Imported Upstream version 5.3.3

author: Yves-Alexis Perez <corsac@debian.org> 2015-10-22 11:43:58 +0200
committer: Yves-Alexis Perez <corsac@debian.org> 2015-10-22 11:43:58 +0200
commit: 5dca9ea0e2931f0e2a056c7964d311bcc30a01b8 (patch)
tree: 037f1ec5bb860846938ddcf29771c24e9c529be0 /testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave
parent: b238cf34df3fe4476ae6b7012e7cb3e9769d4d51 (diff)
download: vyos-strongswan-5dca9ea0e2931f0e2a056c7964d311bcc30a01b8.tar.gz
vyos-strongswan-5dca9ea0e2931f0e2a056c7964d311bcc30a01b8.zip
3 files changed, 145 insertions, 0 deletions
diff --git a/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/ipsec.conf b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/ipsec.conf
new file mode 100644
index 000000000..2707b2be9
--- /dev/null
+++ b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/ipsec.conf
@@ -0,0 +1,24 @@
+# /etc/ipsec.conf - strongSwan IPsec configuration file
+
+config setup
+	charondebug="tnc 2, imc 3"
+
+conn %default
+	ikelifetime=60m
+	keylife=20m
+	rekeymargin=3m
+	keyingtries=1
+	keyexchange=ikev2
+
+conn home
+	left=PH_IP_DAVE
+	leftauth=eap
+	leftcert=daveCert.pem
+	leftid=dave@strongswan.org
+	leftfirewall=yes
+	right=PH_IP_MOON
+	rightid=@moon.strongswan.org
+	rightsubnet=10.1.0.0/16
+	rightauth=pubkey
+	aaa_identity="C=CH, O=Linux strongSwan, CN=aaa.strongswan.org"
+	auto=add
diff --git a/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/strongswan.conf b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/strongswan.conf
new file mode 100644
index 000000000..dbc845de9
--- /dev/null
+++ b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/strongswan.conf
@@ -0,0 +1,117 @@
+# /etc/strongswan.conf - strongSwan configuration file
+
+charon {
+  load = aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 curl revocation hmac stroke kernel-netlink socket-default eap-identity eap-md5 eap-ttls eap-tnc tnc-imc tnc-tnccs tnccs-20 updown
+
+  plugins {
+    eap-ttls {
+      max_message_count = 0
+    }
+    eap-tnc {
+      max_message_count = 0
+    }
+    tnccs-20 {
+      max_batch_size = 1600
+      max_message_size = 1568
+    }
+  }
+}
+
+libimcv {
+  os_info {
+    name = strongPrint OS
+    version = 1.1
+    default_password_enabled = no
+  }
+
+  plugins {
+    imc-hcd {
+      push_info = no
+      subtypes {
+        system {
+          attributes_natural_language = en
+          machine_type_model = strongPrint Laser X.509a
+          vendor_name = ITA-HSR
+          vendor_smi_code = 36906
+          pstn_fax_enabled = yes
+          time_source = 0.ch.pool.ntp.org
+          user_application_enabled = no 
+          user_application_persistence_enabled = no
+
+          firmware {
+            fw-1 {
+              name = Firmware ABC 
+              patches = "security patch 2014-05-08\r\nupgrade 2014-08-16\r\nsecurity patch 2015-3-22\r\n"
+              string_version = 1.0.7
+              version = 00000001000000000000000700000000
+            }
+            fw-2 {
+              name = Firmware UVW 
+              string_version = 13.8.5
+              version = 0000000D000000080000000500000000
+            }
+          }
+
+          resident_application {
+            resident-app-1 {
+              name = Resident App XYZ 
+              patches = "xmas patch 2014-12-24\r\nservice patch 2015-05-22\r\n"
+              string_version = 2.5
+              version = 00000002000000050000000000000000
+            }
+          }
+
+          certification_state = 000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f
+          configuration_state = f0f1f2f3f4f5f6f7f8f9fafbfcfdfeffe0e1e2e3e4e5e6e7e8e9eaebecedeeefd0d1d2d3d4d5d6d7d8d9dadbdcdddedf
+        }
+
+        console {
+          attributes_natural_language = ru
+        }
+
+        marker {
+          attributes_natural_language = fr
+        }
+
+        finisher {
+          attributes_natural_language = de
+        }
+
+        interface {
+          attributes_natural_language = en
+ 
+          firmware {
+            fw-if {
+              name = Interface Firmware
+              patches =
+              string_version = 7.8
+              version = 00000007000000080000000000000000
+            }
+          }
+
+          resident_application {
+		    resident-app-if {
+              name = Resident Interface App
+              patches = "service patch 2015-02-09\r\n"
+              string_version = 2.5
+              version = 00000002000000050000000000000000
+            }
+          }
+        }
+
+        scanner {
+          attributes_natural_language = en
+ 
+          firmware {
+            fw-scanner {
+              name = Scanner Firmware 
+              patches = "security patch 2013-08-11\r\nsecurity patch 2015-5-30\r\n"
+              string_version = 2.5.3
+              version = 00000002000000050000000300000000
+            }
+          }
+        }
+      }
+    }
+  }
+}
diff --git a/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/tnc_config b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/tnc_config
new file mode 100644
index 000000000..199d62c45
--- /dev/null
+++ b/testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave/etc/tnc_config
@@ -0,0 +1,4 @@
+#IMC configuration file for strongSwan client 
+
+IMC "OS"	/usr/local/lib/ipsec/imcvs/imc-os.so
+IMC "HCD"	/usr/local/lib/ipsec/imcvs/imc-hcd.so
author	Yves-Alexis Perez <corsac@debian.org>	2015-10-22 11:43:58 +0200
committer	Yves-Alexis Perez <corsac@debian.org>	2015-10-22 11:43:58 +0200
commit	5dca9ea0e2931f0e2a056c7964d311bcc30a01b8 (patch)
tree	037f1ec5bb860846938ddcf29771c24e9c529be0 /testing/tests/tnc/tnccs-20-hcd-eap/hosts/dave
parent	b238cf34df3fe4476ae6b7012e7cb3e9769d4d51 (diff)
download	vyos-strongswan-5dca9ea0e2931f0e2a056c7964d311bcc30a01b8.tar.gz vyos-strongswan-5dca9ea0e2931f0e2a056c7964d311bcc30a01b8.zip