Merge branch 'sql-install'
SQL schemas and example data (IMV) are now part of the distribution and installed in $prefix/share/strongswan. This way no extra copy is needed for the test suite and distributions can easily pack those files together with the plugins.
This commit is contained in:
commit
b84b5410a4
|
@ -98,6 +98,10 @@ endif
|
|||
|
||||
if USE_ATTR_SQL
|
||||
SUBDIRS += pool
|
||||
else
|
||||
if USE_SQL
|
||||
SUBDIRS += pool
|
||||
endif
|
||||
endif
|
||||
|
||||
if USE_TKM
|
||||
|
|
|
@ -1,24 +0,0 @@
|
|||
|
||||
DROP TABLE IF EXISTS shared_secrets;
|
||||
CREATE TABLE shared_secrets (
|
||||
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER,
|
||||
local TEXT,
|
||||
remote TEXT
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS certificates;
|
||||
CREATE TABLE certificates (
|
||||
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER,
|
||||
subject TEXT,
|
||||
data BLOB,
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS private_keys;
|
||||
CREATE TABLE private_keys (
|
||||
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER,
|
||||
keyid BLOB,
|
||||
data BLOB,
|
||||
);
|
|
@ -15,7 +15,6 @@ libimcv_la_SOURCES := \
|
|||
imv/imv_remediation_string.h imv/imv_remediation_string.c \
|
||||
imv/imv_session.h imv/imv_session.c \
|
||||
imv/imv_workitem.h imv/imv_workitem.c \
|
||||
imv/tables.sql imv/data.sql \
|
||||
ietf/ietf_attr.h ietf/ietf_attr.c \
|
||||
ietf/ietf_attr_assess_result.h ietf/ietf_attr_assess_result.c \
|
||||
ietf/ietf_attr_attr_request.h ietf/ietf_attr_attr_request.c \
|
||||
|
|
|
@ -24,7 +24,6 @@ libimcv_la_SOURCES = \
|
|||
imv/imv_remediation_string.h imv/imv_remediation_string.c \
|
||||
imv/imv_session.h imv/imv_session.c \
|
||||
imv/imv_workitem.h imv/imv_workitem.c \
|
||||
imv/tables.sql imv/data.sql \
|
||||
ietf/ietf_attr.h ietf/ietf_attr.c \
|
||||
ietf/ietf_attr_assess_result.h ietf/ietf_attr_assess_result.c \
|
||||
ietf/ietf_attr_attr_request.h ietf/ietf_attr_attr_request.c \
|
||||
|
@ -53,6 +52,9 @@ libimcv_la_SOURCES = \
|
|||
ipsec_SCRIPTS = imv/_imv_policy
|
||||
EXTRA_DIST = imv/_imv_policy
|
||||
|
||||
templatesdir = $(pkgdatadir)/templates/database/imv
|
||||
dist_templates_DATA = imv/tables.sql imv/data.sql
|
||||
|
||||
ipsec_PROGRAMS = imv_policy_manager
|
||||
imv_policy_manager_SOURCES = \
|
||||
imv/imv_policy_manager.c \
|
||||
|
|
|
@ -1,3 +1,5 @@
|
|||
if USE_ATTR_SQL
|
||||
|
||||
ipsec_PROGRAMS = pool
|
||||
|
||||
pool_SOURCES = \
|
||||
|
@ -14,3 +16,8 @@ AM_CPPFLAGS = \
|
|||
pool_LDADD = \
|
||||
$(top_builddir)/src/libstrongswan/libstrongswan.la \
|
||||
$(top_builddir)/src/libhydra/libhydra.la
|
||||
|
||||
endif !USE_ATTR_SQL
|
||||
|
||||
templatesdir = $(pkgdatadir)/templates/database/sql
|
||||
dist_templates_DATA = mysql.sql sqlite.sql
|
||||
|
|
|
@ -211,9 +211,9 @@ CREATE TABLE addresses (
|
|||
`id` int(10) unsigned NOT NULL auto_increment,
|
||||
`pool` int(10) unsigned NOT NULL,
|
||||
`address` varbinary(16) NOT NULL,
|
||||
`identity` int(10) unsigned NOT NULL,
|
||||
`acquired` int(10) unsigned NOT NULL,
|
||||
`released` int(10) unsigned DEFAULT NULL,
|
||||
`identity` int(10) unsigned NOT NULL DEFAULT 0,
|
||||
`acquired` int(10) unsigned NOT NULL DEFAULT 0,
|
||||
`released` int(10) unsigned NOT NULL DEFAULT 1,
|
||||
PRIMARY KEY (`id`),
|
||||
INDEX (`pool`),
|
||||
INDEX (`identity`),
|
|
@ -206,9 +206,9 @@ CREATE TABLE addresses (
|
|||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
pool INTEGER NOT NULL,
|
||||
address BLOB NOT NULL,
|
||||
identity INTEGER NOT NULL,
|
||||
acquired INTEGER NOT NULL,
|
||||
released INTEGER NOT NULL
|
||||
identity INTEGER NOT NULL DEFAULT 0,
|
||||
acquired INTEGER NOT NULL DEFAULT 0,
|
||||
released INTEGER NOT NULL DEFAULT 1
|
||||
);
|
||||
DROP INDEX IF EXISTS addresses_pool;
|
||||
CREATE INDEX addresses_pool ON addresses (
|
|
@ -1,270 +0,0 @@
|
|||
/* strongSwan SQLite database */
|
||||
|
||||
DROP TABLE IF EXISTS identities;
|
||||
CREATE TABLE identities (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
data BLOB NOT NULL,
|
||||
UNIQUE (type, data)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS child_configs;
|
||||
CREATE TABLE child_configs (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL,
|
||||
lifetime INTEGER NOT NULL DEFAULT '1200',
|
||||
rekeytime INTEGER NOT NULL DEFAULT '1020',
|
||||
jitter INTEGER NOT NULL DEFAULT '180',
|
||||
updown TEXT DEFAULT NULL,
|
||||
hostaccess INTEGER NOT NULL DEFAULT '0',
|
||||
mode INTEGER NOT NULL DEFAULT '2',
|
||||
start_action INTEGER NOT NULL DEFAULT '0',
|
||||
dpd_action INTEGER NOT NULL DEFAULT '0',
|
||||
close_action INTEGER NOT NULL DEFAULT '0',
|
||||
ipcomp INTEGER NOT NULL DEFAULT '0',
|
||||
reqid INTEGER NOT NULL DEFAULT '0'
|
||||
);
|
||||
DROP INDEX IF EXISTS child_configs_name;
|
||||
CREATE INDEX child_configs_name ON child_configs (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS child_config_traffic_selector;
|
||||
CREATE TABLE child_config_traffic_selector (
|
||||
child_cfg INTEGER NOT NULL,
|
||||
traffic_selector INTEGER NOT NULL,
|
||||
kind INTEGER NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS child_config_traffic_selector;
|
||||
CREATE INDEX child_config_traffic_selector_all ON child_config_traffic_selector (
|
||||
child_cfg, traffic_selector
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS proposals;
|
||||
CREATE TABLE proposals (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
proposal TEXT NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS child_config_proposal;
|
||||
CREATE TABLE child_config_proposal (
|
||||
child_cfg INTEGER NOT NULL,
|
||||
prio INTEGER NOT NULL,
|
||||
prop INTEGER NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS ike_configs;
|
||||
CREATE TABLE ike_configs (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
certreq INTEGER NOT NULL DEFAULT '1',
|
||||
force_encap INTEGER NOT NULL DEFAULT '0',
|
||||
local TEXT NOT NULL,
|
||||
remote TEXT NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS ike_config_proposal;
|
||||
CREATE TABLE ike_config_proposal (
|
||||
ike_cfg INTEGER NOT NULL,
|
||||
prio INTEGER NOT NULL,
|
||||
prop INTEGER NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS peer_configs;
|
||||
CREATE TABLE peer_configs (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL,
|
||||
ike_version INTEGER NOT NULL DEFAULT '2',
|
||||
ike_cfg INTEGER NOT NULL,
|
||||
local_id TEXT NOT NULL,
|
||||
remote_id TEXT NOT NULL,
|
||||
cert_policy INTEGER NOT NULL DEFAULT '1',
|
||||
uniqueid INTEGER NOT NULL DEFAULT '0',
|
||||
auth_method INTEGER NOT NULL DEFAULT '1',
|
||||
eap_type INTEGER NOT NULL DEFAULT '0',
|
||||
eap_vendor INTEGER NOT NULL DEFAULT '0',
|
||||
keyingtries INTEGER NOT NULL DEFAULT '1',
|
||||
rekeytime INTEGER NOT NULL DEFAULT '0',
|
||||
reauthtime INTEGER NOT NULL DEFAULT '3600',
|
||||
jitter INTEGER NOT NULL DEFAULT '180',
|
||||
overtime INTEGER NOT NULL DEFAULT '300',
|
||||
mobike INTEGER NOT NULL DEFAULT '1',
|
||||
dpd_delay INTEGER NOT NULL DEFAULT '120',
|
||||
virtual TEXT DEFAULT NULL,
|
||||
pool TEXT DEFAULT NULL,
|
||||
mediation INTEGER NOT NULL DEFAULT '0',
|
||||
mediated_by INTEGER NOT NULL DEFAULT '0',
|
||||
peer_id INTEGER NOT NULL DEFAULT '0'
|
||||
);
|
||||
DROP INDEX IF EXISTS peer_configs_name;
|
||||
CREATE INDEX peer_configs_name ON peer_configs (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS peer_config_child_config;
|
||||
CREATE TABLE peer_config_child_config (
|
||||
peer_cfg INTEGER NOT NULL,
|
||||
child_cfg INTEGER NOT NULL,
|
||||
PRIMARY KEY (peer_cfg, child_cfg)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS traffic_selectors;
|
||||
CREATE TABLE traffic_selectors (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL DEFAULT '7',
|
||||
protocol INTEGER NOT NULL DEFAULT '0',
|
||||
start_addr BLOB DEFAULT NULL,
|
||||
end_addr BLOB DEFAULT NULL,
|
||||
start_port INTEGER NOT NULL DEFAULT '0',
|
||||
end_port INTEGER NOT NULL DEFAULT '65535'
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS certificates;
|
||||
CREATE TABLE certificates (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
keytype INTEGER NOT NULL,
|
||||
data BLOB NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS certificate_identity;
|
||||
CREATE TABLE certificate_identity (
|
||||
certificate INTEGER NOT NULL,
|
||||
identity INTEGER NOT NULL,
|
||||
PRIMARY KEY (certificate, identity)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS private_keys;
|
||||
CREATE TABLE private_keys (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
data BLOB NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS private_key_identity;
|
||||
CREATE TABLE private_key_identity (
|
||||
private_key INTEGER NOT NULL,
|
||||
identity INTEGER NOT NULL,
|
||||
PRIMARY KEY (private_key, identity)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS shared_secrets;
|
||||
CREATE TABLE shared_secrets (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
data BLOB NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS shared_secret_identity;
|
||||
CREATE TABLE shared_secret_identity (
|
||||
shared_secret INTEGER NOT NULL,
|
||||
identity INTEGER NOT NULL,
|
||||
PRIMARY KEY (shared_secret, identity)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS certificate_authorities;
|
||||
CREATE TABLE certificate_authorities (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
certificate INTEGER NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS certificate_distribution_points;
|
||||
CREATE TABLE certificate_distribution_points (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
ca INTEGER NOT NULL,
|
||||
type INTEGER NOT NULL,
|
||||
uri TEXT NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS pools;
|
||||
CREATE TABLE pools (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL,
|
||||
start BLOB NOT NULL,
|
||||
end BLOB NOT NULL,
|
||||
timeout INTEGER NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS pools_name;
|
||||
CREATE INDEX pools_name ON pools (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS addresses;
|
||||
CREATE TABLE addresses (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
pool INTEGER NOT NULL,
|
||||
address BLOB NOT NULL,
|
||||
identity INTEGER NOT NULL DEFAULT 0,
|
||||
acquired INTEGER NOT NULL DEFAULT 0,
|
||||
released INTEGER NOT NULL DEFAULT 1
|
||||
);
|
||||
DROP INDEX IF EXISTS addresses_pool;
|
||||
CREATE INDEX addresses_pool ON addresses (
|
||||
pool
|
||||
);
|
||||
DROP INDEX IF EXISTS addresses_address;
|
||||
CREATE INDEX addresses_address ON addresses (
|
||||
address
|
||||
);
|
||||
DROP INDEX IF EXISTS addresses_identity;
|
||||
CREATE INDEX addresses_identity ON addresses (
|
||||
identity
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS leases;
|
||||
CREATE TABLE leases (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
address INTEGER NOT NULL,
|
||||
identity INTEGER NOT NULL,
|
||||
acquired INTEGER NOT NULL,
|
||||
released INTEGER NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS attribute_pools;
|
||||
CREATE TABLE attribute_pools (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS attributes;
|
||||
CREATE TABLE attributes (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
identity INTEGER NOT NULL DEFAULT 0,
|
||||
pool INTEGER NOT NULL DEFAULT 0,
|
||||
type INTEGER NOT NULL,
|
||||
value BLOB NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS attributes_identity;
|
||||
CREATE INDEX attributes_identity ON attributes (
|
||||
identity
|
||||
);
|
||||
DROP INDEX IF EXISTS attributes_pool;
|
||||
CREATE INDEX attributes_pool ON attributes (
|
||||
pool
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS ike_sas;
|
||||
CREATE TABLE ike_sas (
|
||||
local_spi BLOB NOT NULL PRIMARY KEY,
|
||||
remote_spi BLOB NOT NULL,
|
||||
id INTEGER NOT NULL,
|
||||
initiator INTEGER NOT NULL,
|
||||
local_id_type INTEGER NOT NULL,
|
||||
local_id_data BLOB DEFAULT NULL,
|
||||
remote_id_type INTEGER NOT NULL,
|
||||
remote_id_data BLOB DEFAULT NULL,
|
||||
host_family INTEGER NOT NULL,
|
||||
local_host_data BLOB NOT NULL,
|
||||
remote_host_data BLOB NOT NULL,
|
||||
created INTEGER NOT NULL DEFAULT CURRENT_TIMESTAMP
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS logs;
|
||||
CREATE TABLE logs (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
local_spi BLOB NOT NULL,
|
||||
signal INTEGER NOT NULL,
|
||||
level INTEGER NOT NULL,
|
||||
msg TEXT NOT NULL,
|
||||
time INTEGER NOT NULL DEFAULT CURRENT_TIMESTAMP
|
||||
);
|
||||
|
File diff suppressed because it is too large
Load Diff
|
@ -1,256 +0,0 @@
|
|||
/* IMV PTS SQLite database */
|
||||
|
||||
DROP TABLE IF EXISTS directories;
|
||||
CREATE TABLE directories (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
path TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS directories_path;
|
||||
CREATE INDEX directories_path ON directories (
|
||||
path
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS files;
|
||||
CREATE TABLE files (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
dir INTEGER DEFAULT 0 REFERENCES directories(id),
|
||||
name TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS files_name;
|
||||
CREATE INDEX files_name ON files (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS products;
|
||||
CREATE TABLE products (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS products_name;
|
||||
CREATE INDEX products_name ON products (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS algorithms;
|
||||
CREATE TABLE algorithms (
|
||||
id INTEGER PRIMARY KEY,
|
||||
name VARCHAR(20) not NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS file_hashes;
|
||||
CREATE TABLE file_hashes (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
file INTEGER NOT NULL REFERENCES files(id),
|
||||
product INTEGER NOT NULL REFERENCES products(id),
|
||||
device INTEGER DEFAULT 0,
|
||||
key INTEGER DEFAULT 0 REFERENCES keys(id),
|
||||
algo INTEGER NOT NULL REFERENCES algorithms(id),
|
||||
hash BLOB NOT NULL
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS keys;
|
||||
CREATE TABLE keys (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
keyid BLOB NOT NULL,
|
||||
owner TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS keys_keyid;
|
||||
CREATE INDEX keys_keyid ON keys (
|
||||
keyid
|
||||
);
|
||||
DROP INDEX IF EXISTS keys_owner;
|
||||
CREATE INDEX keys_owner ON keys (
|
||||
owner
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS groups;
|
||||
CREATE TABLE groups (
|
||||
id INTEGER NOT NULL PRIMARY KEY,
|
||||
name VARCHAR(50) NOT NULL UNIQUE,
|
||||
parent INTEGER
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS groups_members;
|
||||
CREATE TABLE groups_members (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
group_id INTEGER NOT NULL REFERENCES groups(id),
|
||||
device_id INTEGER NOT NULL REFERENCES devices(id),
|
||||
UNIQUE (group_id, device_id)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS groups_product_defaults;
|
||||
CREATE TABLE groups_product_defaults (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
group_id INTEGER NOT NULL REFERENCES groups(id),
|
||||
product_id INTEGER NOT NULL REFERENCES products(id),
|
||||
UNIQUE (group_id, product_id)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS policies;
|
||||
CREATE TABLE policies (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
name VARCHAR(100) NOT NULL UNIQUE,
|
||||
argument TEXT DEFAULT '' NOT NULL,
|
||||
rec_fail INTEGER NOT NULL,
|
||||
rec_noresult INTEGER NOT NULL,
|
||||
file INTEGER DEFAULT 0 REFERENCES files(id),
|
||||
dir INTEGER DEFAULT 0 REFERENCES directories(id)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS enforcements;
|
||||
CREATE TABLE enforcements (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
policy INTEGER NOT NULL REFERENCES policies(id),
|
||||
group_id INTEGER NOT NULL REFERENCES groups(id),
|
||||
rec_fail INTEGER,
|
||||
rec_noresult INTEGER,
|
||||
max_age INTEGER NOT NULL,
|
||||
UNIQUE (policy, group_id)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS sessions;
|
||||
CREATE TABLE sessions (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
time INTEGER NOT NULL,
|
||||
connection INTEGER NOT NULL,
|
||||
identity INTEGER DEFAULT 0 REFERENCES identities(id),
|
||||
device INTEGER DEFAULT 0 REFERENCES devices(id),
|
||||
product INTEGER DEFAULT 0 REFERENCES products(id),
|
||||
rec INTEGER DEFAULT 3
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS workitems;
|
||||
CREATE TABLE workitems (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
session INTEGER NOT NULL REFERENCES sessions(id),
|
||||
enforcement INTEGER NOT NULL REFERENCES enforcements(id),
|
||||
type INTEGER NOT NULL,
|
||||
arg_str TEXT,
|
||||
arg_int INTEGER DEFAULT 0,
|
||||
rec_fail INTEGER NOT NULL,
|
||||
rec_noresult INTEGER NOT NULL,
|
||||
rec_final INTEGER,
|
||||
result TEXT
|
||||
);
|
||||
DROP INDEX IF EXISTS workitems_session;
|
||||
CREATE INDEX workitems_sessions ON workitems (
|
||||
session
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS results;
|
||||
CREATE TABLE results (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
session INTEGER NOT NULL REFERENCES measurements(id),
|
||||
policy INTEGER NOT NULL REFERENCES policies(id),
|
||||
rec INTEGER NOT NULL,
|
||||
result TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS results_session;
|
||||
CREATE INDEX results_session ON results (
|
||||
session
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS components;
|
||||
CREATE TABLE components (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
vendor_id INTEGER NOT NULL,
|
||||
name INTEGER NOT NULL,
|
||||
qualifier INTEGER DEFAULT 0
|
||||
);
|
||||
|
||||
|
||||
DROP TABLE IF EXISTS key_component;
|
||||
CREATE TABLE key_component (
|
||||
key INTEGER NOT NULL,
|
||||
component INTEGER NOT NULL,
|
||||
depth INTEGER DEFAULT 0,
|
||||
seq_no INTEGER DEFAULT 0,
|
||||
PRIMARY KEY (key, component)
|
||||
);
|
||||
|
||||
|
||||
DROP TABLE IF EXISTS component_hashes;
|
||||
CREATE TABLE component_hashes (
|
||||
component INTEGER NOT NULL,
|
||||
key INTEGER NOT NULL,
|
||||
seq_no INTEGER NOT NULL,
|
||||
pcr INTEGER NOT NULL,
|
||||
algo INTEGER NOT NULL,
|
||||
hash BLOB NOT NULL,
|
||||
PRIMARY KEY(component, key, seq_no, algo)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS packages;
|
||||
CREATE TABLE packages (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL,
|
||||
blacklist INTEGER DEFAULT 0
|
||||
);
|
||||
DROP INDEX IF EXISTS packages_name;
|
||||
CREATE INDEX packages_name ON packages (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS versions;
|
||||
CREATE TABLE versions (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
package INTEGER NOT NULL REFERENCES packages(id),
|
||||
product INTEGER NOT NULL REFERENCES products(id),
|
||||
release TEXT NOT NULL,
|
||||
security INTEGER DEFAULT 0,
|
||||
blacklist INTEGER DEFAULT 0,
|
||||
time INTEGER DEFAULT 0
|
||||
);
|
||||
DROP INDEX IF EXISTS versions_release;
|
||||
CREATE INDEX versions_release ON versions (
|
||||
release
|
||||
);
|
||||
DROP INDEX IF EXISTS versions_package_product;
|
||||
CREATE INDEX versions_package_product ON versions (
|
||||
package, product
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS devices;
|
||||
CREATE TABLE devices (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
description TEXT DEFAULT '',
|
||||
value TEXT NOT NULL,
|
||||
product INTEGER REFERENCES products(id),
|
||||
created INTEGER
|
||||
);
|
||||
DROP INDEX IF EXISTS devices_id;
|
||||
CREATE INDEX devices_value ON devices (
|
||||
value
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS identities;
|
||||
CREATE TABLE identities (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
type INTEGER NOT NULL,
|
||||
value BLOB NOT NULL,
|
||||
UNIQUE (type, value)
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS regids;
|
||||
CREATE TABLE regids (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
name TEXT NOT NULL
|
||||
);
|
||||
DROP INDEX IF EXISTS regids_name;
|
||||
CREATE INDEX regids_name ON regids (
|
||||
name
|
||||
);
|
||||
|
||||
DROP TABLE IF EXISTS tags;
|
||||
CREATE TABLE tags (
|
||||
id INTEGER NOT NULL PRIMARY KEY AUTOINCREMENT,
|
||||
regid INTEGER NOT NULL REFERENCES regids(id),
|
||||
unique_sw_id TEXT NOT NULL,
|
||||
value TEXT
|
||||
);
|
||||
DROP INDEX IF EXISTS tags_name;
|
||||
CREATE INDEX tags_unique_sw_id ON tags (
|
||||
unique_sw_id
|
||||
);
|
||||
|
|
@ -1,4 +1,4 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add bigpool --start 10.3.0.1 --end 10.3.3.232 --timeout 0 2> /dev/null
|
||||
moon::ipsec pool --addattr dns --server PH_IP_WINNETOU 2> /dev/null
|
||||
|
@ -10,7 +10,7 @@ dave::iptables-restore < /etc/iptables.rules
|
|||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
moon::ipsec start
|
||||
carol::sleep 2
|
||||
carol::sleep 2
|
||||
carol::ipsec up home
|
||||
dave::ipsec up home
|
||||
carol::sleep 1
|
||||
|
|
|
@ -1,4 +1,4 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add bigpool --start 10.3.0.1 --end 10.3.3.232 --timeout 0 2> /dev/null
|
||||
moon::ipsec pool --addattr dns --server PH_IP_WINNETOU 2> /dev/null
|
||||
|
@ -10,7 +10,7 @@ dave::iptables-restore < /etc/iptables.rules
|
|||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
moon::ipsec start
|
||||
carol::sleep 2
|
||||
carol::sleep 2
|
||||
carol::ipsec up home
|
||||
dave::ipsec up home
|
||||
carol::sleep 1
|
||||
|
|
|
@ -1,4 +1,4 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add pool0 --start 10.3.0.1 --end 10.3.0.1 --timeout 48 2> /dev/null
|
||||
moon::ipsec pool --add pool1 --start 10.3.1.1 --end 10.3.1.1 --timeout 48 2> /dev/null
|
||||
|
@ -6,7 +6,7 @@ moon::ipsec pool --status 2> /dev/null
|
|||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
moon::ipsec start
|
||||
carol::sleep 2
|
||||
carol::sleep 2
|
||||
carol::ipsec up home
|
||||
dave::ipsec up home
|
||||
carol::sleep 1
|
||||
|
|
|
@ -1,6 +1,6 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add extpool --start 10.3.0.1 --end 10.3.1.244 --timeout 48 2> /dev/null
|
||||
moon::ipsec pool --add extpool --start 10.3.0.1 --end 10.3.1.244 --timeout 48 2> /dev/null
|
||||
moon::ipsec pool --add intpool --start 10.4.0.1 --end 10.4.1.244 --timeout 0 2> /dev/null
|
||||
moon::ipsec pool --addattr dns --server PH_IP_VENUS --pool intpool --identity venus.strongswan.org 2> /dev/null
|
||||
moon::ipsec pool --addattr dns --server PH_IP_ALICE --pool intpool --identity alice@strongswan.org 2> /dev/null
|
||||
|
@ -18,7 +18,7 @@ venus::ipsec start
|
|||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
moon::ipsec start
|
||||
carol::sleep 2
|
||||
carol::sleep 2
|
||||
carol::ipsec up home
|
||||
dave::ipsec up home
|
||||
alice::ipsec up home
|
||||
|
|
|
@ -1,4 +1,4 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add intpool --start 10.4.0.1 --end 10.4.1.244 --timeout 0 2> /dev/null
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
|
@ -7,7 +7,7 @@ alice::iptables-restore < /etc/iptables.rules
|
|||
carol::ipsec start
|
||||
moon::ipsec start
|
||||
alice::ipsec start
|
||||
carol::sleep 2
|
||||
carol::sleep 2
|
||||
carol::ipsec up home
|
||||
alice::ipsec up home
|
||||
alice::sleep 1
|
||||
|
|
|
@ -1,6 +1,6 @@
|
|||
moon::cat /etc/ipsec.d/tables.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::ipsec pool --add v4_pool --start 10.3.0.1 --end 10.3.1.244 --timeout 48 2> /dev/null
|
||||
moon::ipsec pool --add v4_pool --start 10.3.0.1 --end 10.3.1.244 --timeout 48 2> /dev/null
|
||||
moon::ipsec pool --add v6_pool --start fec3:\:1 --end fec3:\:fe --timeout 48 2> /dev/null
|
||||
alice::ip -6 route add default via fec1:\:1
|
||||
moon::ipsec start
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,12 +1,12 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
sun::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
sun::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
sun::iptables-restore < /etc/iptables.rules
|
||||
moon::ipsec start
|
||||
sun::ipsec start
|
||||
moon::sleep 1
|
||||
moon::sleep 1
|
||||
moon::ipsec up net-net
|
||||
|
|
|
@ -1,12 +1,12 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
sun::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
sun::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
sun::iptables-restore < /etc/iptables.rules
|
||||
moon::ipsec start
|
||||
sun::ipsec start
|
||||
moon::sleep 1
|
||||
moon::sleep 1
|
||||
moon::ipsec up net-net
|
||||
|
|
|
@ -1,7 +1,7 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
sun::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
sun::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
|
|
|
@ -1,7 +1,7 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
sun::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
sun::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,7 +1,7 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
carol::rm /etc/ipsec.d/cacerts/*
|
||||
dave::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
carol::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
dave::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
carol::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
dave::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
|
|
|
@ -1,12 +1,12 @@
|
|||
moon::rm /etc/ipsec.d/cacerts/*
|
||||
sun::rm /etc/ipsec.d/cacerts/*
|
||||
moon::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /etc/ipsec.d/tables.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
sun::cat /usr/local/share/strongswan/templates/database/sql/sqlite.sql /etc/ipsec.d/data.sql > /etc/ipsec.d/ipsec.sql
|
||||
moon::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
sun::cat /etc/ipsec.d/ipsec.sql | sqlite3 /etc/ipsec.d/ipsec.db
|
||||
moon::iptables-restore < /etc/iptables.rules
|
||||
sun::iptables-restore < /etc/iptables.rules
|
||||
moon::ipsec start
|
||||
sun::ipsec start
|
||||
moon::sleep 1
|
||||
moon::sleep 1
|
||||
moon::ipsec up net-net
|
||||
|
|
|
@ -5,7 +5,7 @@ carol::echo 0 > /proc/sys/net/ipv4/ip_forward
|
|||
dave::echo aabbccddeeff11223344556677889900 > /var/lib/dbus/machine-id
|
||||
alice::ln -s /etc/freeradius/sites-available/inner-tunnel-second /etc/freeradius/sites-enabled/inner-tunnel-second
|
||||
alice::cat /etc/freeradius/sites-enabled/inner-tunnel-second
|
||||
alice::cd /etc/pts; cat tables.sql data.sql data1.sql | sqlite3 config.db
|
||||
alice::cd /usr/local/share/strongswan/templates/database/imv; cat tables.sql data.sql /etc/pts/data1.sql | sqlite3 /etc/pts/config.db
|
||||
alice::LEAK_DETECTIVE_DISABLE=1 LOG4CXX_CONFIGURATION=/etc/tnc/log4cxx.properties radiusd
|
||||
alice::cat /etc/tnc_config
|
||||
carol::cat /etc/tnc_config
|
||||
|
|
|
@ -4,13 +4,13 @@ dave::iptables-restore < /etc/iptables.rules
|
|||
carol::echo 0 > /proc/sys/net/ipv4/ip_forward
|
||||
dave::echo aabbccddeeff11223344556677889900 > /var/lib/dbus/machine-id
|
||||
moon::sed -i "s/NOW/`date +%s`/g" /etc/pts/data1.sql
|
||||
moon::cd /etc/pts; cat tables.sql data.sql data1.sql | sqlite3 config.db
|
||||
moon::cd /usr/local/share/strongswan/templates/database/imv; cat tables.sql data.sql /etc/pts/data1.sql | sqlite3 /etc/pts/config.db
|
||||
moon::cat /etc/tnc_config
|
||||
carol::cat /etc/tnc_config
|
||||
dave::cat /etc/tnc_config
|
||||
moon::ipsec start
|
||||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
carol::sleep 1
|
||||
carol::ipsec up home
|
||||
dave::ipsec up home
|
||||
|
|
|
@ -7,7 +7,7 @@ carol::echo 0 > /proc/sys/net/ipv4/ip_forward
|
|||
dave::echo aabbccddeeff11223344556677889900 > /var/lib/dbus/machine-id
|
||||
dave::cat /etc/tnc_config
|
||||
alice::sed -i "s/NOW/`date +%s`/g" /etc/pts/data.sql
|
||||
alice::cd /etc/pts; cat tables.sql data.sql data1.sql | sqlite3 config.db
|
||||
alice::cd /usr/local/share/strongswan/templates/database/imv; cat tables.sql data.sql /etc/pts/data1.sql | sqlite3 /etc/pts/config.db
|
||||
alice::ipsec start
|
||||
winnetou::ip route add 10.1.0.0/16 via 192.168.0.1
|
||||
carol::ip route add 10.1.0.0/16 via 192.168.0.1
|
||||
|
|
|
@ -3,13 +3,13 @@ carol::iptables-restore < /etc/iptables.rules
|
|||
dave::iptables-restore < /etc/iptables.rules
|
||||
carol::echo 0 > /proc/sys/net/ipv4/ip_forward
|
||||
dave::echo aabbccddeeff11223344556677889900 > /var/lib/dbus/machine-id
|
||||
moon::cd /etc/pts; cat tables.sql data.sql data1.sql | sqlite3 config.db
|
||||
moon::cd /usr/local/share/strongswan/templates/database/imv; cat tables.sql data.sql /etc/pts/data1.sql | sqlite3 /etc/pts/config.db
|
||||
moon::cat /etc/tnc_config
|
||||
carol::cat /etc/tnc_config
|
||||
dave::cat /etc/tnc_config
|
||||
moon::ipsec start
|
||||
dave::ipsec start
|
||||
carol::ipsec start
|
||||
dave::ipsec start
|
||||
carol::ipsec start
|
||||
dave::sleep 1
|
||||
dave::ipsec up home
|
||||
carol::ipsec up home
|
||||
|
|
Loading…
Reference in New Issue