aboutsummaryrefslogtreecommitdiffstats
path: root/testing/tests/ikev2/two-certs
Commit message (Collapse)AuthorAgeFilesLines
* testing: Fix ikev2/two-certs scenarioTobias Brunner2017-05-261-1/+1
| | | | | | | Since 6a8a44be88b0 the certificate received by the client is verified first, before checking the cached certificates for any with matching identities. So we usually don't have to attempt to verify the signature with wrong certificates first and can avoid this message.
* testing: make curve25519 the default DH groupAndreas Steffen2016-11-142-2/+2
|
* testing: Add expect-connection calls for all tests and hostsTobias Brunner2016-06-161-0/+2
| | | | There are some exceptions (e.g. those that use auto=start or p2pnat).
* testing: Update test scenarios for Debian jessieTobias Brunner2016-06-161-2/+2
| | | | | | | The main difference is that ping now reports icmp_seq instead of icmp_req, so we match for icmp_.eq, which works with both releases. tcpdump now also reports port 4500 as ipsec-nat-t.
* testing: Remove nearly all sleep calls from pretest and posttest scriptsTobias Brunner2015-11-091-2/+2
| | | | | By consistently using the `expect-connection` helper we can avoid pretty much all previously needed calls to sleep.
* configure: Load fetcher plugins after crypto base pluginsMartin Willi2014-09-242-2/+2
| | | | | | | | | | Some fetcher plugins (such as curl) might build upon OpenSSL to implement HTTPS fetching. As we set (and can't unset) threading callbacks in our openssl plugin, we must ensure that OpenSSL functions don't get called after openssl plugin unloading. We achieve that by loading curl and all other fetcher plugins after the base crypto plugins, including openssl.
* Renewed expired user certificateAndreas Steffen2014-04-152-42/+42
|
* Updated comments in test.conf of all testsTobias Brunner2013-01-171-3/+3
|
* Renamed $UMLHOSTS to $VIRTHOSTSTobias Brunner2013-01-171-2/+2
|
* use iptables-restore in all ikev2 firewall scenariosAndreas Steffen2013-01-172-4/+4
|
* Adapt test configurationsReto Buerki2013-01-173-6/+6
| | | | Adapt test configurations to the new Debian-based system.
* removed plutostart parameterAndreas Steffen2012-06-132-2/+0
|
* load nonce pluginAndreas Steffen2012-05-232-2/+2
|
* upgraded ikev2 scenarios to 5.0.0Andreas Steffen2012-05-113-11/+8
|
* disable INITIAL_CONTACT message by setting unigueids=noAndreas Steffen2011-02-021-0/+1
|
* all x509 based ikev2 scenarios require the revocation pluginAndreas Steffen2010-07-152-2/+2
|
* Adding socket-default to the plugin list in all test cases.Tobias Brunner2010-03-092-2/+2
|
* tests load pem/pkcs1 plugins, pubkey plugin not needed anymoreMartin Willi2009-08-262-2/+2
|
* merged multi-auth branch back into trunkMartin Willi2009-04-1414-94/+103
|
* loading updown plugin if requiredMartin Willi2008-10-163-3/+3
|
* explicitly load kernel-netlink plugin in UML scenariosAndreas Steffen2008-10-073-3/+3
|
* define plugins to be loaded in strongswan.confAndreas Steffen2008-05-283-0/+15
|
* adapted ikev2 uml scenarios for the 4.2 versionAndreas Steffen2008-04-012-4/+4
|
* removed all nexthop statementsAndreas Steffen2007-06-103-3/+0
|
* ca-based policy now requires rightca=%any in the two-certs scenarioAndreas Steffen2007-05-181-0/+1
|
* added two-certs scenarioAndreas Steffen2007-05-1510-0/+162
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-16 05:58:30 +0000