Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | testing: make curve25519 the default DH group | Andreas Steffen | 2016-11-14 | 2 | -2/+2 |
| | |||||
* | testing: Add expect-connection calls for all tests and hosts | Tobias Brunner | 2016-06-16 | 1 | -0/+1 |
| | | | | There are some exceptions (e.g. those that use auto=start or p2pnat). | ||||
* | testing: Speed up OCSP scenarios | Tobias Brunner | 2015-11-09 | 1 | -1/+1 |
| | | | | | Don't make clients wait for the TCP connections to timeout by dropping packets. By rejecting them the OCSP requests fail immediately. | ||||
* | testing: Remove nearly all sleep calls from pretest and posttest scripts | Tobias Brunner | 2015-11-09 | 1 | -1/+1 |
| | | | | | By consistently using the `expect-connection` helper we can avoid pretty much all previously needed calls to sleep. | ||||
* | configure: Load fetcher plugins after crypto base plugins | Martin Willi | 2014-09-24 | 2 | -2/+2 |
| | | | | | | | | | | Some fetcher plugins (such as curl) might build upon OpenSSL to implement HTTPS fetching. As we set (and can't unset) threading callbacks in our openssl plugin, we must ensure that OpenSSL functions don't get called after openssl plugin unloading. We achieve that by loading curl and all other fetcher plugins after the base crypto plugins, including openssl. | ||||
* | Slightly edited evaltest of ikev2/ocsp-untrusted-cert scenario | Andreas Steffen | 2014-03-31 | 1 | -1/+1 |
| | |||||
* | revocation: Restrict OCSP signing to specific certificates | Martin Willi | 2014-03-31 | 1 | -2/+1 |
| | | | | | | | | | | | | | To avoid considering each cached OCSP response and evaluating its trustchain, we limit the certificates considered for OCSP signing to: - The issuing CA of the checked certificate - A directly delegated signer by the same CA, having the OCSP signer constraint - Any locally installed (trusted) certificate having the OCSP signer constraint The first two options cover the requirements from RFC 6960 2.6. For compatibility with non-conforming CAs, we allow the third option as exception, but require the installation of such certificates locally. | ||||
* | Updated comments in test.conf of all tests | Tobias Brunner | 2013-01-17 | 1 | -3/+3 |
| | |||||
* | Renamed $UMLHOSTS to $VIRTHOSTS | Tobias Brunner | 2013-01-17 | 1 | -2/+2 |
| | |||||
* | Adapt test configurations | Reto Buerki | 2013-01-17 | 1 | -4/+4 |
| | | | | Adapt test configurations to the new Debian-based system. | ||||
* | removed plutostart parameter | Andreas Steffen | 2012-06-13 | 2 | -2/+0 |
| | |||||
* | load nonce plugin | Andreas Steffen | 2012-05-23 | 2 | -2/+2 |
| | |||||
* | upgraded ikev2 scenarios to 5.0.0 | Andreas Steffen | 2012-05-11 | 1 | -7/+7 |
| | |||||
* | due to a bug fix reverted to the previous RULE_CRL_VALIDATION check | Andreas Steffen | 2011-09-09 | 1 | -1/+1 |
| | |||||
* | adapted evaltest.dat to new RULE_OCSP_VALIDATION | Andreas Steffen | 2010-09-01 | 1 | -1/+1 |
| | |||||
* | Added revocation plugin to ikev2 crl/ocsp test cases | Martin Willi | 2010-07-13 | 2 | -2/+2 |
| | |||||
* | Adding socket-default to the plugin list in all test cases. | Tobias Brunner | 2010-03-09 | 2 | -2/+2 |
| | |||||
* | tests load pem/pkcs1 plugins, pubkey plugin not needed anymore | Martin Willi | 2009-08-26 | 2 | -2/+2 |
| | |||||
* | merged multi-auth branch back into trunk | Martin Willi | 2009-04-14 | 1 | -1/+1 |
| | |||||
* | explicitly load kernel-netlink plugin in UML scenarios | Andreas Steffen | 2008-10-07 | 2 | -2/+2 |
| | |||||
* | define plugins to be loaded in strongswan.conf | Andreas Steffen | 2008-05-28 | 2 | -0/+10 |
| | |||||
* | adapted ikev2 uml scenarios for the 4.2 version | Andreas Steffen | 2008-04-01 | 3 | -3/+7 |
| | |||||
* | removed all nexthop statements | Andreas Steffen | 2007-06-10 | 2 | -2/+0 |
| | |||||
* | enabled crl fetching using crlcheckinterval != 0 | Andreas Steffen | 2007-04-05 | 4 | -6/+0 |
| | |||||
* | block crl fetching | Andreas Steffen | 2007-04-05 | 2 | -0/+4 |
| | |||||
* | removed killall openssl | Andreas Steffen | 2007-03-15 | 1 | -1/+0 |
| | |||||
* | deleted | Andreas Steffen | 2007-03-15 | 3 | -21/+11 |
| | |||||
* | added | Andreas Steffen | 2007-03-14 | 8 | -0/+118 |