Lines Matching +full:key +full:- +full:up
2 # SPDX-License-Identifier: BSD-2-Clause
45 jexec a ifconfig ${l}a 192.0.2.1/24 up
47 jexec b ifconfig ${l}b 192.0.2.2/24 up
50 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
54 dev-type tun
57 cipher AES-256-GCM
64 key $(atf_get_srcdir)/server.key
68 script-security 2
69 auth-user-pass-verify /usr/bin/true via-env
76 dev-type tun
81 auth-user-pass $(atf_get_srcdir)/user.pass
85 key $(atf_get_srcdir)/client.key
91 # Give the tunnel time to come up
94 atf_check -s exit:0 -o ignore jexec b ping -c 1 198.51.100.1
96 echo 'foo' | jexec b nc -u -w 2 192.0.2.1 1194
97 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
101 atf_check -s exit:2 -o ignore jexec b ping -t 1 -c 1 198.51.100.1
124 jexec a ifconfig ${l}a 192.0.2.1/24 up
126 jexec b ifconfig ${l}b 192.0.2.2/24 up
129 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
135 dev-type tun
137 cipher AES-256-GCM
143 key $(atf_get_srcdir)/server.key
147 script-security 2
148 auth-user-pass-verify /usr/bin/true via-env
155 dev-type tun
160 auth-user-pass $(atf_get_srcdir)/user.pass
164 key $(atf_get_srcdir)/client.key
170 # Give the tunnel time to come up
173 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
196 jexec a ifconfig ${l}a 192.0.2.1/24 up
198 jexec b ifconfig ${l}b 192.0.2.2/24 up
201 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
205 dev-type tun
208 cipher AES-256-GCM
212 server-ipv6 2001:db8:1::/64
216 key $(atf_get_srcdir)/server.key
220 script-security 2
221 auth-user-pass-verify /usr/bin/true via-env
228 dev-type tun
233 auth-user-pass $(atf_get_srcdir)/user.pass
237 key $(atf_get_srcdir)/client.key
243 # Give the tunnel time to come up
246 atf_check -s exit:0 -o ignore jexec b ping6 -c 3 2001:db8:1::1
269 jexec a ifconfig ${l}a inet6 2001:db8::1/64 up no_dad
271 jexec b ifconfig ${l}b inet6 2001:db8::2/64 up no_dad
274 atf_check -s exit:0 -o ignore jexec a ping6 -c 1 2001:db8::2
278 dev-type tun
281 cipher AES-256-GCM
288 key $(atf_get_srcdir)/server.key
292 script-security 2
293 auth-user-pass-verify /usr/bin/true via-env
300 dev-type tun
305 auth-user-pass $(atf_get_srcdir)/user.pass
309 key $(atf_get_srcdir)/client.key
316 cat test.img | jexec a nc -N -l 1234 &
318 # Give the tunnel time to come up
321 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
326 atf_check -s exit:0 -o ignore jexec b \
327 ping -c 1 -s $i 198.51.100.1
330 rcvmd5=$(jexec b nc -N -w 3 198.51.100.1 1234 | md5)
359 jexec a ifconfig ${l}a inet6 2001:db8::1/64 up no_dad
361 jexec b ifconfig ${l}b inet6 2001:db8::2/64 up no_dad
364 atf_check -s exit:0 -o ignore jexec a ping6 -c 1 2001:db8::2
368 dev-type tun
371 cipher AES-256-GCM
375 server-ipv6 2001:db8:1::/64
379 key $(atf_get_srcdir)/server.key
383 script-security 2
384 auth-user-pass-verify /usr/bin/true via-env
391 dev-type tun
396 auth-user-pass $(atf_get_srcdir)/user.pass
400 key $(atf_get_srcdir)/client.key
406 # Give the tunnel time to come up
409 atf_check -s exit:0 -o ignore jexec b ping6 -c 3 2001:db8:1::1
410 atf_check -s exit:0 -o ignore jexec b ping6 -c 3 -z 16 2001:db8:1::1
413 jexec b route add -6 2001:db8::1 2001:db8:1::1
414 atf_check -s exit:2 -o ignore jexec b ping6 -t 1 -c 3 2001:db8:1::1
437 jexec a ifconfig ${l}a 192.0.2.1/24 up
438 jexec a ifconfig lo0 127.0.0.1/8 up
440 jexec b ifconfig ${l}b 192.0.2.2/24 up
443 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
447 dev-type tun
450 cipher AES-256-GCM
457 key $(atf_get_srcdir)/server.key
461 script-security 2
462 auth-user-pass-verify /usr/bin/true via-env
471 dev-type tun
476 auth-user-pass $(atf_get_srcdir)/user.pass
480 key $(atf_get_srcdir)/client.key
486 # Give the tunnel time to come up
489 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
497 while echo "status" | jexec a nc -N 192.0.2.1 1234 | grep 192.0.2.2; do
523 jexec a ifconfig ${l}a 192.0.2.1/24 up
524 jexec a ifconfig lo0 127.0.0.1/8 up
526 jexec b ifconfig ${l}b 192.0.2.2/24 up
529 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
533 dev-type tun
536 cipher AES-256-GCM
543 key $(atf_get_srcdir)/server.key
547 script-security 2
548 auth-user-pass-verify /usr/bin/true via-env
555 dev-type tun
560 auth-user-pass $(atf_get_srcdir)/user.pass
564 key $(atf_get_srcdir)/client.key
567 explicit-exit-notify
570 # Give the tunnel time to come up
573 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
575 if ! echo "status" | jexec a nc -N 192.0.2.1 1234 | grep 192.0.2.2; then
582 while echo "status" | jexec a nc -N 192.0.2.1 1234 | grep 192.0.2.2; do
612 ifconfig ${bridge} up
614 ifconfig ${srv}a up
616 ifconfig ${one}a up
618 ifconfig ${two}a up
622 jexec srv ifconfig ${srv}b 192.0.2.1/24 up
624 jexec one ifconfig ${one}b 192.0.2.2/24 up
626 jexec two ifconfig ${two}b 192.0.2.3/24 up
627 jexec two ifconfig lo0 127.0.0.1/8 up
631 atf_check -s exit:0 -o ignore jexec one ping -c 1 192.0.2.1
632 atf_check -s exit:0 -o ignore jexec two ping -c 1 192.0.2.1
638 dev-type tun
641 cipher AES-256-GCM
651 key $(atf_get_srcdir)/server.key
655 duplicate-cn
656 script-security 2
657 auth-user-pass-verify /usr/bin/true via-env
662 client-config-dir $(atf_get_srcdir)/ccd
666 dev-type tun
671 auth-user-pass $(atf_get_srcdir)/user.pass
675 key $(atf_get_srcdir)/client.key
682 dev-type tun
687 auth-user-pass $(atf_get_srcdir)/user.pass
691 key $(atf_get_srcdir)/client2.key
697 # Give the tunnel time to come up
700 atf_check -s exit:0 -o ignore jexec one ping -c 3 198.51.100.1
701 atf_check -s exit:0 -o ignore jexec two ping -c 3 198.51.100.1
703 # Client-to-client communication
704 atf_check -s exit:0 -o ignore jexec one ping -c 3 198.51.100.3
705 atf_check -s exit:0 -o ignore jexec two ping -c 3 198.51.100.2
708 atf_check -s exit:0 -o ignore jexec one ping -c 3 203.0.113.1
719 atf_set descr "Test pf's route-to with OpenVPN tunnels"
733 jexec a ifconfig ${l}a 192.0.2.1/24 up
735 jexec b ifconfig ${l}b 192.0.2.2/24 up
736 jexec b ifconfig ${n}a up
739 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
743 dev-type tun
746 cipher AES-256-GCM
753 key $(atf_get_srcdir)/server.key
757 script-security 2
758 auth-user-pass-verify /usr/bin/true via-env
765 dev-type tun
770 auth-user-pass $(atf_get_srcdir)/user.pass
774 key $(atf_get_srcdir)/client.key
780 # Give the tunnel time to come up
785 atf_check -s exit:0 -o ignore jexec b ping -c 1 -S 198.51.100.2 198.51.100.1
786 atf_check -s exit:0 -o ignore jexec b ping -c 1 -S 198.51.100.2 198.51.100.254
788 # Break our route to .254 so that we need a route-to to make things work.
789 jexec b ifconfig ${n}a 203.0.113.1/24 up
790 jexec b route add 198.51.100.254 -interface ${n}a
793 atf_check -s exit:2 -o ignore jexec b ping -c 1 -S 198.51.100.2 198.51.100.254
795 jexec b pfctl -e
797 "pass out route-to (tun0 198.51.100.1) proto icmp from 198.51.100.2 "
798 atf_check -s exit:0 -o ignore jexec b ping -c 3 -S 198.51.100.2 198.51.100.254
826 ifconfig ${bridge} up
828 ifconfig ${srv}a up
830 ifconfig ${one}a up
832 ifconfig ${two}a up
836 jexec srv ifconfig lo0 inet 127.0.0.1/8 up
837 jexec srv ifconfig ${srv}b 192.0.2.1/24 up
838 jexec srv ifconfig ${lan}a 203.0.113.1/24 up
840 jexec lan ifconfig lo0 inet 127.0.0.1/8 up
841 jexec lan ifconfig ${lan}b 203.0.113.2/24 up
844 jexec one ifconfig lo0 inet 127.0.0.1/8 up
845 jexec one ifconfig ${one}b 192.0.2.2/24 up
847 jexec two ifconfig lo0 inet 127.0.0.1/8 up
848 jexec two ifconfig ${two}b 192.0.2.3/24 up
851 atf_check -s exit:0 -o ignore jexec one ping -c 1 192.0.2.1
852 atf_check -s exit:0 -o ignore jexec two ping -c 1 192.0.2.1
853 atf_check -s exit:0 -o ignore jexec srv ping -c 1 203.0.113.2
859 dev-type tun
862 cipher AES-256-GCM
872 key $(atf_get_srcdir)/server.key
876 duplicate-cn
877 script-security 2
878 auth-user-pass-verify /usr/bin/true via-env
885 dev-type tun
890 auth-user-pass $(atf_get_srcdir)/user.pass
894 key $(atf_get_srcdir)/client.key
902 dev-type tun
907 auth-user-pass $(atf_get_srcdir)/user.pass
911 key $(atf_get_srcdir)/client2.key
917 # Give the tunnel time to come up
920 atf_check -s exit:0 -o ignore jexec one ping -c 1 198.51.100.1
921 atf_check -s exit:0 -o ignore jexec two ping -c 1 198.51.100.1
923 # Client-to-client communication
924 atf_check -s exit:0 -o ignore jexec one ping -c 1 198.51.100.3
925 atf_check -s exit:0 -o ignore jexec one ping -c 1 198.51.100.2
926 atf_check -s exit:0 -o ignore jexec two ping -c 1 198.51.100.2
927 atf_check -s exit:0 -o ignore jexec two ping -c 1 198.51.100.3
930 atf_check -s exit:0 -o ignore jexec one ping -c 1 203.0.113.1
931 atf_check -s exit:0 -o ignore jexec two ping -c 1 203.0.113.1
933 atf_check -s exit:0 -o ignore jexec srv ping -c 1 -S 203.0.113.1 198.51.100.2
934 atf_check -s exit:0 -o ignore jexec srv ping -c 1 -S 203.0.113.1 198.51.100.3
936 atf_check -s exit:0 -o ignore jexec one ping -c 1 203.0.113.2
937 atf_check -s exit:0 -o ignore jexec two ping -c 1 203.0.113.2
939 atf_check -s exit:0 -o ignore jexec lan ping -c 1 198.51.100.1
940 atf_check -s exit:0 -o ignore jexec lan ping -c 1 198.51.100.2
941 atf_check -s exit:0 -o ignore jexec lan ping -c 1 198.51.100.3
942 atf_check -s exit:2 -o ignore jexec lan ping -c 1 198.51.100.4
959 jexec a ifconfig ${l}a 192.0.2.1/24 up
961 jexec b ifconfig ${l}b 192.0.2.2/24 up
964 atf_check -s exit:0 -o ignore jexec a ping -c 1 192.0.2.2
968 dev-type tun
972 data-ciphers ${algo}
979 key $(atf_get_srcdir)/server.key
983 script-security 2
984 auth-user-pass-verify /usr/bin/true via-env
991 dev-type tun
996 data-ciphers ${algo}
999 auth-user-pass $(atf_get_srcdir)/user.pass
1003 key $(atf_get_srcdir)/client.key
1009 # Give the tunnel time to come up
1012 atf_check -s exit:0 -o ignore jexec b ping -c 3 198.51.100.1
1025 ovpn_algo_body CHACHA20-POLY1305
1036 atf_set descr 'Test DCO with AES-128-GCM'
1043 ovpn_algo_body AES-128-GCM
1063 atf_check -s exit:0 \