1836c1845b
testing: Add ikev2/net2net-fragmentation scenario
2014-10-10 09:33:23 +02:00
144b40e07c
testing: Update ikev1/net2net-fragmentation scenario
2014-10-10 09:32:42 +02:00
89e953797d
testing: Don't check for the actual number of SWID tags in PDP scenarios
...
The number of SWID tags varies depending on the base image, but lets
assume the number is in the hundreds.
2014-10-07 12:18:36 +02:00
8f9016b1e2
testing: Make TNC scenarios agnostic to the actual Debian version
...
The scenarios will work with new or old base images as long as the version
in use is included as product in the master data (src/libimcv/imv/data.sql).
2014-10-07 12:18:25 +02:00
93fac61da5
testing: Make TKM related build recipes future-proof
...
The tkm scenarios recently failed due to a segmentation fault on my host
because I had an old build of the tkm library already built in the build
directory. Because the stamp file was not versioned the new release was
never checked out or built and charon-tkm was linked against the old
version causing a segmentation fault during key derivation.
2014-10-07 10:47:06 +02:00
100c1a4bf1
testing: Updated certificates and keys in sql scenarios
2014-10-06 09:42:58 +02:00
73af3a1b04
Updated revoked certificate in ikev2/ocsp-revoked scenario
2014-10-05 21:33:35 +02:00
006518e859
The critical-extension scenarios need the old private keys
2014-10-05 20:58:03 +02:00
030295dd44
testing: Updated swanctl certificates and keys
2014-10-03 12:50:08 +02:00
12e9ed12ec
testing: Wait a bit in swanctl scenarios before interacting with the daemon
2014-10-03 12:44:14 +02:00
e9028462c8
testing: Actually build swanctl
2014-10-03 12:44:14 +02:00
722a8a177e
testing: Make sure the whitelist plugin is ready before configuring it
2014-10-03 12:44:14 +02:00
09f1fb82f9
testing: Update PKCS#12 containers
2014-10-03 12:44:13 +02:00
079c797421
testing: Update PKCS#8 keys
2014-10-03 12:44:13 +02:00
9f5fd7899e
testing: Update public keys in DNSSEC scenarios
...
The tests are successful even if the public keys are not stored locally,
but an additional DNS query is required to fetch them.
2014-10-03 12:44:13 +02:00
1bab64e7cb
testing: Update public keys and certificates in DNS zone
2014-10-03 12:44:13 +02:00
2c7ad260f9
testing: Update carols certificate in several test cases
2014-10-03 12:44:13 +02:00
7ab320def3
testing: Add some notes about how to reissue attribute certificates
2014-10-03 12:31:01 +02:00
16469e8474
testing: Reissue attribute certificates for the new holder certificates
...
Due to the expired and reissued holder certificates of carol and dave, new
attribute certificates are required to match the holder certificates serial in
the ikev2/acert-{cached,fallback,inline} tests.
2014-10-03 12:28:11 +02:00
44b6a34d43
configure: Load fetcher plugins after crypto base plugins
...
Some fetcher plugins (such as curl) might build upon OpenSSL to implement
HTTPS fetching. As we set (and can't unset) threading callbacks in our
openssl plugin, we must ensure that OpenSSL functions don't get called after
openssl plugin unloading.
We achieve that by loading curl and all other fetcher plugins after the base
crypto plugins, including openssl.
2014-09-24 17:34:54 +02:00
0bf2abf182
testing: Use multiple jobs to install strongSwan
2014-09-19 13:37:59 +02:00
82136aa2cf
testing: Add a script to build the current (or an arbitrary) source tree
...
This allows to (relatively) quickly (re-)build and install the current
or an arbitrary strongSwan source tree within the root image.
bindfs is used to bind mount the source directory using the regular user
and group (only works if sudo is used to run the script) so that newly
created files are not owned by root.
As with building the root image in general the guests must not be
running while executing this script. The guest images are automatically
rebuilt after the root image has been updated so configuration files and
other modifications in guests will be lost.
2014-09-19 13:37:59 +02:00
f376503f41
testing: Add packages to rebuild strongSwan from the repository
2014-09-19 13:37:59 +02:00
ffcf8f4ea2
testing: Make strongSwan build recipe more configurable
2014-09-19 13:37:59 +02:00
e0d59e10f8
testing: Update certs and keys in tkm tests
...
References #705 .
2014-09-17 17:08:35 +02:00
1004d395f5
testing: Update x509-ada version to 0.1.1
...
Fixes #705 .
2014-09-17 17:07:29 +02:00
51da5b920b
Generated new test certificates
2014-08-28 21:34:40 +02:00
6095714e64
testing: Make sure the kernel exists when starting
2014-08-25 10:58:46 +02:00
4ccfc879b5
Updated URL to swidGenerator in recipe
2014-07-09 15:08:18 +02:00
cac71ff00c
Update KVM test framework to 3.15 guest kernel
2014-06-27 10:07:27 +02:00
be41910e19
testing: Add sql/shunt-policies-nat-rw scenario
2014-06-26 18:13:26 +02:00
73211f9b74
testing: Add pfkey/shunt-policies-nat-rw scenario
2014-06-26 18:13:26 +02:00
945e1df738
testing: Remove obsolete shunt-policies scenarios
2014-06-26 18:12:00 +02:00
75598e5053
Updated description of TNC scenarios concerning RFC 7171 PT-EAP support
2014-06-26 09:47:03 +02:00
21aebe3781
Removed django.db from swid scenarios
2014-06-26 09:45:54 +02:00
2ef6f57456
testing: Add ikev2/shunt-policies-nat-rw scenario
2014-06-19 14:23:07 +02:00
d93987ce24
testing: Remove ikev2/shunt-policies scenario
...
This scenario doesn't really apply anymore (especially its use of drop
policies).
2014-06-19 14:23:07 +02:00
d345f0b75d
Added swanctl/net2net-route scenario
2014-06-18 14:57:33 +02:00
3f5f0b8940
Added swanctl/net2net-start scenario
2014-06-18 14:35:59 +02:00
4402bae77d
Minor changes in swanctl scenarios
2014-06-18 14:35:36 +02:00
ed42874645
Added swanctl --list-pols and swanctl --stats do scenario log
2014-06-18 13:16:18 +02:00
d6f0372daf
testing: Delete accidentally committed test cases
2014-06-18 09:38:53 +02:00
39d6469d76
Added swanctl/rw-psk-fqdn and swanctl/rw-psk-ipv4 scenarios
2014-06-14 15:40:23 +02:00
3eb22f1f00
Single-line --raw mode simplifies evaltest of swanctl scenarios
2014-06-14 15:40:23 +02:00
12d618e280
Added swanctl/ip-pool-db scenario
2014-06-11 18:12:35 +02:00
cda2a1e4dc
Updated strongTNC configuration
2014-06-11 18:12:34 +02:00
d643f2cf91
Added swanctl/ip-pool scenario
2014-06-10 16:48:16 +02:00
c621847395
Added swanctl/rw-cert scenario
2014-06-10 16:48:15 +02:00
b09016377a
Define default swanctl credentials in hosts directory
2014-06-10 16:19:00 +02:00
acdcb91e07
testing: Cache packages downloaded with pip for strongTNC
...
This way no network connections is required to rebuild the root/guest images.
2014-06-02 17:45:42 +02:00
Tobias Brunner