File: description.txt

package info (click to toggle)
libreswan 5.2-2.2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 81,632 kB
  • sloc: ansic: 129,988; sh: 32,018; xml: 20,646; python: 10,303; makefile: 3,022; javascript: 1,506; sed: 574; yacc: 511; perl: 264; awk: 52
file content (15 lines) | stat: -rw-r--r-- 480 bytes parent folder | download | duplicates (5) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
 
This test has a road warrior, ("road") connecting to VPN host east.

It shows up from a random IP.

It uses RSASIG to authenticate for phase 1.
It then uses XAUTH to authenticate the phase 1.5. East is uses password based XAUTH
using /etc/ipsec.d/passwd

It then proceeds to phase 2.

(see -04 for a case where aggressive mode is used)


This test case confirms that XAUTH without ModeCFG does not end up with a
partial PHASE 1 state. libreswan up to 3.21 suffered from this bug.