sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-08 00:02:03 -04:00
Code Issues Projects Releases Wiki Activity
10,786 Commits 100 Branches 327 Tags
Commit Graph

1111 Commits

Author SHA1 Message Date
Reto Buerki
8484f2bc5c Implement multiple-clients integration test 
Two transport connections to gateway sun are set up, one from client
carol and the other from client dave. The gateway sun uses the Trusted
Key Manager (TKM) and is the responder for both connections. The
authentication is based on X.509 certificates. In order to test the
connections, both carol and dave ping gateway sun.
 2013-03-19 15:23:51 +01:00
Reto Buerki
a520e4a010 Implement net2net-xfrmproxy integration test 2013-03-19 15:23:50 +01:00
Reto Buerki
847d320950 Implement net2net-initiator integration test 2013-03-19 15:23:50 +01:00
Reto Buerki
d8b2064a34 Add xfrm_proxy integration test 2013-03-19 15:23:50 +01:00
Reto Buerki
f10f7fe261 Provide script to build Ada XFRM proxy 2013-03-19 15:23:50 +01:00
Reto Buerki
3150dbd3e3 Add TKM responder integration test 2013-03-19 15:23:50 +01:00
Reto Buerki
117375ed00 Add initial TKM integration test 
A connection between the hosts moon and sun is set up. The host moon
uses the Trusted Key Manager (TKM) and is the initiator of the transport
connection. The authentication is based on X.509 certificates.
 2013-03-19 15:23:50 +01:00
Reto Buerki
7b702150a0 Add expect-file guest image script 
This script can be used in pretest.dat files to wait until a given file
appears.
 2013-03-19 15:23:50 +01:00
Reto Buerki
0e1d008d71 Add /usr/local/lib/ipsec to linker cache 2013-03-19 15:23:50 +01:00
Reto Buerki
b491ee4ecd Provide recipes to build tkm and required libraries 2013-03-19 15:23:50 +01:00
Reto Buerki
3fc766d61e Add GNAT compiler and Ada libs to base image 2013-03-19 15:23:50 +01:00
Tobias Brunner
7a87381840 testing: Rename interfaces and bridges so they are easier to identify 
This simplifies capturing traffic with Wireshark on the host as each of
the guest's interfaces is clearly identified.
The three bridges were previously numbered starting from 0, this scheme
is restored here.
 2013-03-19 11:50:39 +01:00
Tobias Brunner
9525e9c506 testing: Don't use a specific version for the QEMU machine type 
The previously used pc-1.1 is not yet available on e.g. Ubuntu 12.04.
With 'pc' the most current supported version of that type is used.
 2013-03-19 11:50:39 +01:00
Tobias Brunner
d62f043f01 testing: Add screen package to base image 
Makes working in a single SSH session easier.
 2013-03-05 17:40:13 +01:00
Tobias Brunner
eeb029360a testing: Enable ssh connection to second IP by name (e.g. moon1) 2013-03-05 17:40:13 +01:00
Tobias Brunner
45ee7c9429 testing: ssh script accepts IP addresses instead of host names 2013-03-05 17:40:13 +01:00
Tobias Brunner
5057455674 testing: ssh script forwards arguments to ssh command 
This allows to execute commands on a virtual host.
 2013-03-05 17:40:12 +01:00
Andreas Steffen
d7eec03815 removed unneeded DS files 2013-03-05 09:08:25 +01:00
Andreas Steffen
7b11a1dcdc upgraded KVM test suite to Linux 3.8 kernel 2013-03-03 11:59:07 +01:00
Andreas Steffen
f7580a5a67 added openssl-ikev2/alg-aes-gcm scenario 2013-03-03 11:43:52 +01:00
Andreas Steffen
81419b9748 use DNs in tnc/tnccs-20-tls scenario 2013-03-03 10:47:17 +01:00
Tobias Brunner
9a70fe8412 testing: Add a script to easily connect to a host via SSH 
This doesn't require any entries in /etc/hosts and the correct SSH
config is used to allow password-less access.
 2013-02-28 18:21:14 +01:00
Reto Buerki
b32e732b2f Check kvm command existence in start-testing 2013-02-22 19:22:08 +01:00
Andreas Steffen
f0c102cbfa Added ikev2/rw-dnssec scenario 2013-02-19 12:25:01 +01:00
Andreas Steffen
1d4ff25fb8 Added ikev2/net2net-dnssec scenario 2013-02-19 12:25:01 +01:00
Andreas Steffen
37c589f0e0 Configure winnetou as a DNSSEC enabled nameserver for the strongswan.org, org, and root zones 2013-02-19 12:25:01 +01:00
Andreas Steffen
3fbc328d14 Build unbound and ipseckey plugins on KVM image 2013-02-19 12:25:01 +01:00
Andreas Steffen
5374fe3a09 added ikev1/net2net-fragmentation scenario 2013-02-12 23:01:48 +01:00
Andreas Steffen
7d355f853d use EAP identity in tnc/tnccs-20-pdp scenario 2013-02-12 20:41:37 +01:00
Andreas Steffen
d82372fab8 Removed INSTALL from EXTRA_DIST 2013-01-17 23:20:37 +01:00
Tobias Brunner
232af2fab5 Updated documentation for the integration tests 2013-01-17 16:56:02 +01:00
Tobias Brunner
812cd9c18a Removed UML from description of ikev2/default-keys test 2013-01-17 16:56:02 +01:00
Tobias Brunner
b1169a880a Updated comments in test.conf of all tests 2013-01-17 16:56:02 +01:00
Tobias Brunner
7699a928f7 Renamed $UMLHOSTS to $VIRTHOSTS 2013-01-17 16:56:02 +01:00
Reto Buerki
88bffacfdc Drop vim swap file 2013-01-17 16:55:04 +01:00
Reto Buerki
f3db566983 Enforce reception of multicast traffic on virbr[1|2] 
This is needed to let the ha/both-active test pass.
 2013-01-17 16:55:04 +01:00
Reto Buerki
41943e9c1b Make core dumps work 
Core dumps are written to the /var/local/dumps directory.
 2013-01-17 16:55:04 +01:00
Reto Buerki
e3a3013323 Append seconds to TESTDATE 
This avoids 'file exists' warnings when running tests multiple times in
one minute.
 2013-01-17 16:55:04 +01:00
Reto Buerki
2c4954ad24 Switch to 'mapped' access mode for hostfs 
Passthrough mode only works as expected when running as root. On
Debian/Ubuntu systems qemu runs as user 'libvirt-qemu' and group 'kvm'
so all shared files must be chowned to grant access from guests.

Symlinks created on the host are still problematic because the Plan 9
filesystem has no direct notion of symbolic links, see [1].

[1] - http://ericvh.github.com/9p-rfc/rfc9p2000.u.html
 2013-01-17 16:55:04 +01:00
Reto Buerki
677795c3e7 Make guest ACPI shutdown work 2013-01-17 16:55:03 +01:00
Reto Buerki
c25f850601 Drop obsolete Gentoo dhcpd init script 2013-01-17 16:55:03 +01:00
Reto Buerki
530f7b8421 No need to enable ip_forward in pretest files 
It is enabled by default now.
 2013-01-17 16:55:03 +01:00
Reto Buerki
49b1655ae1 Auto-create symlink to testing directory in workdir 2013-01-17 16:55:03 +01:00
Andreas Steffen
44e533b88e converted ha/both-active iptables scenario 2013-01-17 16:55:03 +01:00
Andreas Steffen
5c09942d54 converted all ipv6 iptables/ip6tables scenarios 2013-01-17 16:55:03 +01:00
Andreas Steffen
a0ffe67fab converted all p2pnat iptables scenarios 2013-01-17 16:55:02 +01:00
Andreas Steffen
b27836412b Rename UML to KVM tests 2013-01-17 16:55:02 +01:00
Andreas Steffen
472a411aa8 converted all tnc iptables scenarios 2013-01-17 16:55:02 +01:00
Andreas Steffen
4aa32cc3fe List daemon.log on $RADIUSHOSTS 2013-01-17 16:55:02 +01:00
Andreas Steffen
cedc96c2c4 implemented ip6tables.rules 2013-01-17 16:55:02 +01:00