From: Andreas Steffen <andreas.steffen@strongswan.org>
Date: Thu, 20 Oct 2022 02:54:56 +0000 (+0200)
Subject: testing: Migrated gcrypt-ikev2 scenarios
X-Git-Tag: 6.0.0rc1~9^2~10
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=dc69cf2f65e94cd01cae2af2b11a70064f9244c6;p=thirdparty%2Fstrongswan.git

testing: Migrated gcrypt-ikev2 scenarios
---

diff --git a/testing/tests/gcrypt-ikev2/rw-cert/description.txt b/testing/tests/gcrypt-ikev2/rw-cert/description.txt
index 0502a6be25..c445473ab9 100644
--- a/testing/tests/gcrypt-ikev2/rw-cert/description.txt
+++ b/testing/tests/gcrypt-ikev2/rw-cert/description.txt
@@ -1,7 +1,7 @@
 The roadwarrior <b>carol</b> and the gateway <b>moon</b> use the <b>gcrypt</b>
 plugin based on the <b>GNU Libgcrypt</b> library for all cryptographical functions
-whereas roadwarrior <b>dave</b> uses the default <b>strongSwan</b> cryptographical
-plugins <b>aes des sha1 sha2 md5 gmp</b>.
+whereas roadwarrior <b>dave</b> uses <b>openssl</b> as the default <b>strongSwan</b>
+cryptographical plugin.
 <p>
 The roadwarriors <b>carol</b> and <b>dave</b> set up a connection each 
 to gateway <b>moon</b>. The authentication is based on <b>X.509 certificates</b>.
@@ -9,4 +9,3 @@ Upon the successful establishment of the IPsec tunnels, the <b>updown</b> direct
 in swanctl.conf automatically inserts iptables-based firewall rules that let pass the
 tunneled traffic. In order to test both tunnel and firewall, both <b>carol</b> and
 <b>dave</b> ping the client <b>alice</b> behind the gateway <b>moon</b>.
-
diff --git a/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf b/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
index 22cc4d8a5a..472001fb98 100644
--- a/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
+++ b/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
@@ -5,7 +5,7 @@ swanctl {
 }
 
 charon-systemd {
-  load = test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 curl revocation hmac kdf xcbc ctr ccm vici stroke kernel-netlink socket-default updown
+  load = test-vectors pem pkcs1 random nonce openssl curl revocation xcbc vici stroke kernel-netlink socket-default updown
   integrity_test = yes
   crypto_test {
     required = yes