Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | testing: Fixed typo in openssl-ikev2/rw-suite-b-192 scenario | Andreas Steffen | 2017-07-08 | 1 | -1/+1 |
| | |||||
* | testing: make curve25519 the default DH group | Andreas Steffen | 2016-11-14 | 12 | -2/+28 |
| | |||||
* | testing: Add expect-connection calls for all tests and hosts | Tobias Brunner | 2016-06-16 | 13 | -0/+13 |
| | | | | There are some exceptions (e.g. those that use auto=start or p2pnat). | ||||
* | testing: Update test scenarios for Debian jessie | Tobias Brunner | 2016-06-16 | 15 | -24/+24 |
| | | | | | | | The main difference is that ping now reports icmp_seq instead of icmp_req, so we match for icmp_.eq, which works with both releases. tcpdump now also reports port 4500 as ipsec-nat-t. | ||||
* | 128 bit default security strength requires 3072 bit prime DH group | Andreas Steffen | 2015-12-14 | 3 | -10/+10 |
| | |||||
* | testing: Remove nearly all sleep calls from pretest and posttest scripts | Tobias Brunner | 2015-11-09 | 16 | -18/+31 |
| | | | | | By consistently using the `expect-connection` helper we can avoid pretty much all previously needed calls to sleep. | ||||
* | testing: Adapt tests to retransmission settings and reduce DPD delay/timeout | Tobias Brunner | 2015-11-09 | 2 | -6/+0 |
| | |||||
* | testing: Wait for DH crypto tests to complete | Andreas Steffen | 2015-04-26 | 3 | -3/+3 |
| | |||||
* | testing: Disable signature authentication on dave in ↵ | Tobias Brunner | 2015-03-04 | 2 | -2/+3 |
| | | | | openssl-ikev2/ecdsa-certs scenario | ||||
* | testing: Update test conditions because signature schemes are now logged | Tobias Brunner | 2015-03-04 | 4 | -10/+10 |
| | | | | | RFC 7427 signature authentication is now used between strongSwan hosts by default, which causes the actual signature schemes to get logged. | ||||
* | The critical-extension scenarios need the old private keys | Andreas Steffen | 2014-10-05 | 2 | -0/+54 |
| | |||||
* | testing: Update PKCS#12 containers | Tobias Brunner | 2014-10-03 | 2 | -0/+0 |
| | |||||
* | configure: Load fetcher plugins after crypto base plugins | Martin Willi | 2014-09-24 | 41 | -47/+45 |
| | | | | | | | | | | Some fetcher plugins (such as curl) might build upon OpenSSL to implement HTTPS fetching. As we set (and can't unset) threading callbacks in our openssl plugin, we must ensure that OpenSSL functions don't get called after openssl plugin unloading. We achieve that by loading curl and all other fetcher plugins after the base crypto plugins, including openssl. | ||||
* | Test TLS AEAD cipher suites | Andreas Steffen | 2014-04-01 | 3 | -6/+4 |
| | |||||
* | Added openssl-ikev2/net2net-pgp-v3 scenario | Andreas Steffen | 2014-03-22 | 17 | -0/+208 |
| | |||||
* | Merged libstrongswan options into charon section | Andreas Steffen | 2014-03-15 | 10 | -24/+12 |
| | |||||
* | Encrypt carol's PKCS#8 private key in openssl-ikve2/rw-suite-b-128|192 scenarios | Andreas Steffen | 2013-10-30 | 4 | -13/+16 |
| | |||||
* | Added two Brainpool IKEv2 scenarios | Andreas Steffen | 2013-10-23 | 22 | -0/+298 |
| | |||||
* | Use bold font to display key size | Andreas Steffen | 2013-10-11 | 2 | -2/+2 |
| | |||||
* | testing: Don't load certificates explicitly and delete CA certificates in ↵ | Tobias Brunner | 2013-07-15 | 3 | -2/+3 |
| | | | | | | PKCS#12 scenarios Certificates are now properly extracted from PKCS#12 files. | ||||
* | openssl plugin can replace random, hmac, and gcm plugins | Andreas Steffen | 2013-07-10 | 2 | -2/+2 |
| | |||||
* | Added openssl-ikev2/net2net-pkcs12 scenario | Andreas Steffen | 2013-07-10 | 13 | -0/+116 |
| | |||||
* | 5.1.0 changes for test cases | Andreas Steffen | 2013-06-29 | 82 | -249/+682 |
| | |||||
* | check for successful activation of FIPS mode | Andreas Steffen | 2013-04-19 | 1 | -1/+4 |
| | |||||
* | Added openssl-ikev2/rw-cpa scenario | Andreas Steffen | 2013-04-19 | 29 | -0/+472 |
| | |||||
* | added openssl-ikev2/alg-aes-gcm scenario | Andreas Steffen | 2013-03-03 | 11 | -0/+158 |
| | |||||
* | Updated comments in test.conf of all tests | Tobias Brunner | 2013-01-17 | 9 | -27/+27 |
| | |||||
* | Renamed $UMLHOSTS to $VIRTHOSTS | Tobias Brunner | 2013-01-17 | 9 | -18/+18 |
| | |||||
* | converted all openssl-ikev2 iptables scenarios | Andreas Steffen | 2013-01-17 | 18 | -48/+48 |
| | |||||
* | Adapt test configurations | Reto Buerki | 2013-01-17 | 8 | -14/+14 |
| | | | | Adapt test configurations to the new Debian-based system. | ||||
* | removed plutostart parameter | Andreas Steffen | 2012-06-13 | 24 | -24/+0 |
| | |||||
* | load nonce plugin | Andreas Steffen | 2012-05-23 | 24 | -24/+24 |
| | |||||
* | suppress leak detective output | Andreas Steffen | 2012-05-11 | 1 | -4/+4 |
| | |||||
* | upgraded openssl-ikev2 scenarios to 5.0.0 | Andreas Steffen | 2012-05-04 | 39 | -136/+90 |
| | |||||
* | activated cmac plugin in UML test suites | Andreas Steffen | 2012-04-22 | 3 | -3/+3 |
| | |||||
* | adapted debug output check in openssl-ikev2/rw-eap-tls-only scenario | Andreas Steffen | 2012-02-07 | 1 | -1/+1 |
| | |||||
* | added openssl-ikev2/ecdsa-pkcs8 scenario | Andreas Steffen | 2012-02-03 | 23 | -0/+286 |
| | |||||
* | moved random plugin in front of openssl in order to prefer gmp | Andreas Steffen | 2011-11-05 | 2 | -2/+2 |
| | |||||
* | added openssl-ikev2/critical-extension scenario | Andreas Steffen | 2011-02-08 | 11 | -0/+111 |
| | |||||
* | added openssl-ikev2/rw-eap-tls-only scenario | Andreas Steffen | 2010-09-07 | 17 | -0/+210 |
| | |||||
* | testing: Added missing host alice to test.conf. | Tobias Brunner | 2010-09-02 | 1 | -2/+2 |
| | |||||
* | added ctr ccm and gcm plugins to openssl-ikev2/rw-cert scenario | Andreas Steffen | 2010-08-29 | 3 | -3/+3 |
| | |||||
* | all x509 based openssl-ikev2 scenarios require the revocation plugin | Andreas Steffen | 2010-07-15 | 17 | -17/+17 |
| | |||||
* | remove x509 plugin from remaining openssl-ikev2 scenarios | Andreas Steffen | 2010-05-25 | 17 | -23/+23 |
| | |||||
* | openssl-ikev2/rw-cert scenario doesn't need x509 plugin any more | Andreas Steffen | 2010-05-25 | 3 | -5/+5 |
| | |||||
* | Adding socket-default to the plugin list in all test cases. | Tobias Brunner | 2010-03-09 | 17 | -17/+17 |
| | |||||
* | adapted openssl-ikev2/alg scenarios | Andreas Steffen | 2009-12-09 | 3 | -12/+14 |
| | |||||
* | tests load pem/pkcs1 plugins, pubkey plugin not needed anymore | Martin Willi | 2009-08-26 | 17 | -17/+17 |
| | |||||
* | added openssl-ikev2/alg-camellia scenario | Andreas Steffen | 2009-08-06 | 9 | -0/+104 |
| | |||||
* | enable integrity test in all rw-cert scenarios | Andreas Steffen | 2009-07-17 | 9 | -0/+27 |
| |