD5zI8UpZq5RpjPkgJAgdrOTI58AyYK24GRT m/rw==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@lists.sourceforge.net header.s=beta header.b=I9fgvu51; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=Repx2i9Q; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b=bgvKR017; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=muc.de Received: from lists.sourceforge.net (lists.sourceforge.net. [216.105.38.7]) by mx.google.com with ESMTPS id 46e09a7af769-74392396e53si3395232a34.297.2025.08.21.05.14.56 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 21 Aug 2025 05:14:56 -0700 (PDT) Received-SPF: pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) client-ip=216.105.38.7; Authentication-Results: mx.google.com; dkim=pass header.i=@lists.sourceforge.net header.s=beta header.b=I9fgvu51; dkim=neutral (body hash did not verify) header.i=@sourceforge.net header.s=x header.b=Repx2i9Q; dkim=neutral (body hash did not verify) header.i=@sf.net header.s=x header.b=bgvKR017; spf=pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) smtp.mailfrom=openvpn-devel-bounces@lists.sourceforge.net; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=muc.de DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.sourceforge.net; s=beta; h=Content-Transfer-Encoding:Content-Type: List-Subscribe:List-Help:List-Post:List-Archive:List-Unsubscribe:List-Id: Subject:MIME-Version:References:In-Reply-To:Message-ID:Date:To:From:Sender: Reply-To:Cc:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Owner; bh=ZQABaQgBj0Rt5S0i27B+rFBt3t0mF7OyYvuI4NXFfh4=; b=I9fgvu51PG2/tdCFCC1poDahfw beQr4qKBmEAZHJKCKuAdMCGhL3n5ngkFmhBUPbCwKcqicdgL+XCNGGJCjXw/RFqaR+SOJLm10w7Op A+HQ68GQcvA6TSTggKffQ+EjR8iqepoAymNz7myhiJznMTuab1RSvu6/qwgrphS1sMz4=; Received: from [127.0.0.1] (helo=sfs-ml-1.v29.lw.sourceforge.com) by sfs-ml-1.v29.lw.sourceforge.com with esmtp (Exim 4.95) (envelope-from ) id 1up4Bx-0000x1-Hu; Thu, 21 Aug 2025 12:14:53 +0000 Received: from [172.30.29.66] (helo=mx.sourceforge.net) by sfs-ml-1.v29.lw.sourceforge.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95) (envelope-from ) id 1up4Bv-0000wt-IE for openvpn-devel@lists.sourceforge.net; Thu, 21 Aug 2025 12:14:51 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sourceforge.net; s=x; h=Content-Transfer-Encoding:Content-Type:MIME-Version :References:In-Reply-To:Message-ID:Date:Subject:To:From:Sender:Reply-To:Cc: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=k92P1cme5JUdsG2GKFHURbtfSB85dojvORdBLCO0HYU=; b=Repx2i9Qg4hjKLuDkQoKGGc4tW OXYTmcubXucSy7EDKDSBktnQv1IIieaWcuoyNHafSrdXagk1s5zbydEEFkxjfTR+xAW+Ll/aI3Xjv rzSFfMD4ztd/mwq3asmLkWLQgdc6CftFaFM3ZAuYn6ESjDLiq7UTjTYwzP6I78fbkIno=; DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sf.net; s=x ; h=Content-Transfer-Encoding:Content-Type:MIME-Version:References: In-Reply-To:Message-ID:Date:Subject:To:From:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=k92P1cme5JUdsG2GKFHURbtfSB85dojvORdBLCO0HYU=; b=bgvKR0178+U1EVyVljKL0me3V9 kQaF6J8uj1UaPZYDhGFWr9VDv6fGEES8pug+m0YAHNFXLsu3fbiA+LqVvuLtomhOKrEan/wPT6biy EUyo1vUPnAM6D4dR1Ny3RK0IK2YVbfxHjioxpdgsWGWljoKO2EOkuc7jvwwJ+fMBZWCg=; Received: from [193.149.48.143] (helo=blue.greenie.muc.de) by sfi-mx-2.v28.lw.sourceforge.com with esmtps (TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.95) id 1up4Bu-0007Li-Ef for openvpn-devel@lists.sourceforge.net; Thu, 21 Aug 2025 12:14:51 +0000 Received: from blue.greenie.muc.de (localhost [127.0.0.1]) by blue.greenie.muc.de (8.18.1/8.18.1) with ESMTP id 57LCEh5h030699 for ; Thu, 21 Aug 2025 14:14:43 +0200 Received: (from gert@localhost) by blue.greenie.muc.de (8.18.1/8.18.1/Submit) id 57LCEh7I030698 for openvpn-devel@lists.sourceforge.net; Thu, 21 Aug 2025 14:14:43 +0200 From: Gert Doering To: openvpn-devel@lists.sourceforge.net Date: Thu, 21 Aug 2025 14:14:34 +0200 Message-ID: <20250821121442.30679-1-gert@greenie.muc.de> X-Mailer: git-send-email 2.49.1 In-Reply-To: References: MIME-Version: 1.0 X-Spam-Score: 1.3 (+) X-Spam-Report: =?unknown-8bit?q?Spam_detection_software=2C_running_on_the_sy?= =?unknown-8bit?q?stem_=22sfi-spamd-2=2Ehosts=2Ecolo=2Esdot=2Eme=22=2C?= =?unknown-8bit?q?_has_NOT_identified_this_incoming_email_as_spam=2E__The_ori?= =?unknown-8bit?q?ginal?= =?unknown-8bit?q?_message_has_been_attached_to_this_so_you_can_view_it_or_la?= =?unknown-8bit?q?bel?= =?unknown-8bit?q?_similar_future_email=2E__If_you_have_any_questions=2C_see?= =?unknown-8bit?q?_the_administrator_of_that_system_for_details=2E?= =?unknown-8bit?q?_?= =?unknown-8bit?q?_Content_preview=3A__From=3A_Samuli_Sepp=C3=A4nen_=3Csasepp?= =?unknown-8bit?q?=40pm=2Eme=3E_Change-Id=3A_I13ad2b7da6b008bc692b1f08f502fc?= =?unknown-8bit?q?3fc57e7206?= =?unknown-8bit?q?_Signed-off-by=3A_Samuli_Sepp=C3=A4nen_=3Csasepp=40pm=2Eme?= =?unknown-8bit?q?=3E_Acked-by=3A_Arne_Schwabe_=3Carne-openvpn=40rfc2549=2Eo?= =?unknown-8bit?q?rg=3E?= =?unknown-8bit?q?_---_This_change_was_reviewed_on_Gerrit_and_approved_by_at_?= =?unknown-8bit?q?least_one_developer=2E?= =?unknown-8bit?q?_I_request_to_merge_it_to_master=2E_?= =?unknown-8bit?q?_?= =?unknown-8bit?q?_Content_analysis_details=3A___=281=2E3_points=2C_5=2E0_req?= =?unknown-8bit?q?uired=29?= =?unknown-8bit?q?_?= =?unknown-8bit?q?_pts_rule_name______________description?= =?unknown-8bit?q?_----_----------------------_------------------------------?= =?unknown-8bit?q?--------------------?= =?unknown-8bit?q?_1=2E3_RDNS=5FNONE______________Delivered_to_internal_netwo?= =?unknown-8bit?q?rk_by_a_host_with_no_rDNS?= X-Headers-End: 1up4Bu-0007Li-Ef Subject: [Openvpn-devel] [PATCH v2] Add sample FFDH parameters file and use that in t_server_null tests X-BeenThere: openvpn-devel@lists.sourceforge.net X-Mailman-Version: 2.1.21 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox X-GMAIL-THRID: =?utf-8?q?1841067192830015762?= X-GMAIL-MSGID: =?utf-8?q?1841067192830015762?= From: Samuli Seppänen Change-Id: I13ad2b7da6b008bc692b1f08f502fc3fc57e7206 Signed-off-by: Samuli Seppänen Acked-by: Arne Schwabe --- This change was reviewed on Gerrit and approved by at least one developer. I request to merge it to master. Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/1147 This mail reflects revision 2 of this Change. Acked-by according to Gerrit (reflected above): Arne Schwabe diff --git a/sample/sample-keys/ffdhe2048.pem b/sample/sample-keys/ffdhe2048.pem new file mode 100644 index 0000000..9b182b7 --- /dev/null +++ b/sample/sample-keys/ffdhe2048.pem @@ -0,0 +1,8 @@ +-----BEGIN DH PARAMETERS----- +MIIBCAKCAQEA//////////+t+FRYortKmq/cViAnPTzx2LnFg84tNpWp4TZBFGQz ++8yTnc4kmz75fS/jY2MMddj2gbICrsRhetPfHtXV/WVhJDP1H18GbtCFY2VVPe0a +87VXE15/V8k1mE8McODmi3fipona8+/och3xWKE2rec1MKzKT0g6eXq8CrGCsyT7 +YdEIqUuyyOP7uWrat2DX9GgdT0Kj3jlN9K5W7edjcrsZCwenyO4KbXCeAvzhzffi +7MA0BM0oNC9hkXL+nOmFg/+OTxIy7vKBg8P+OxtMb61zO7X8vC7CIAXFjvGDfRaD +ssbzSibBsu/6iGtCOGEoXJf//////////wIBAg== +-----END DH PARAMETERS----- diff --git a/tests/t_server_null_default.rc b/tests/t_server_null_default.rc index 900f189..798cfd0 100755 --- a/tests/t_server_null_default.rc +++ b/tests/t_server_null_default.rc @@ -13,7 +13,7 @@ top_builddir="${top_builddir:-..}" sample_keys="${srcdir}/../sample/sample-keys" -DH="${sample_keys}/dh2048.pem" +DH="${sample_keys}/ffdhe2048.pem" CA="${sample_keys}/ca.crt" CLIENT_CERT="${sample_keys}/client.crt" CLIENT_KEY="${sample_keys}/client.key"