Andreas Steffen
74ac0c9efd
Version bump to 5.8.0rc1
2019-05-10 12:55:48 +02:00
Andreas Steffen
47879ca638
testing: Use strongswan systemd service
2019-05-10 12:55:09 +02:00
Andreas Steffen
6d8e6ec61b
testing: Load PEM keys in ikev2/net2-net-rsa scenario
2019-05-10 12:54:28 +02:00
Andreas Steffen
c9d898c9f4
testing: Copy keys and certs to swanctl/rw-newhope-bliss scenario
2019-05-10 12:53:33 +02:00
Tobias Brunner
27f6d37544
testing: Return an error if any command in the certificate build script fails
2019-05-08 14:56:48 +02:00
Tobias Brunner
d3f678c08f
testing: Build certificates before guests after building strongSwan
...
If the script is run on a clean working copy, building the guests will
fail if the certificates don't exist.
2019-05-08 14:56:48 +02:00
Tobias Brunner
287149cbf9
testing: Automatically build guest images after generating certificates
...
This (re-)generates the CRLs on winnetou.
2019-05-08 14:56:48 +02:00
Tobias Brunner
ac66ca25f9
testing: Use custom plugin configuration to build SHA-3 CA
2019-05-08 14:56:48 +02:00
Tobias Brunner
21280da9f5
testing: Fix ikev2/net2net-rsa scenario
2019-05-08 14:56:48 +02:00
Tobias Brunner
da8e33f3ca
testing: Add wrapper script to build certificates in root image
...
This does not modify the root image but uses the strongSwan version
installed there (avoids build dependencies on version installed on the
host to use pki to generate all the keys and certificates).
2019-05-08 14:56:48 +02:00
Andreas Steffen
a89ad28b89
testing: Upgrade to Linux 5.1 kernel
2019-05-08 14:56:48 +02:00
Andreas Steffen
b213204b3b
testing: Updated build-certs script
2019-05-08 14:56:48 +02:00
Andreas Steffen
cfeae14b06
testing: Deleting dynamic test keys and certificates
2019-05-08 14:56:48 +02:00
Tobias Brunner
2a72056cee
testing: Exclude files that are ignored in Git from the distribution
...
Since the complete hosts and tests directories are part of the tarball
this would include generated certificates and keys.
2019-05-08 14:56:48 +02:00
Andreas Steffen
92c001f766
testing: Remove dynamic keys and certs from repository
2019-05-08 14:56:48 +02:00
Andreas Steffen
00f1d09729
testing: Build data.sql files for SQL test cases
2019-05-08 14:56:48 +02:00
Tobias Brunner
05275905ef
testing: Build CERT and IPSECKEY RRs for strongswan.org zone
...
Also copy generated keys to DNSSEC test cases.
2019-05-08 14:56:48 +02:00
Tobias Brunner
1e059c837b
testing: Rename public keys in DNSSEC scenarios
...
We will generate PEM-encoded public keys with the script.
2019-05-08 14:56:48 +02:00
Tobias Brunner
326bb5f2c5
testing: Convert keys and certificates for all TKM scenarios
2019-05-08 14:56:48 +02:00
Tobias Brunner
0136852f19
testing: Disable leak detective in build-certs script
2019-05-08 14:56:48 +02:00
Andreas Steffen
8db01c6a3f
testing: Script building fresh certificates
2019-05-08 14:56:48 +02:00
Tobias Brunner
bc0a01ff2e
testing: Update documentation in headers of all updown scripts
2019-04-29 17:43:04 +02:00
Tobias Brunner
012221a867
testing: Add swanctl/net2net-childless scenario
2019-04-25 15:23:19 +02:00
Tobias Brunner
35392aa869
testing: Use renamed systemd unit
...
While the alias is available after enabling the unit, we don't
actually do that in our testing environment (adding a symlink manually
would work too, then again, why not just use the proper name?).
2019-04-24 13:57:48 +02:00
Tobias Brunner
e601b89c00
testing: Use latest tkm-rpc and x509-ada versions
...
Includes fixes for larger signatures, critical extensions and
utf8Strings in DNs.
2019-04-15 18:31:12 +02:00
Tobias Brunner
cfac7305ab
testing: Create new files in mounted strongSwan sources as regular user
2019-04-15 14:01:02 +02:00
Tobias Brunner
072de7c150
testing: Add scenario that uses IKE-specific interface IDs
2019-04-04 09:36:38 +02:00
Tobias Brunner
14e999c8d5
testing: Install python-daemon with strongSwan for use in updown scripts
2019-04-04 09:36:38 +02:00
Tobias Brunner
181801317b
testing: Add /etc/resolv.conf when building strongSwan
2019-04-04 09:36:38 +02:00
Tobias Brunner
ceca26c88e
testing: Enable Python eggs in testing environment (i.e. vici's Python bindings)
2019-04-04 09:36:38 +02:00
Tobias Brunner
760d7c9b4f
testing: Add scenarios that use XFRM interfaces
...
The network namespace scenario requires a kernel patch in 4.19 and 4.20
kernels (the fix is included in 5.0 kernels).
2019-04-04 09:31:38 +02:00
Tobias Brunner
5b2078ad09
testing: Enable XFRM interfaces and network namespaces in 4.19 and 5.0 kernel
2019-04-04 09:31:38 +02:00
Tobias Brunner
f43302dc10
Use Botan 2.10.0 for tests
2019-04-01 11:01:46 +02:00
Andreas Steffen
7b5eee65a0
Version bump to 5.8.0dr2
2019-03-30 17:11:34 +01:00
Andreas Steffen
195ee25dba
testing: Updated expired certificates
2019-03-30 17:10:51 +01:00
Andreas Steffen
d93532553c
Testing: Removed tnc/tnccs-20-server-retry scenario
2019-03-29 17:04:43 +01:00
Tobias Brunner
35b82000f1
testing: Disable gcrypt plugin for swanctl
...
Sometimes swanctl hangs when initializing the plugin and it apparently
gathers entropy.
2019-03-28 18:16:56 +01:00
Andreas Steffen
fa1f4d199e
testing: Prolonged Duck end entity certificate
2019-03-13 19:02:42 +01:00
Andreas Steffen
08a7326181
Version bump to 5.8.0dr1
2019-03-13 19:02:42 +01:00
Tobias Brunner
6639288b1a
Use Botan 2.9.0 for tests
2019-01-16 17:11:46 +01:00
Andreas Steffen
eb16352232
Version bump to 5.7.2
2018-12-27 12:11:49 +01:00
Andreas Steffen
023b9c0edc
Version bump to 5.7.2rc1
2018-12-19 13:21:48 +01:00
Andreas Steffen
7cf3f97e56
Version bump to 5.7.2dr4
2018-12-09 19:53:31 +01:00
Andreas Steffen
030de21b7b
testing: Migrated ikev2 scenarios to swanctl
2018-12-09 13:16:41 +01:00
Tobias Brunner
48afa6b783
testing: Switch to Debian stretch base images
2018-11-21 14:34:16 +01:00
Tobias Brunner
7511a6fd9c
testing: Install a package via apt-get to get a second SWIMA software event
...
This installs tmux and its two dependencies libevent-2.0-5 and libutempter0.
For the tnc/tnccs-20-ev-pt-tls test scenario older, apparently replaced
versions of these packages are entered to the collector.db database, so that
dummy SWID tags for these packages can be requested via SWIMA.
2018-11-21 14:33:29 +01:00
Tobias Brunner
b217bdf75f
testing: Add additional memory to alice
...
strongTNC seems to require a lot more memory than we assign by default,
not sure this increase is enough.
2018-11-21 14:32:25 +01:00
Tobias Brunner
b3d9ada385
testing: Generate some UTF-8 locales
2018-11-21 14:32:25 +01:00
Tobias Brunner
1741d1ac07
testing: Disable systemd's NTP service
...
This produces a lot of useless traffic as no NTP servers are reachable (or
even resolvable via winnetou).
2018-11-21 14:32:25 +01:00
Tobias Brunner
c7a74fd3e5
testing: Allow enabling only timestamps without verbose command output
...
-t enables only the timestamps, -v additionally logs command output
(includes -t).
2018-11-21 14:32:25 +01:00