From b5549aeb1db8c4298526c1cbc08e8aa76d18b3ad Mon Sep 17 00:00:00 2001
From: Andreas Steffen <andreas.steffen@strongswan.org>
Date: Thu, 20 Oct 2022 04:54:56 +0200
Subject: [PATCH] testing: Migrated gcrypt-ikev2 scenarios

---
 testing/tests/gcrypt-ikev2/rw-cert/description.txt           | 5 ++---
 .../gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf      | 2 +-
 2 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/testing/tests/gcrypt-ikev2/rw-cert/description.txt b/testing/tests/gcrypt-ikev2/rw-cert/description.txt
index 0502a6be25..c445473ab9 100644
--- a/testing/tests/gcrypt-ikev2/rw-cert/description.txt
+++ b/testing/tests/gcrypt-ikev2/rw-cert/description.txt
@@ -1,7 +1,7 @@
 The roadwarrior <b>carol</b> and the gateway <b>moon</b> use the <b>gcrypt</b>
 plugin based on the <b>GNU Libgcrypt</b> library for all cryptographical functions
-whereas roadwarrior <b>dave</b> uses the default <b>strongSwan</b> cryptographical
-plugins <b>aes des sha1 sha2 md5 gmp</b>.
+whereas roadwarrior <b>dave</b> uses <b>openssl</b> as the default <b>strongSwan</b>
+cryptographical plugin.
 <p>
 The roadwarriors <b>carol</b> and <b>dave</b> set up a connection each 
 to gateway <b>moon</b>. The authentication is based on <b>X.509 certificates</b>.
@@ -9,4 +9,3 @@ Upon the successful establishment of the IPsec tunnels, the <b>updown</b> direct
 in swanctl.conf automatically inserts iptables-based firewall rules that let pass the
 tunneled traffic. In order to test both tunnel and firewall, both <b>carol</b> and
 <b>dave</b> ping the client <b>alice</b> behind the gateway <b>moon</b>.
-
diff --git a/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf b/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
index 22cc4d8a5a..472001fb98 100644
--- a/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
+++ b/testing/tests/gcrypt-ikev2/rw-cert/hosts/dave/etc/strongswan.conf
@@ -5,7 +5,7 @@ swanctl {
 }
 
 charon-systemd {
-  load = test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 curl revocation hmac kdf xcbc ctr ccm vici stroke kernel-netlink socket-default updown
+  load = test-vectors pem pkcs1 random nonce openssl curl revocation xcbc vici stroke kernel-netlink socket-default updown
   integrity_test = yes
   crypto_test {
     required = yes
-- 
2.47.2