updated rw-eap-aka-rsa scenario

diff --git a/testing/tests/ikev2/reauth-early/evaltest.dat b/testing/tests/ikev2/reauth-early/evaltest.dat
index 6d8e6f6ebc3af109e65501a1f356d331d21c0649..b4cbe2f41bab247bb3ae009b1a25a5f7f9c617f5 100644 (file)
--- a/testing/tests/ikev2/reauth-early/evaltest.dat
+++ b/testing/tests/ikev2/reauth-early/evaltest.dat
@@ -1,7 +1,6 @@
 moon::ipsec statusall::rw\[2\].*ESTABLISHED::YES
 carol::ipsec statusall::home\[2\].*ESTABLISHED::YES
 carol::cat /var/log/daemon.log::received AUTH_LIFETIME of 30s, scheduling reauthentication in 25s::YES
-carol::cat /var/log/daemon.log::maximum IKE_SA lifetime 30s::YES
 carol::ping -c 1 PH_IP_ALICE::64 bytes from PH_IP_ALICE: icmp_seq=1::YES
 moon::tcpdump::IP carol.strongswan.org > moon.strongswan.org: ESP::YES
 moon::tcpdump::IP moon.strongswan.org > carol.strongswan.org: ESP::YES

diff --git a/testing/tests/ikev2/reauth-late/evaltest.dat b/testing/tests/ikev2/reauth-late/evaltest.dat
index 507a85f30a8adce4be9d7fef45b03df031f4b80f..7ce2bf1477c231e5fc199a54c2fd94ab4dd4bdeb 100644 (file)
--- a/testing/tests/ikev2/reauth-late/evaltest.dat
+++ b/testing/tests/ikev2/reauth-late/evaltest.dat
@@ -2,7 +2,6 @@ moon::ipsec statusall::rw\[2\].*ESTABLISHED::YES
 carol::ipsec statusall::home\[2\].*ESTABLISHED::YES
 carol::cat /var/log/daemon.log::received AUTH_LIFETIME of 3600s, scheduling reauthentication in 3595s::YES
 carol::cat /var/log/daemon.log::scheduling reauthentication in 2[0-5]s::YES
-carol::cat /var/log/daemon.log::maximum IKE_SA lifetime [23][0-9]s::YES
 carol::ping -c 1 PH_IP_ALICE::64 bytes from PH_IP_ALICE: icmp_seq=1::YES
 moon::tcpdump::IP carol.strongswan.org > moon.strongswan.org: ESP::YES
 moon::tcpdump::IP moon.strongswan.org > carol.strongswan.org: ESP::YES

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/description.txt b/testing/tests/ikev2/rw-eap-aka-rsa/description.txt
similarity index 64%
rename from testing/tests/ikev2/rw-eapaka-rsa/description.txt
rename to testing/tests/ikev2/rw-eap-aka-rsa/description.txt
index af3e53f6b93e596588a636d88497d71217db81bf..b4f766d6feffd8dacd7e36661f1b74b1b414e290 100644 (file)
--- a/testing/tests/ikev2/rw-eapaka-rsa/description.txt
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/description.txt
@@ -2,6 +2,6 @@ The roadwarrior <b>carol</b> sets up a connection to gateway <b>moon</b>.
 <b>carol</b> uses the <i>Extensible Authentication Protocol</i>
 in association with the <i>Authentication and Key Agreement</i> protocol
 (<b>EAP-AKA</b>) to authenticate against the gateway. This protocol is used
-in UMTS, but here a secret from ipsec.secrets is used instead of a USIM/(R)UIM.
-Gateway <b>moon</b> additionaly uses an RSA signature to authenticate itself
+in UMTS, but here a secret from <b>ipsec.secrets</b> is used instead of a USIM/(R)UIM.
+Gateway <b>moon</b> additionaly uses an <b>RSA signature</b> to authenticate itself
 against <b>carol</b>.

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/evaltest.dat b/testing/tests/ikev2/rw-eap-aka-rsa/evaltest.dat
similarity index 66%
rename from testing/tests/ikev2/rw-eapaka-rsa/evaltest.dat
rename to testing/tests/ikev2/rw-eap-aka-rsa/evaltest.dat
index 4ab5fd73cd994dc9eab61d4498adc16d69176f97..5de841c03543f97806ba740e3e51fc503aed10ca 100644 (file)
--- a/testing/tests/ikev2/rw-eapaka-rsa/evaltest.dat
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/evaltest.dat
@@ -1,5 +1,5 @@
-carol::cat /var/log/daemon.log::authentication of '@moon.strongswan.org' with RSA signature successful::YES
-carol::cat /var/log/daemon.log::authentication of '@moon.strongswan.org' with EAP successful::YES
+carol::cat /var/log/daemon.log::authentication of 'moon.strongswan.org' with RSA signature successful::YES
+carol::cat /var/log/daemon.log::authentication of 'moon.strongswan.org' with EAP successful::YES
 moon::cat /var/log/daemon.log::authentication of 'carol@strongswan.org' with EAP successful::YES
 moon::ipsec statusall::rw-eapaka.*ESTABLISHED::YES
 carol::ipsec statusall::home.*ESTABLISHED::YES

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/hosts/carol/etc/ipsec.conf b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/carol/etc/ipsec.conf
similarity index 100%
rename from testing/tests/ikev2/rw-eapaka-rsa/hosts/carol/etc/ipsec.conf
rename to testing/tests/ikev2/rw-eap-aka-rsa/hosts/carol/etc/ipsec.conf

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/hosts/carol/etc/ipsec.secrets b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/carol/etc/ipsec.secrets
similarity index 54%
rename from testing/tests/ikev2/rw-eapaka-rsa/hosts/carol/etc/ipsec.secrets
rename to testing/tests/ikev2/rw-eap-aka-rsa/hosts/carol/etc/ipsec.secrets
index ea73220d764f7c1bd1454d0bbd3d183c1968b914..e03e89a0ff6e7e4eb8f7205e8c75b5a3e70ab7fc 100644 (file)
--- a/testing/tests/ikev2/rw-eapaka-rsa/hosts/carol/etc/ipsec.secrets
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/carol/etc/ipsec.secrets
@@ -1,3 +1,3 @@
 # /etc/ipsec.secrets - strongSwan IPsec secrets file
 
-carol@strongswan.org : PSK "Ar3etTnp01qlpOgb"
+carol@strongswan.org : EAP "Ar3etTnp01qlpOgb"

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/hosts/moon/etc/ipsec.conf b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/moon/etc/ipsec.conf
similarity index 100%
rename from testing/tests/ikev2/rw-eapaka-rsa/hosts/moon/etc/ipsec.conf
rename to testing/tests/ikev2/rw-eap-aka-rsa/hosts/moon/etc/ipsec.conf

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/hosts/moon/etc/ipsec.secrets b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/moon/etc/ipsec.secrets
similarity index 61%
rename from testing/tests/ikev2/rw-eapaka-rsa/hosts/moon/etc/ipsec.secrets
rename to testing/tests/ikev2/rw-eap-aka-rsa/hosts/moon/etc/ipsec.secrets
index 64de708aff0310089d7f5b76639dfc7198041bdb..aa38383855af30445ba55703cd2dc2960792a4bb 100644 (file)
--- a/testing/tests/ikev2/rw-eapaka-rsa/hosts/moon/etc/ipsec.secrets
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/hosts/moon/etc/ipsec.secrets
@@ -2,4 +2,4 @@
 
 : RSA moonKey.pem
 
-carol@strongswan.org : PSK "Ar3etTnp01qlpOgb"
+carol@strongswan.org : EAP "Ar3etTnp01qlpOgb"

diff --git a/testing/tests/ikev2/rw-eap-aka-rsa/posttest.dat b/testing/tests/ikev2/rw-eap-aka-rsa/posttest.dat
new file mode 100644 (file)
index 0000000..94a4006
--- /dev/null
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/posttest.dat
@@ -0,0 +1,4 @@
+moon::ipsec stop
+carol::ipsec stop
+moon::/etc/init.d/iptables stop 2> /dev/null
+carol::/etc/init.d/iptables stop 2> /dev/null

diff --git a/testing/tests/ikev2/rw-eap-aka-rsa/pretest.dat b/testing/tests/ikev2/rw-eap-aka-rsa/pretest.dat
new file mode 100644 (file)
index 0000000..ed5498b
--- /dev/null
+++ b/testing/tests/ikev2/rw-eap-aka-rsa/pretest.dat
@@ -0,0 +1,7 @@
+moon::/etc/init.d/iptables start 2> /dev/null
+carol::/etc/init.d/iptables start 2> /dev/null
+moon::ipsec start
+carol::ipsec start
+carol::sleep 1
+carol::ipsec up home
+carol::sleep 1

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/test.conf b/testing/tests/ikev2/rw-eap-aka-rsa/test.conf
similarity index 100%
rename from testing/tests/ikev2/rw-eapaka-rsa/test.conf
rename to testing/tests/ikev2/rw-eap-aka-rsa/test.conf

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/posttest.dat b/testing/tests/ikev2/rw-eapaka-rsa/posttest.dat
deleted file mode 100644 (file)
index c6d6235..0000000
--- a/testing/tests/ikev2/rw-eapaka-rsa/posttest.dat
+++ /dev/null
@@ -1,2 +0,0 @@
-moon::ipsec stop
-carol::ipsec stop

diff --git a/testing/tests/ikev2/rw-eapaka-rsa/pretest.dat b/testing/tests/ikev2/rw-eapaka-rsa/pretest.dat
deleted file mode 100644 (file)
index 5e36462..0000000
--- a/testing/tests/ikev2/rw-eapaka-rsa/pretest.dat
+++ /dev/null
@@ -1,5 +0,0 @@
-moon::echo 1 > /proc/sys/net/ipv4/ip_forward
-moon::ipsec start
-carol::ipsec start
-carol::sleep 1
-carol::ipsec up home