#!/bin/bash # Global configuration file for strongswan UML testing. # # Copyright (C) 2004 Eric Marchionni, Patrik Rayo # Zuercher Hochschule Winterthur # # This program is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at your # option) any later version. See . # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License # for more details. # Root directory of testing UMLTESTDIR=~/strongswan-testing # Bzipped kernel sources # (file extension .tar.bz2 required) KERNEL=$UMLTESTDIR/linux-2.6.38.tar.bz2 # Extract kernel version KERNELVERSION=`basename $KERNEL .tar.bz2 | sed -e 's/linux-//'` # Kernel configuration file KERNELCONFIG=$UMLTESTDIR/.config-2.6.38 # Bzipped uml patch for kernel UMLPATCH=$UMLTESTDIR/ha-2.6.37.patch.bz2 # Bzipped source of strongSwan STRONGSWAN=$UMLTESTDIR/strongswan-4.5.2.tar.bz2 # strongSwan compile options (use "yes" or "no") USE_LIBCURL="yes" USE_LDAP="yes" USE_EAP_AKA="yes" USE_EAP_SIM="yes" USE_EAP_MD5="yes" USE_EAP_MSCHAPV2="yes" USE_EAP_IDENTITY="yes" USE_EAP_RADIUS="yes" USE_EAP_TLS="yes" USE_EAP_TTLS="yes" USE_EAP_PEAP="yes" USE_EAP_TNC="yes" USE_TNC_IMC="yes" USE_TNC_IMV="yes" USE_TNCCS_11="yes" USE_TNCCS_20="yes" USE_TNCCS_DYNAMIC="yes" USE_SQL="yes" USE_MEDIATION="yes" USE_OPENSSL="yes" USE_BLOWFISH="yes" USE_KERNEL_PFKEY="yes" USE_INTEGRITY_TEST="yes" USE_LEAK_DETECTIVE="no" USE_LOAD_TESTER="yes" USE_TEST_VECTORS="yes" USE_GCRYPT="yes" USE_SOCKET_DEFAULT="yes" USE_SOCKET_DYNAMIC="yes" USE_DHCP="yes" USE_FARP="yes" USE_ADDRBLOCK="yes" USE_CTR="yes" USE_CCM="yes" USE_GCM="yes" USE_HA="yes" USE_AF_ALG="yes" USE_CISCO_QUIRKS="no" # Gentoo linux root filesystem ROOTFS=$UMLTESTDIR/gentoo-fs-20101120.tar.bz2 # Size of the finished root filesystem in MB ROOTFSSIZE=800 # Amount of Memory to use per UML [MB]. # If "auto" is stated 1/12 of total host ram will be used. # Examples: MEM=64, MEM="128", MEM="auto" MEM=96 # Directory where the UML kernels and file system will be built BUILDDIR=$UMLTESTDIR/umlbuild # Filename of the built UML Kernel UMLKERNEL=$BUILDDIR/linux-uml-$KERNELVERSION # Directory where test results will be stored TESTRESULTSDIR=$UMLTESTDIR/testresults # SSH configuration (speedup SSH) SSHCONF="-F $UMLTESTDIR/testing/ssh_config" # Path to a full strongswan tree on the host system, which is # mounted into /root/strongswan-shared. This gives us an easy # way to apply and test changes instantly. #SHAREDTREE=/home/martin/strongswan/trunk # Timezone for the UMLs, look in /usr/share/zoneinfo! TZUML="Europe/Zurich" ############################################################## # Enable particular steps in the make-testing and # start-testing scripts # ENABLE_BUILD_UMLKERNEL="yes" ENABLE_BUILD_SSHKEYS="yes" ENABLE_BUILD_HOSTCONFIG="yes" ENABLE_BUILD_UMLROOTFS="yes" ENABLE_BUILD_UMLHOSTFS="yes" ENABLE_START_TESTING="yes" ENABLE_DO_TESTS="no" ENABLE_STOP_TESTING="no" ############################################################## # How to start the UMLs? # # Start the UML instance in KDE konsole (requires KDE) # UMLSTARTMODE="konsole" # Start the UML instance in a gnome-terminal (requires gnome) UMLSTARTMODE="gnome-terminal" # Start the UML instance in an xterm (requires X11R6) # UMLSTARTMODE="xterm" # Start the UML instance without a terminal window # but screen -r can open a window anytime # UMLSTARTMODE="screen" ############################################################## # If set to "yes" only the tests stated at $SELECTEDTESTS # will be executed. (use "yes" or "no") # SELECTEDTESTSONLY="no" # Tests to do if $SELECTEDTESTSONLY is set "yes". # SELECTEDTESTS="ikev2/rw-cert" ############################################################## # hostname and corresponding IPv4 and IPv6 addresses # You may change the IPs but keep them in the same subnet, # this means retain the netmasks! # Also don't use IPs ending with 254, they are reserved! # HOSTNAMEIPV4="\ alice,10.1.0.10,192.168.0.50 \ venus,10.1.0.20 \ moon,192.168.0.1,10.1.0.1 \ carol,192.168.0.100,10.3.0.1 \ winnetou,192.168.0.150 \ dave,192.168.0.200,10.3.0.2 \ sun,192.168.0.2,10.2.0.1 \ bob,10.2.0.10" HOSTNAMEIPV6="\ alice,fec1::10,fec0::5 \ venus,fec1::20 \ moon,fec0::1,fec1::1 \ carol,fec0::10,fec3::1 \ winnetou,fec0::15 \ dave,fec0::20,fec3::2 \ sun,fec0::2,fec2::1 \ bob,fec2::10" ############################################################## # VPN gateways / clients # The hosts stated here will be created. Possible values # are sun, moon, dave, carol, alice, venus, bob, winnetou. # It's fine to make them all unless you don't have much # ressources. In this case we assume you know what you do! # STRONGSWANHOSTS="sun moon dave carol alice venus bob winnetou" ############################################################## # Needed programs, do not change! # PROGRAMS="uml_switch uml_mconsole ssh ssh-keygen iptables \ chroot screen mkreiserfs" ############################################################## # IP parameters of the UML switches # IFCONFIG_0="192.168.0.254 netmask 255.255.255.0" IFCONFIG_1="10.1.0.254 netmask 255.255.0.0" IFCONFIG_2="10.2.0.254 netmask 255.255.0.0" ############################################################## # Network interfaces of the UML instances # SWITCH_alice="eth0=tuntap,tap1_alice,fe:fd:0a:01:00:0a \ eth1=tuntap,tap0_alice,fe:fd:c0:a8:00:32" SWITCH_venus="eth0=tuntap,tap1_venus,fe:fd:0a:01:00:14" SWITCH_moon="eth0=tuntap,tap0_moon,fe:fd:c0:a8:00:01 \ eth1=tuntap,tap1_moon,fe:fd:0a:01:00:01" SWITCH_carol="eth0=tuntap,tap0_carol,fe:fd:c0:a8:00:64" SWITCH_winnetou="eth0=tuntap,tap0_winnetou,fe:fd:c0:a8:00:96" SWITCH_dave="eth0=tuntap,tap0_dave,fe:fd:c0:a8:00:c8" SWITCH_sun="eth0=tuntap,tap0_sun,fe:fd:c0:a8:00:02 \ eth1=tuntap,tap2_sun,fe:fd:0a:02:00:01" SWITCH_bob="eth0=tuntap,tap2_bob,fe:fd:0a:02:00:0a"