diff options
author | Martin Willi <martin@revosec.ch> | 2014-09-24 12:24:13 +0200 |
---|---|---|
committer | Martin Willi <martin@revosec.ch> | 2014-09-24 17:34:54 +0200 |
commit | 44b6a34d438f15dbafdf3a0bc58ed23ca0b08923 (patch) | |
tree | b576cc52b6ba2b0357437027dcef35860bcb14be /testing/tests/openssl-ikev2/rw-eap-tls-only | |
parent | d717b42b51efa3c4ad201aa739b46b76c6173321 (diff) | |
download | strongswan-44b6a34d438f15dbafdf3a0bc58ed23ca0b08923.tar.bz2 strongswan-44b6a34d438f15dbafdf3a0bc58ed23ca0b08923.tar.xz |
configure: Load fetcher plugins after crypto base plugins
Some fetcher plugins (such as curl) might build upon OpenSSL to implement
HTTPS fetching. As we set (and can't unset) threading callbacks in our
openssl plugin, we must ensure that OpenSSL functions don't get called after
openssl plugin unloading.
We achieve that by loading curl and all other fetcher plugins after the base
crypto plugins, including openssl.
Diffstat (limited to 'testing/tests/openssl-ikev2/rw-eap-tls-only')
-rw-r--r-- | testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/carol/etc/strongswan.conf | 2 | ||||
-rw-r--r-- | testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/moon/etc/strongswan.conf | 3 |
2 files changed, 2 insertions, 3 deletions
diff --git a/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/carol/etc/strongswan.conf b/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/carol/etc/strongswan.conf index c55b0a9b6..f2c60511b 100644 --- a/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/carol/etc/strongswan.conf +++ b/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/carol/etc/strongswan.conf @@ -1,6 +1,6 @@ # /etc/strongswan.conf - strongSwan configuration file charon { - load = curl pem pkcs1 random nonce openssl revocation stroke kernel-netlink socket-default eap-tls updown + load = pem pkcs1 random nonce openssl curl revocation stroke kernel-netlink socket-default eap-tls updown multiple_authentication=no } diff --git a/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/moon/etc/strongswan.conf b/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/moon/etc/strongswan.conf index af4737fbe..7af4b4e37 100644 --- a/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/moon/etc/strongswan.conf +++ b/testing/tests/openssl-ikev2/rw-eap-tls-only/hosts/moon/etc/strongswan.conf @@ -1,11 +1,10 @@ # /etc/strongswan.conf - strongSwan configuration file charon { - load = curl pem pkcs1 random nonce openssl revocation stroke kernel-netlink socket-default eap-tls updown + load = pem pkcs1 random nonce openssl curl revocation stroke kernel-netlink socket-default eap-tls updown multiple_authentication=no } libtls { suites = TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 } - |