sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-04 00:00:14 -04:00
Code Issues Projects Releases Wiki Activity
19,315 Commits 101 Branches 327 Tags
Commit Graph

45 Commits

Author SHA1 Message Date
Andreas Steffen
8fc6340c05 testing: Migrated pfkey scenarios to new default plugins 2024-11-22 14:14:53 +01:00
Andreas Steffen
1265d78cac ntru: Remove legacy NTRU key exchange method 2024-11-22 14:05:36 +01:00
Tobias Brunner
3a52fc83f8 testing: Load kdf plugin in all scenarios that require it 
Once we use plugin-provided prf+() these won't work otherwise.
 2022-04-14 19:02:48 +02:00
Tobias Brunner
ce4aebe00a testing: Configure logging via syslog in strongswan.conf 
Globally configure logging in strongswan.conf.testing and replace all
charondebug statements with strongswan.conf settings.
 2017-11-15 17:24:04 +01:00
Tobias Brunner
a721b9c53d testing: Add pfkey/net2net-rekey scenario 2017-08-07 10:44:05 +02:00
Andreas Steffen
99c03e9a11 testing: make curve25519 the default DH group 2016-11-14 16:20:51 +01:00
Tobias Brunner
aacf84d837 testing: Add expect-connection calls for all tests and hosts 
There are some exceptions (e.g. those that use auto=start or p2pnat).
 2016-06-16 14:35:18 +02:00
Tobias Brunner
8f56bbc82b testing: Update test scenarios for Debian jessie 
The main difference is that ping now reports icmp_seq instead of
icmp_req, so we match for icmp_.eq, which works with both releases.

tcpdump now also reports port 4500 as ipsec-nat-t.
 2016-06-16 14:04:11 +02:00
Andreas Steffen
141ac4df8f testing: wait until connections are loaded 2016-05-15 19:02:57 +02:00
Andreas Steffen
5e2b740a00 128 bit default security strength requires 3072 bit prime DH group 2015-12-14 10:39:40 +01:00
Tobias Brunner
cbaafa03c7 testing: Avoid delays with ping by using -W and -i options 
With -W we reduce timeouts when we don't expect a response.  With -i the
interval between pings is reduced (mostly in case of auto=route where
the first ping yields no reply).
 2015-11-09 15:18:35 +01:00
Tobias Brunner
f519acd42f testing: Remove nearly all sleep calls from pretest and posttest scripts 
By consistently using the `expect-connection` helper we can avoid pretty
much all previously needed calls to sleep.
 2015-11-09 15:18:35 +01:00
Andreas Steffen
d04e47a9eb testing: Wait for DH crypto tests to complete 2015-04-26 11:51:49 +02:00
Martin Willi
44b6a34d43 configure: Load fetcher plugins after crypto base plugins 
Some fetcher plugins (such as curl) might build upon OpenSSL to implement
HTTPS fetching. As we set (and can't unset) threading callbacks in our
openssl plugin, we must ensure that OpenSSL functions don't get called after
openssl plugin unloading.

We achieve that by loading curl and all other fetcher plugins after the base
crypto plugins, including openssl.
 2014-09-24 17:34:54 +02:00
Tobias Brunner
73211f9b74 testing: Add pfkey/shunt-policies-nat-rw scenario 2014-06-26 18:13:26 +02:00
Tobias Brunner
945e1df738 testing: Remove obsolete shunt-policies scenarios 2014-06-26 18:12:00 +02:00
Tobias Brunner
1dfd11fd92 testing: Added pfkey/compress test case 2014-04-24 17:36:17 +02:00
Tobias Brunner
7a61bf9032 testing: Run 'conntrack -F' before all test scenarios 
This prevents failures due to remaining conntrack entries.
 2014-04-02 11:55:05 +02:00
Andreas Steffen
c683b389ba Merged libstrongswan options into charon section 2014-03-15 14:07:34 +01:00
Tobias Brunner
b1169a880a Updated comments in test.conf of all tests 2013-01-17 16:56:02 +01:00
Tobias Brunner
7699a928f7 Renamed $UMLHOSTS to $VIRTHOSTS 2013-01-17 16:56:02 +01:00
Reto Buerki
530f7b8421 No need to enable ip_forward in pretest files 
It is enabled by default now.
 2013-01-17 16:55:03 +01:00
Andreas Steffen
6fff9d9ace converted all pfkey iptables scenarios 2013-01-17 16:55:01 +01:00
Reto Buerki
533177003c Adapt test configurations 
Adapt test configurations to the new Debian-based system.
 2013-01-17 15:22:07 +01:00
Andreas Steffen
daa857029f removed plutostart parameter 2012-06-13 21:19:05 +02:00
Andreas Steffen
31c83b973e load nonce plugin 2012-05-23 15:05:57 +02:00
Andreas Steffen
8f834c16ae upgraded pfkey scenarios to 5.0.0 2012-05-05 11:55:48 +02:00
Andreas Steffen
7ec35f561c show correct network topology in shunt-policies scenarios 2011-07-26 07:55:20 +02:00
Andreas Steffen
1f3b5c7778 corrected description of shunt-policies scenario 2011-07-05 22:07:42 +02:00
Tobias Brunner
cc9cfc2e11 testing: Added missing host alice to test.conf. 2010-09-02 19:04:22 +02:00
Andreas Steffen
c349a68b2e all x509 based pfkey scenarios require the revocation plugin 2010-07-15 23:17:37 +02:00
Tobias Brunner
a5166b16a1 Adding socket-default to the plugin list in all test cases. 2010-03-09 17:43:21 +01:00
Andreas Steffen
4d025314c8 added pfkey/alg-sha384 and pfkey/alg-sha512 scenarios 2009-12-09 17:25:12 +01:00
Andreas Steffen
4c8f3dff9c adapted pfkey alg and esp scenarios 2009-12-09 15:38:17 +01:00
Martin Willi
41f57038e4 tests load pem/pkcs1 plugins, pubkey plugin not needed anymore 2009-08-26 11:23:55 +02:00
Andreas Steffen
f179ba474e enable integrity test in all rw-cert scenarios 2009-07-17 20:52:14 +02:00
Andreas Steffen
c8db70156d test-vector support in rw-cert scenarios 2009-06-16 20:53:41 +02:00
Andreas Steffen
0002de3b98 adaptations of UML scenarios to 4.3.2 2009-06-16 07:33:22 +02:00
Andreas Steffen
f6bb013ab7 adapted IKEv2 scenarios to new crypto proposal output 2009-05-20 08:04:01 +02:00
Andreas Steffen
dcf47581a8 shortened DH group names 2009-05-15 20:58:04 +02:00
Andreas Steffen
182ebf85e6 added pfkey/esp-alg-null scenario 2009-01-15 00:47:21 +00:00
Andreas Steffen
08571955fb adapted evaltest.dat to extended acquire job message 2008-10-31 01:46:37 +00:00
Andreas Steffen
8ceb5fd566 use old algorithm nameagain in pfkey/alg-aes-xcbc scenario 2008-10-21 03:42:32 +00:00
Martin Willi
6f3ea4a516 loading updown plugin if required 2008-10-16 12:48:27 +00:00
Andreas Steffen
deb079204e added PFKEYv2 UML scenarios 2008-10-15 00:11:00 +00:00