210 lines
6.1 KiB
Bash
Executable File
210 lines
6.1 KiB
Bash
Executable File
#!/bin/bash
|
|
# Global configuration file for strongswan UML testing.
|
|
#
|
|
# Copyright (C) 2004 Eric Marchionni, Patrik Rayo
|
|
# Zuercher Hochschule Winterthur
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU General Public License as published by the
|
|
# Free Software Foundation; either version 2 of the License, or (at your
|
|
# option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
|
|
#
|
|
# This program is distributed in the hope that it will be useful, but
|
|
# WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
|
# or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
# for more details.
|
|
|
|
# Root directory of testing
|
|
UMLTESTDIR=~/strongswan-testing
|
|
|
|
# Bzipped kernel sources
|
|
# (file extension .tar.bz2 required)
|
|
KERNEL=$UMLTESTDIR/linux-2.6.38.5.tar.bz2
|
|
|
|
# Extract kernel version
|
|
KERNELVERSION=`basename $KERNEL .tar.bz2 | sed -e 's/linux-//'`
|
|
|
|
# Kernel configuration file
|
|
KERNELCONFIG=$UMLTESTDIR/.config-2.6.38
|
|
|
|
# Bzipped uml patch for kernel
|
|
UMLPATCH=$UMLTESTDIR/ha-2.6.37.patch.bz2
|
|
|
|
# Bzipped source of strongSwan
|
|
STRONGSWAN=$UMLTESTDIR/strongswan-4.5.2.tar.bz2
|
|
|
|
# strongSwan compile options (use "yes" or "no")
|
|
USE_LIBCURL="yes"
|
|
USE_LDAP="yes"
|
|
USE_EAP_AKA="yes"
|
|
USE_EAP_SIM="yes"
|
|
USE_EAP_MD5="yes"
|
|
USE_EAP_MSCHAPV2="yes"
|
|
USE_EAP_IDENTITY="yes"
|
|
USE_EAP_RADIUS="yes"
|
|
USE_EAP_TLS="yes"
|
|
USE_EAP_TTLS="yes"
|
|
USE_EAP_PEAP="yes"
|
|
USE_EAP_TNC="yes"
|
|
USE_TNC_IMC="yes"
|
|
USE_TNC_IMV="yes"
|
|
USE_TNCCS_11="yes"
|
|
USE_TNCCS_20="yes"
|
|
USE_TNCCS_DYNAMIC="yes"
|
|
USE_IMC_TEST="yes"
|
|
USE_IMV_TEST="yes"
|
|
USE_IMC_SCANNER="yes"
|
|
USE_IMV_SCANNER="yes"
|
|
USE_SQL="yes"
|
|
USE_MEDIATION="yes"
|
|
USE_OPENSSL="yes"
|
|
USE_BLOWFISH="yes"
|
|
USE_KERNEL_PFKEY="yes"
|
|
USE_INTEGRITY_TEST="yes"
|
|
USE_LEAK_DETECTIVE="no"
|
|
USE_LOAD_TESTER="yes"
|
|
USE_TEST_VECTORS="yes"
|
|
USE_GCRYPT="yes"
|
|
USE_SOCKET_DEFAULT="yes"
|
|
USE_SOCKET_DYNAMIC="yes"
|
|
USE_DHCP="yes"
|
|
USE_FARP="yes"
|
|
USE_ADDRBLOCK="yes"
|
|
USE_CTR="yes"
|
|
USE_CCM="yes"
|
|
USE_GCM="yes"
|
|
USE_HA="yes"
|
|
USE_AF_ALG="yes"
|
|
USE_WHITELIST="yes"
|
|
USE_CISCO_QUIRKS="no"
|
|
|
|
# Gentoo linux root filesystem
|
|
ROOTFS=$UMLTESTDIR/gentoo-fs-20101120.tar.bz2
|
|
|
|
# Size of the finished root filesystem in MB
|
|
ROOTFSSIZE=800
|
|
|
|
# Amount of Memory to use per UML [MB].
|
|
# If "auto" is stated 1/12 of total host ram will be used.
|
|
# Examples: MEM=64, MEM="128", MEM="auto"
|
|
MEM=96
|
|
|
|
# Directory where the UML kernels and file system will be built
|
|
BUILDDIR=$UMLTESTDIR/umlbuild
|
|
|
|
# Filename of the built UML Kernel
|
|
UMLKERNEL=$BUILDDIR/linux-uml-$KERNELVERSION
|
|
|
|
# Directory where test results will be stored
|
|
TESTRESULTSDIR=$UMLTESTDIR/testresults
|
|
|
|
# SSH configuration (speedup SSH)
|
|
SSHCONF="-F $UMLTESTDIR/testing/ssh_config"
|
|
|
|
# Path to a full strongswan tree on the host system, which is
|
|
# mounted into /root/strongswan-shared. This gives us an easy
|
|
# way to apply and test changes instantly.
|
|
#SHAREDTREE=/home/martin/strongswan/trunk
|
|
|
|
# Timezone for the UMLs, look in /usr/share/zoneinfo!
|
|
TZUML="Europe/Zurich"
|
|
|
|
##############################################################
|
|
# Enable particular steps in the make-testing and
|
|
# start-testing scripts
|
|
#
|
|
ENABLE_BUILD_UMLKERNEL="yes"
|
|
ENABLE_BUILD_SSHKEYS="yes"
|
|
ENABLE_BUILD_HOSTCONFIG="yes"
|
|
ENABLE_BUILD_UMLROOTFS="yes"
|
|
ENABLE_BUILD_UMLHOSTFS="yes"
|
|
ENABLE_START_TESTING="yes"
|
|
ENABLE_DO_TESTS="no"
|
|
ENABLE_STOP_TESTING="no"
|
|
|
|
##############################################################
|
|
# How to start the UMLs?
|
|
#
|
|
# Start the UML instance in KDE konsole (requires KDE)
|
|
# UMLSTARTMODE="konsole"
|
|
# Start the UML instance in a gnome-terminal (requires gnome)
|
|
UMLSTARTMODE="gnome-terminal"
|
|
# Start the UML instance in an xterm (requires X11R6)
|
|
# UMLSTARTMODE="xterm"
|
|
# Start the UML instance without a terminal window
|
|
# but screen -r <host> can open a window anytime
|
|
# UMLSTARTMODE="screen"
|
|
|
|
##############################################################
|
|
# If set to "yes" only the tests stated at $SELECTEDTESTS
|
|
# will be executed. (use "yes" or "no")
|
|
#
|
|
SELECTEDTESTSONLY="no"
|
|
|
|
# Tests to do if $SELECTEDTESTSONLY is set "yes".
|
|
#
|
|
SELECTEDTESTS="ikev2/rw-cert"
|
|
|
|
##############################################################
|
|
# hostname and corresponding IPv4 and IPv6 addresses
|
|
# You may change the IPs but keep them in the same subnet,
|
|
# this means retain the netmasks!
|
|
# Also don't use IPs ending with 254, they are reserved!
|
|
#
|
|
HOSTNAMEIPV4="\
|
|
alice,10.1.0.10,192.168.0.50 \
|
|
venus,10.1.0.20 \
|
|
moon,192.168.0.1,10.1.0.1 \
|
|
carol,192.168.0.100,10.3.0.1 \
|
|
winnetou,192.168.0.150 \
|
|
dave,192.168.0.200,10.3.0.2 \
|
|
sun,192.168.0.2,10.2.0.1 \
|
|
bob,10.2.0.10"
|
|
|
|
HOSTNAMEIPV6="\
|
|
alice,fec1::10,fec0::5 \
|
|
venus,fec1::20 \
|
|
moon,fec0::1,fec1::1 \
|
|
carol,fec0::10,fec3::1 \
|
|
winnetou,fec0::15 \
|
|
dave,fec0::20,fec3::2 \
|
|
sun,fec0::2,fec2::1 \
|
|
bob,fec2::10"
|
|
|
|
##############################################################
|
|
# VPN gateways / clients
|
|
# The hosts stated here will be created. Possible values
|
|
# are sun, moon, dave, carol, alice, venus, bob, winnetou.
|
|
# It's fine to make them all unless you don't have much
|
|
# ressources. In this case we assume you know what you do!
|
|
#
|
|
STRONGSWANHOSTS="sun moon dave carol alice venus bob winnetou"
|
|
|
|
##############################################################
|
|
# Needed programs, do not change!
|
|
#
|
|
PROGRAMS="uml_switch uml_mconsole ssh ssh-keygen iptables \
|
|
chroot screen mkreiserfs"
|
|
|
|
##############################################################
|
|
# IP parameters of the UML switches
|
|
#
|
|
IFCONFIG_0="192.168.0.254 netmask 255.255.255.0"
|
|
IFCONFIG_1="10.1.0.254 netmask 255.255.0.0"
|
|
IFCONFIG_2="10.2.0.254 netmask 255.255.0.0"
|
|
|
|
##############################################################
|
|
# Network interfaces of the UML instances
|
|
#
|
|
SWITCH_alice="eth0=tuntap,tap1_alice,fe:fd:0a:01:00:0a \
|
|
eth1=tuntap,tap0_alice,fe:fd:c0:a8:00:32"
|
|
SWITCH_venus="eth0=tuntap,tap1_venus,fe:fd:0a:01:00:14"
|
|
SWITCH_moon="eth0=tuntap,tap0_moon,fe:fd:c0:a8:00:01 \
|
|
eth1=tuntap,tap1_moon,fe:fd:0a:01:00:01"
|
|
SWITCH_carol="eth0=tuntap,tap0_carol,fe:fd:c0:a8:00:64"
|
|
SWITCH_winnetou="eth0=tuntap,tap0_winnetou,fe:fd:c0:a8:00:96"
|
|
SWITCH_dave="eth0=tuntap,tap0_dave,fe:fd:c0:a8:00:c8"
|
|
SWITCH_sun="eth0=tuntap,tap0_sun,fe:fd:c0:a8:00:02 \
|
|
eth1=tuntap,tap2_sun,fe:fd:0a:02:00:01"
|
|
SWITCH_bob="eth0=tuntap,tap2_bob,fe:fd:0a:02:00:0a"
|