ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity
strongswan/testing/tests
History
Martin Willi f95d512251 testing: Use identity based CA restrictions in rw-hash-and-url-multi-level 
This is a prominent example where the identity based CA constraint is
benefical. While the description of the test claims a strict binding
of the client to the intermediate CA, this is not fully true if CA operators
are not fully trusted: A rogue OU=Sales intermediate may issue certificates
containing a OU=Research.

By binding the connection to the CA, we can avoid this, and using the identity
based constraint still allows moon to receive the intermediate over IKE
or hash-and-url.
 		2019-12-06 10:07:47 +01:00
..
af-alg testing: Use renamed systemd unit 2019-04-24 13:57:48 +02:00
botan testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00
gcrypt-ikev1 testing: Use renamed systemd unit 2019-04-24 13:57:48 +02:00
gcrypt-ikev2 testing: Use renamed systemd unit 2019-04-24 13:57:48 +02:00
ha testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00
ike testing: make curve25519 the default DH group 2016-11-14 16:20:51 +01:00
ikev1 testing: Fix SHA description in ikev*/esp-alg-null scenarios 2019-11-07 11:33:09 +01:00
ikev2 testing: Remove unused connection definition in ikev2/force-udp-encaps 2019-11-07 11:35:43 +01:00
ipv6 testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00
ipv6-stroke testing: Accept ping6 output with IP address after hostname 2018-11-21 14:32:25 +01:00
libipsec testing: Update documentation in headers of all updown scripts 2019-04-29 17:43:04 +02:00
openssl-ikev1 testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00
openssl-ikev2 testing: Updated build-certs script 2019-05-08 14:56:48 +02:00
p2pnat testing: make curve25519 the default DH group 2016-11-14 16:20:51 +01:00
pfkey testing: Configure logging via syslog in strongswan.conf 2017-11-15 17:24:04 +01:00
route-based testing: Import sys in Python updown script 2019-11-21 16:57:25 +01:00
sql testing: Build data.sql files for SQL test cases 2019-05-08 14:56:48 +02:00
swanctl testing: Use identity based CA restrictions in rw-hash-and-url-multi-level 2019-12-06 10:07:47 +01:00
tkm testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00
tnc testing: Deleting dynamic test keys and certificates 2019-05-08 14:56:48 +02:00