Project

General

Profile

IMA Server Log

Startup and Initialization

The command

ipsec start

starts the TNC-enabled IPsec server which in turn loads its IMVs according to the list in /etc/tnc_config

Dec 15 12:17:02 moon charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.2.1, Linux 3.15.1, x86_64)
Dec 15 12:17:02 moon charon: 00[TNC] TNC recommendation policy is 'default'
Dec 15 12:17:02 moon charon: 00[TNC] loading IMVs from '/etc/tnc_config'
Dec 15 12:17:02 moon charon: 00[TNC] added IETF attributes
Dec 15 12:17:02 moon charon: 00[TNC] added ITA-HSR attributes
Dec 15 12:17:02 moon charon: 00[TNC] added TCG attributes
Dec 15 12:17:02 moon charon: 00[PTS] added TCG functional component namespace
Dec 15 12:17:02 moon charon: 00[PTS] added ITA-HSR functional component namespace
Dec 15 12:17:02 moon charon: 00[PTS] added ITA-HSR functional component 'Trusted GRUB Boot Loader'
Dec 15 12:17:02 moon charon: 00[PTS] added ITA-HSR functional component 'Trusted Boot'
Dec 15 12:17:02 moon charon: 00[PTS] added ITA-HSR functional component 'Linux IMA'
Dec 15 12:17:02 moon charon: 00[LIB] libimcv initialized

The Attestation IMV is initialized and determines which PTS measurement algorithms are available

Dec 15 12:17:02 moon charon: 00[IMV] IMV 1 "Attestation" initialized
Dec 15 12:17:02 moon charon: 00[PTS] loading PTS ca certificates from '/etc/pts/cacerts'
Dec 15 12:17:02 moon charon: 00[PTS]   mandatory PTS measurement algorithm HASH_SHA1[sha1] available
Dec 15 12:17:02 moon charon: 00[PTS]   mandatory PTS measurement algorithm HASH_SHA256[openssl] available
Dec 15 12:17:02 moon charon: 00[PTS]   optional  PTS measurement algorithm HASH_SHA384[openssl] available
Dec 15 12:17:02 moon charon: 00[PTS]   optional  PTS DH group MODP_2048[gmp] available
Dec 15 12:17:02 moon charon: 00[PTS]   optional  PTS DH group MODP_1536[gmp] available
Dec 15 12:17:02 moon charon: 00[PTS]   optional  PTS DH group MODP_1024[gmp] available
Dec 15 12:17:02 moon charon: 00[PTS]   mandatory PTS DH group ECP_256[openssl] available
Dec 15 12:17:02 moon charon: 00[PTS]   optional  PTS DH group ECP_384[openssl] available
Dec 15 12:17:02 moon charon: 00[TNC] IMV 1 supports 2 message types: 'TCG/PTS' 0x005597/0x00000001 'IETF/Operating System' 0x000000/0x00000001
Dec 15 12:17:02 moon charon: 00[TNC] IMV 1 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imv-attestation.so'

Next the IKEv2 credentials, all necessary plugins and the IPsec connection definition are loaded

Dec 15 12:17:02 moon charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Dec 15 12:17:02 moon charon: 00[CFG]   loaded ca certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" from '/etc/ipsec.d/cacerts/strongswanCert.pem'
Dec 15 12:17:02 moon charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
Dec 15 12:17:02 moon charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
Dec 15 12:17:02 moon charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
Dec 15 12:17:02 moon charon: 00[CFG] loading crls from '/etc/ipsec.d/crls'
Dec 15 12:17:02 moon charon: 00[CFG] loading secrets from '/etc/ipsec.secrets'
Dec 15 12:17:02 moon charon: 00[CFG]   loaded RSA private key from '/etc/ipsec.d/private/moonKey.pem'
Dec 15 12:17:02 moon charon: 00[CFG]   loaded EAP secret for carol@strongswan.org
Dec 15 12:17:02 moon charon: 00[LIB] loaded plugins: charon sha1 pem pkcs1 pkcs8 gmp random nonce pubkey x509 openssl curl revocation hmac kernel-netlink socket-default eap-identity eap-ttls eap-md5 eap-tnc tnc-tnccs tnccs-20 sqlite tnc-imv stroke
Dec 15 12:17:02 moon charon: 00[JOB] spawning 16 worker threads
Dec 15 12:17:02 moon charon: 06[CFG] received stroke: add connection 'rw-allow'
Dec 15 12:17:02 moon charon: 06[CFG]   loaded certificate "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" from 'moonCert.pem'
Dec 15 12:17:02 moon charon: 06[CFG] added configuration 'rw-allow'
Dec 15 12:17:02 moon charon: 12[CFG] received stroke: add connection 'rw-isolate'
Dec 15 12:17:02 moon charon: 12[CFG]   loaded certificate "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" from 'moonCert.pem'
Dec 15 12:17:02 moon charon: 12[CFG] added configuration 'rw-isolate'

IKEv2 Negotiation

IKEv2 Exchanges

An IKE_SA_INIT request from the VPN client is received and answered by an IKE_SA_INIT response.

Dec 15 12:23:05 moon charon: 14[NET] received packet: from 192.168.0.254[500] to 192.168.0.1[500] (284 bytes)
Dec 15 12:23:05 moon charon: 14[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ]
Dec 15 12:23:05 moon charon: 14[IKE] 192.168.0.254 is initiating an IKE_SA
Dec 15 12:23:05 moon charon: 14[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(MULT_AUTH) ]
Dec 15 12:23:05 moon charon: 14[NET] sending packet: from 192.168.0.1[500] to 192.168.0.254[500] (248 bytes)

An IKE_AUTH request without an AUTH payload is received from the VPN client indicating an EAP-based client authentication. The VPN gateway proposes mutual EAP-TTLS authentication without prior IKEv2 authentication.

Dec 15 12:23:05 moon charon: 05[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (320 bytes)
Dec 15 12:23:05 moon charon: 05[ENC] parsed IKE_AUTH request 1 [ IDi N(INIT_CONTACT) IDr SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) ]
Dec 15 12:23:05 moon charon: 05[CFG] looking for peer configs matching 192.168.0.1[moon.strongswan.org]...192.168.0.254[carol@strongswan.org]
Dec 15 12:23:05 moon charon: 05[CFG] selected peer config 'rw-allow'
Dec 15 12:23:05 moon charon: 05[IKE] initiating EAP_TTLS method (id 0x9E)
Dec 15 12:23:05 moon charon: 05[IKE] peer supports MOBIKE
Dec 15 12:23:05 moon charon: 05[ENC] generating IKE_AUTH response 1 [ IDr EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 05[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (112 bytes)

IKEv2 EAP-TTLS Tunnel

The IKEv2 EAP-TTLS tunnel is set up with certificate-based server authentication using the TLS 1.2 cipher suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

Dec 15 12:23:05 moon charon: 15[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (224 bytes)
Dec 15 12:23:05 moon charon: 15[ENC] parsed IKE_AUTH request 2 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 15[TLS] negotiated TLS 1.2 using suite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Dec 15 12:23:05 moon charon: 15[TLS] sending TLS server certificate 'C=CH, O=Linux strongSwan, CN=moon.strongswan.org'
Dec 15 12:23:05 moon charon: 15[TLS] sending TLS cert request for 'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
Dec 15 12:23:05 moon charon: 15[ENC] generating IKE_AUTH response 2 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 15[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (1104 bytes)
Dec 15 12:23:05 moon charon: 16[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (80 bytes)
Dec 15 12:23:05 moon charon: 16[ENC] parsed IKE_AUTH request 3 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 16[ENC] generating IKE_AUTH response 3 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 16[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (1104 bytes)
Dec 15 12:23:05 moon charon: 04[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (80 bytes)
Dec 15 12:23:05 moon charon: 04[ENC] parsed IKE_AUTH request 4 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 04[ENC] generating IKE_AUTH response 4 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 04[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (336 bytes)

Tunneled EAP Identity

The server requests the EAP identity

Dec 15 12:23:05 moon charon: 03[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (544 bytes)
Dec 15 12:23:05 moon charon: 03[ENC] parsed IKE_AUTH request 5 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 03[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/ID]
Dec 15 12:23:05 moon charon: 03[ENC] generating IKE_AUTH response 5 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 03[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (176 bytes)

Tunneled EAP-MD5 Client Authentication

The server receives the EAP identity from the client and request EAP-MD5 based client authentication

Dec 15 12:23:05 moon charon: 02[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (144 bytes)
Dec 15 12:23:05 moon charon: 02[ENC] parsed IKE_AUTH request 6 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 02[IKE] received tunneled EAP-TTLS AVP [EAP/RES/ID]
Dec 15 12:23:05 moon charon: 02[IKE] received EAP identity 'carol@strongswan.org'
Dec 15 12:23:05 moon charon: 02[IKE] phase2 method EAP_MD5 selected
Dec 15 12:23:05 moon charon: 02[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/MD5]
Dec 15 12:23:05 moon charon: 02[ENC] generating IKE_AUTH response 6 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 02[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (144 bytes)

Tunneled PT-EAP Posture Transport Protocol

The server successfully authenticates the client based on EAP-MD5 and proposes the PT-EAP (RFC771) protocol method

Dec 15 12:23:05 moon charon: 01[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (144 bytes)
Dec 15 12:23:05 moon charon: 01[ENC] parsed IKE_AUTH request 7 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 01[IKE] received tunneled EAP-TTLS AVP [EAP/RES/MD5]
Dec 15 12:23:05 moon charon: 01[IKE] EAP_TTLS phase2 authentication of 'carol@strongswan.org' with EAP_MD5 successful
Dec 15 12:23:05 moon charon: 01[IKE] phase2 method EAP_PT_EAP selected
Dec 15 12:23:05 moon charon: 01[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:05 moon charon: 01[ENC] generating IKE_AUTH response 7 [ EAP/REQ/TTLS ]
Dec 15 12:23:05 moon charon: 01[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (128 bytes)

PT-EAP is established

Dec 15 12:23:05 moon charon: 11[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (400 bytes)
Dec 15 12:23:05 moon charon: 11[ENC] parsed IKE_AUTH request 8 [ EAP/RES/TTLS ]
Dec 15 12:23:05 moon charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]

PB-TNC/IF-TNCCS 2.0 Connection

A new IF-TNCCS connection is instantiated on the TNC server

Dec 15 12:23:05 moon charon: 11[TNC] assigned TNCCS Connection ID 1

An instance of the Attestation IMV is created. Its IF-IMV 1.4 interface has the capability of querying various TNC network and access requestor identity parameters

Dec 15 12:23:05 moon charon: 11[IMV] IMV 1 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh
Dec 15 12:23:05 moon charon: 11[IMV]   over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Dec 15 12:23:05 moon charon: 11[IMV]   user AR identity 'carol@strongswan.org' authenticated by password

Via the IF-IMV interface the IMV receives a 'Handshake' state change from the TNC server

Dec 15 12:23:05 moon charon: 11[IMV] IMV 1 "Attestation" changed state of Connection ID 1 to 'Handshake'

The first PB-TNC Client Data batch is received

Dec 15 12:23:05 moon charon: 11[TNC] received TNCCS batch (269 bytes) for Connection ID 1
Dec 15 12:23:05 moon charon: 11[TNC] PB-TNC state transition from 'Init' to 'Server Working'
Dec 15 12:23:05 moon charon: 11[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:05 moon charon: 11[TNC] processing IETF/PB-Language-Preference message (31 bytes)
Dec 15 12:23:05 moon charon: 11[TNC] processing IETF/PB-PA message (230 bytes)

The language preference is set to English

Dec 15 12:23:05 moon charon: 11[TNC] setting language preference to 'en'

The Attestation IMV receives a 'IETF/Operating System' PA-TNC message containing various IETF standard PA-TNC attributes

Dec 15 12:23:05 moon charon: 11[TNC] handling PB-PA message type 'IETF/Operating System' 0x000000/0x00000001
Dec 15 12:23:05 moon charon: 11[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 1
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC message with ID 0x54936c39
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c
Dec 15 12:23:05 moon charon: 11[TNC] processing PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008

The OS version and the hardware device ID are needed to look up the TNC client in the strongTNC policy database.

Dec 15 12:23:05 moon charon: 11[IMV] operating system name is 'Ubuntu' from vendor Canonical
Dec 15 12:23:05 moon charon: 11[IMV] operating system version is '14.04 x86_64'
Dec 15 12:23:05 moon charon: 11[IMV] device ID is e61276cae552799c71cc84abae619ab14c8b0b8b

The TNC policy manager assigns a session ID and generates a list of client-specific workitems

Dec 15 12:23:05 moon charon: 11[IMV] assigned session ID 3 to Connection ID 1
Dec 15 12:23:06 moon charon: 11[IMV] policy: imv_policy_manager start successful
Dec 15 12:23:06 moon charon: 11[IMV] policy: skipping enforcment 4
Dec 15 12:23:06 moon charon: 11[IMV] policy: skipping enforcment 5
Dec 15 12:23:06 moon charon: 11[IMV] policy: skipping enforcment 6
Dec 15 12:23:06 moon charon: 11[IMV] TPMRA workitem 15
Dec 15 12:23:06 moon charon: 11[IMV] FWDEN workitem 16
Dec 15 12:23:06 moon charon: 11[IMV] FMETA workitem 17
Dec 15 12:23:06 moon charon: 11[IMV] PCKGS workitem 18
Dec 15 12:23:06 moon charon: 11[IMV] TCPOP workitem 19
Dec 15 12:23:06 moon charon: 11[IMV] UDPOP workitem 20

The Attestation IMV signals declares to all IMCs supporting the TCG/PTS message subtype the willingness to accept segmented PA-TNC attributes. This feature will not be needed in our use case since all TPM-based measurement attributes will be small in size.

Dec 15 12:23:06 moon charon: 11[IMV] IMV 1 requests a segmentation contract for PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 11[IMV]   maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes

PTS Capability Discovery

Dec 15 12:23:06 moon charon: 11[TNC] creating PA-TNC message with ID 0x56d5c1ea
Dec 15 12:23:06 moon charon: 11[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021
Dec 15 12:23:06 moon charon: 11[TNC] creating PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000
Dec 15 12:23:06 moon charon: 11[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000
Dec 15 12:23:06 moon charon: 11[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 11[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:06 moon charon: 11[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:06 moon charon: 11[TNC] adding IETF/PB-PA message
Dec 15 12:23:06 moon charon: 11[TNC] sending PB-TNC SDATA batch (92 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:06 moon charon: 11[ENC] generating IKE_AUTH response 8 [ EAP/REQ/TTLS ]
Dec 15 12:23:06 moon charon: 11[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (224 bytes)
Dec 15 12:23:06 moon charon: 13[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (224 bytes)
Dec 15 12:23:06 moon charon: 13[ENC] parsed IKE_AUTH request 9 [ EAP/RES/TTLS ]
Dec 15 12:23:06 moon charon: 13[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:06 moon charon: 13[TNC] received TNCCS batch (92 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Dec 15 12:23:06 moon charon: 13[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:06 moon charon: 13[TNC] processing IETF/PB-PA message (84 bytes)
Dec 15 12:23:06 moon charon: 13[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:06 moon charon: 13[TNC] processing PA-TNC message with ID 0xc43c8c42
Dec 15 12:23:06 moon charon: 13[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022
Dec 15 12:23:06 moon charon: 13[TNC] processing PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000
Dec 15 12:23:06 moon charon: 13[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000

The Attestation IMC is willing to send PA-TNC attribute segments with a size of up to 32kB.

Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 received a segmentation contract response from IMC 2 for PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 13[IMV]   maximum attribute size of 100000000 bytes with maximum segment size of 32678 bytes

The Attestation IMC supports the Verification (V), DH Nonce Negotiation (D) and Trusted Platform Evidence (T) PTS protocol capabilities.

Dec 15 12:23:06 moon charon: 13[PTS] supported PTS protocol capabilities: .VDT.
Dec 15 12:23:06 moon charon: 13[PTS] selected PTS measurement algorithm is HASH_SHA1

The Attestation IMV is able to handle workitems 15 and 17

Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 handles TPMRA workitem 15
Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 handles FMETA workitem 17
Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 requests metadata for file '/etc/tnc_config'
Dec 15 12:23:06 moon charon: 13[IMV] IMV 1 handled FMETA workitem 17: allow - file metadata requested

DH Nonce Parameters

The PA-TNC message contains a 'Request File Metadata' and a 'DH Nonce Parameters Request' PA-TNC attribute from the TCG namespace:

Dec 15 12:23:06 moon charon: 13[TNC] creating PA-TNC message with ID 0xcac35af3
Dec 15 12:23:06 moon charon: 13[TNC] creating PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000
Dec 15 12:23:06 moon charon: 13[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000
Dec 15 12:23:06 moon charon: 13[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 13[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:06 moon charon: 13[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:06 moon charon: 13[TNC] adding IETF/PB-PA message
Dec 15 12:23:06 moon charon: 13[TNC] sending PB-TNC SDATA batch (87 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 13[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:06 moon charon: 13[ENC] generating IKE_AUTH response 9 [ EAP/REQ/TTLS ]
Dec 15 12:23:06 moon charon: 13[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (224 bytes)

Dec 15 12:23:06 moon charon: 06[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (352 bytes)
Dec 15 12:23:06 moon charon: 06[ENC] parsed IKE_AUTH request 10 [ EAP/RES/TTLS ]
Dec 15 12:23:06 moon charon: 06[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:06 moon charon: 06[TNC] received TNCCS batch (226 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Dec 15 12:23:06 moon charon: 06[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:06 moon charon: 06[TNC] processing IETF/PB-PA message (218 bytes)
Dec 15 12:23:06 moon charon: 06[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 06[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:06 moon charon: 06[TNC] processing PA-TNC message with ID 0x6e2bb28d
Dec 15 12:23:06 moon charon: 06[TNC] processing PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000
Dec 15 12:23:06 moon charon: 06[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000

Metadata for the file '/etc/tnc_config' is received

Dec 15 12:23:06 moon charon: 06[IMV] metadata request returned 1 file:
Dec 15 12:23:06 moon charon: 06[IMV]  'tnc_config' (168 bytes) owner 0, group 0, type Regular
Dec 15 12:23:06 moon charon: 06[IMV]     created Dec 15 10:42:36 2014, modified Dec 15 10:42:36 2014, accessed Dec 15 12:12:19 2014

The Attestation IMC selected a DH hash algorithm and a DH group and sends its public DH factor and nonce

Dec 15 12:23:06 moon charon: 06[PTS] selected DH hash algorithm is HASH_SHA1
Dec 15 12:23:06 moon charon: 06[PTS] selected PTS DH group is ECP_256
Dec 15 12:23:06 moon charon: 06[PTS] nonce length is 20
Dec 15 12:23:06 moon charon: 11[PTS] initiator nonce: => 20 bytes @ 0x7ce4f0
Dec 15 12:23:06 moon charon: 11[PTS]    0: 60 8E 64 FD ED C3 DB 9E 90 77 B6 C6 B8 33 C6 DC  `.d......w...3..
Dec 15 12:23:06 moon charon: 11[PTS]   16: 77 84 65 95                                      w.e.
Dec 15 12:23:06 moon charon: 11[PTS] responder nonce: => 20 bytes @ 0x7c93c0
Dec 15 12:23:06 moon charon: 11[PTS]    0: ED 11 24 61 DD 12 EF B5 A1 E0 A5 1D 42 63 16 36  ..$a........Bc.6
Dec 15 12:23:06 moon charon: 11[PTS]   16: C3 2C 35 3F                                      .,5?
Dec 15 12:23:06 moon charon: 11[PTS] shared DH secret: => 32 bytes @ 0x7d70c0
Dec 15 12:23:06 moon charon: 11[PTS]    0: 4B 10 3D EE 57 C5 8C 69 EA EC A1 2A EB 90 07 DD  K.=.W..i...*....
Dec 15 12:23:06 moon charon: 11[PTS]   16: D0 6F 57 AA 1C 78 21 F1 51 37 FC 64 E4 81 53 5C  .oW..x!.Q7.d..S\
Dec 15 12:23:06 moon charon: 11[PTS] secret assessment value: => 20 bytes @ 0x7cd880
Dec 15 12:23:06 moon charon: 11[PTS]    0: 7F EA FB FC 53 58 3C BE FF 71 15 11 97 C0 6E 2B  ....SX<..q....n+
Dec 15 12:23:06 moon charon: 11[PTS]   16: E4 30 CB 30                                      .0.0

DH Nonce Finish, TPM Version Informaton and AIK Public Key

Dec 15 12:23:06 moon charon: 06[TNC] creating PA-TNC message with ID 0xed635120
Dec 15 12:23:06 moon charon: 06[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000
Dec 15 12:23:06 moon charon: 06[TNC] creating PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000
Dec 15 12:23:06 moon charon: 06[TNC] creating PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000
Dec 15 12:23:06 moon charon: 06[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 06[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:06 moon charon: 06[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:06 moon charon: 06[TNC] adding IETF/PB-PA message
Dec 15 12:23:06 moon charon: 06[TNC] sending PB-TNC SDATA batch (172 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 06[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:06 moon charon: 06[ENC] generating IKE_AUTH response 10 [ EAP/REQ/TTLS ]
Dec 15 12:23:06 moon charon: 06[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (304 bytes)
Dec 15 12:23:06 moon charon: 12[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (512 bytes)
Dec 15 12:23:06 moon charon: 12[ENC] parsed IKE_AUTH request 11 [ EAP/RES/TTLS ]
Dec 15 12:23:06 moon charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:06 moon charon: 12[TNC] received TNCCS batch (379 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 12[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Dec 15 12:23:06 moon charon: 12[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:06 moon charon: 12[TNC] processing IETF/PB-PA message (371 bytes)
Dec 15 12:23:06 moon charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 12[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:06 moon charon: 12[TNC] processing PA-TNC message with ID 0x58674702
Dec 15 12:23:06 moon charon: 12[TNC] processing PA-TNC attribute type 'TCG/TPM Version Information' 0x005597/0x09000000
Dec 15 12:23:06 moon charon: 12[TNC] processing PA-TNC attribute type 'TCG/Attestation Identity Key' 0x005597/0x0e000000
Dec 15 12:23:06 moon charon: 12[PTS] TPM Version Info: Chip Version: 1.2.3.19, Spec Level: 2, Errata Rev: 2, Vendor ID: IFX

The AIK keyid is looked up in the TNC database where it is marked as trusted

Dec 15 12:23:06 moon charon: 12[IMV] verifying AIK with keyid e6:12:76:ca:e5:52:79:9c:71:cc:84:ab:ae:61:9a:b1:4c:8b:0b:8b
Dec 15 12:23:06 moon charon: 12[IMV] AIK public key is trusted

Functional Component Evidence

The TMPRA workitem comprises two differrent functional component evidence measurements (pre-boot BIOS measurements and IMA file, library and kernel module measurements)

Dec 15 12:23:06 moon charon: 12[IMV] evidence request by
Dec 15 12:23:06 moon charon: 12[PTS]   ITA-HSR functional component 'Linux IMA' [K.] 'Trusted Platform'
Dec 15 12:23:06 moon charon: 12[PTS]   ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'

Dec 15 12:23:06 moon charon: 12[TNC] creating PA-TNC message with ID 0xbc64fb3a
Dec 15 12:23:06 moon charon: 12[TNC] creating PA-TNC attribute type 'TCG/Request Functional Component Evidence' 0x005597/0x00100000
Dec 15 12:23:06 moon charon: 12[TNC] creating PA-TNC attribute type 'TCG/Generate Attestation Evidence' 0x005597/0x00200000
Dec 15 12:23:06 moon charon: 12[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:06 moon charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:06 moon charon: 12[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:06 moon charon: 12[TNC] adding IETF/PB-PA message
Dec 15 12:23:06 moon charon: 12[TNC] sending PB-TNC SDATA batch (92 bytes) for Connection ID 1
Dec 15 12:23:06 moon charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:06 moon charon: 12[ENC] generating IKE_AUTH response 11 [ EAP/REQ/TTLS ]
Dec 15 12:23:06 moon charon: 12[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (224 bytes)

First PB-TNC Client Data batch with evidence attributes received

Dec 15 12:23:08 moon charon: 14[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:08 moon charon: 14[ENC] parsed IKE_AUTH request 12 [ EAP/RES/TTLS ]
Dec 15 12:23:08 moon charon: 14[ENC] generating IKE_AUTH response 12 [ EAP/REQ/TTLS ]
Dec 15 12:23:08 moon charon: 14[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:08 moon charon: 05[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:08 moon charon: 05[ENC] parsed IKE_AUTH request 13 [ EAP/RES/TTLS ]
Dec 15 12:23:08 moon charon: 05[ENC] generating IKE_AUTH response 13 [ EAP/REQ/TTLS ]
Dec 15 12:23:08 moon charon: 05[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
                                     ... 30 more IKE_AUTH request/response pairs
Dec 15 12:23:08 moon charon: 11[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (272 bytes)
Dec 15 12:23:08 moon charon: 11[ENC] parsed IKE_AUTH request 44 [ EAP/RES/TTLS ]
Dec 15 12:23:08 moon charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:08 moon charon: 11[TNC] received TNCCS batch (32692 bytes) for Connection ID 1
Dec 15 12:23:08 moon charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'

Dec 15 12:23:08 moon charon: 11[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:08 moon charon: 11[TNC] processing IETF/PB-PA message (32684 bytes)
Dec 15 12:23:08 moon charon: 11[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:08 moon charon: 11[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC message with ID 0xf9b4669d
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Trusted Platform'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:10 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR  0 extended with: c4:2f:ed:ad:26:82:00:cb:1d:15:f9:78:41:c3:44:e7:9d:ae:33:20
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Trusted Platform'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:10 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR  0 extended with: 7a:f3:b9:60:7b:00:71:16:15:a2:3d:09:6a:70:2e:79:10:58:b5:6d
                                     ... 20 more PA-TNC attributes
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Trusted Platform'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:10 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 11 extended with: 90:69:ca:78:e7:45:0a:28:51:73:43:1b:3e:52:c5:c2:52:99:e4:73
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: 80:6c:dd:d3:e0:b4:f0:88:ad:36:e7:2d:8a:6d:b0:54:9b:74:78:eb
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:boot_aggregate'
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: ef:41:1b:ae:16:4f:d6:24:ea:94:fc:9e:f8:2f:89:2c:82:d7:8d:cd
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/init'
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: bd:32:e4:52:e1:4f:84:eb:22:d6:ac:9e:9e:1c:61:ee:ac:3c:d7:a4
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/bin/sh'
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: ee:fd:4a:6b:eb:d6:b0:01:ff:58:7c:23:35:a3:dd:03:53:5d:5a:17
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/lib64/ld-linux-x86-64.so.2'
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: e7:ff:45:66:4c:37:6e:50:ab:f4:24:8b:c7:c3:f3:b1:14:6b:3f:79
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/etc/ld.so.cache'
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: 24:7d:3e:b7:77:32:b6:ea:d5:79:21:7d:05:41:cc:8c:58:19:b8:a2
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/lib/x86_64-linux-gnu/libc.so.6'
                                      ... 264 more PA-TNC attributes
Dec 15 12:23:08 moon charon: 11[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:08 moon charon: 11[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:08 moon charon: 11[PTS] measurement time: Dec 15 11:45:11 2014
Dec 15 12:23:08 moon charon: 11[PTS] PCR 10 extended with: 36:73:18:74:9e:ed:af:ca:ed:8f:f8:44:2b:2e:52:30:cd:08:5a:81
Dec 15 12:23:08 moon charon: 11[PTS] 'sha1:/usr/share/language-tools/language-validate'
Dec 15 12:23:08 moon charon: 11[PTS] checking 23 BIOS evidence measurements
Dec 15 12:23:08 moon charon: 11[PTS] boot aggregate value is correct
Dec 15 12:23:08 moon charon: 11[PTS] checking boot aggregate evidence measurement
Dec 15 12:23:09 moon charon: 11[PTS] ef:41:1b:ae:16:4f:d6:24:ea:94:fc:9e:f8:2f:89:2c:82:d7:8d:cd for '/init' is ok
Dec 15 12:23:09 moon charon: 11[PTS] bd:32:e4:52:e1:4f:84:eb:22:d6:ac:9e:9e:1c:61:ee:ac:3c:d7:a4 for '/bin/sh' not found
Dec 15 12:23:09 moon charon: 11[PTS] ee:fd:4a:6b:eb:d6:b0:01:ff:58:7c:23:35:a3:dd:03:53:5d:5a:17 for '/lib64/ld-linux-x86-64.so.2' is ok
Dec 15 12:23:09 moon charon: 11[PTS] e7:ff:45:66:4c:37:6e:50:ab:f4:24:8b:c7:c3:f3:b1:14:6b:3f:79 for '/etc/ld.so.cache' not found
Dec 15 12:23:09 moon charon: 11[PTS] 24:7d:3e:b7:77:32:b6:ea:d5:79:21:7d:05:41:cc:8c:58:19:b8:a2 for '/lib/x86_64-linux-gnu/libc.so.6' is ok
                                     ... 264 more file measurements
Dec 15 12:23:09 moon charon: 11[PTS] 36:73:18:74:9e:ed:af:ca:ed:8f:f8:44:2b:2e:52:30:cd:08:5a:81 for '/usr/share/language-tools/language-validate' is ok
Dec 15 12:23:10 moon charon: 11[TNC] no recommendation available yet, sending empty PB-TNC SDATA batch
Dec 15 12:23:10 moon charon: 11[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:10 moon charon: 11[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:10 moon charon: 11[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 1
Dec 15 12:23:10 moon charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:10 moon charon: 11[ENC] generating IKE_AUTH response 44 [ EAP/REQ/TTLS ]
Dec 15 12:23:10 moon charon: 11[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (144 bytes)

Second PB-TNC Client Data batch with evidence attributes received

Dec 15 12:23:10 moon charon: 13[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:10 moon charon: 13[ENC] parsed IKE_AUTH request 45 [ EAP/RES/TTLS ]
Dec 15 12:23:10 moon charon: 13[ENC] generating IKE_AUTH response 45 [ EAP/REQ/TTLS ]
Dec 15 12:23:10 moon charon: 13[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:10 moon charon: 06[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:10 moon charon: 06[ENC] parsed IKE_AUTH request 46 [ EAP/RES/TTLS ]
Dec 15 12:23:10 moon charon: 06[ENC] generating IKE_AUTH response 46 [ EAP/REQ/TTLS ]
Dec 15 12:23:10 moon charon: 06[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
                                     ... 30 more IKE_AUTH request/response pairs
Dec 15 12:23:10 moon charon: 03[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (240 bytes)
Dec 15 12:23:10 moon charon: 03[ENC] parsed IKE_AUTH request 77 [ EAP/RES/TTLS ]
Dec 15 12:23:10 moon charon: 03[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:10 moon charon: 03[TNC] received TNCCS batch (32658 bytes) for Connection ID 1
Dec 15 12:23:10 moon charon: 03[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'

Dec 15 12:23:10 moon charon: 03[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:10 moon charon: 03[TNC] processing IETF/PB-PA message (32650 bytes)
Dec 15 12:23:10 moon charon: 03[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:10 moon charon: 03[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:10 moon charon: 03[TNC] processing PA-TNC message with ID 0x2d96885b
Dec 15 12:23:10 moon charon: 03[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:10 moon charon: 03[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
                                     ... 275 more PA-TNC attributes
Dec 15 12:23:10 moon charon: 03[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:10 moon charon: 03[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:10 moon charon: 03[PTS] 80:4f:17:32:3d:79:d6:69:66:90:4a:8b:f6:12:1d:40:2a:d6:5d:50 for '/etc/rc2.d/S20kerneloops' not found
Dec 15 12:23:10 moon charon: 03[PTS] 8e:58:eb:cf:f0:27:a6:c0:6c:0b:c8:19:89:b5:3f:36:88:99:96:2e for '/usr/lib/gdm/gdm-simple-slave' not found
Dec 15 12:23:11 moon charon: 03[PTS] c9:33:84:9b:e7:af:7e:90:bd:3c:25:7c:5a:c6:a5:33:a0:38:d3:b6 for '/etc/rc2.d/S20tor' not found
Dec 15 12:23:11 moon charon: 03[PTS] e4:bf:fc:b3:03:cd:f5:f8:7b:d0:0c:81:7b:29:8d:13:d0:2a:b9:a1 for '/etc/rc2.d/S20trousers' not found
Dec 15 12:23:11 moon charon: 03[PTS] 89:dd:a7:c8:1b:56:86:19:08:ec:dc:2a:4f:90:cd:79:07:4f:89:13 for '/etc/NetworkManager/dispatcher.d/01ifupdown' not found
Dec 15 12:23:11 moon charon: 03[PTS] fa:ab:81:6b:e4:c9:05:d0:ce:3b:89:cf:89:62:cc:a0:fe:05:70:86 for '/etc/NetworkManager/dispatcher.d/02-seclab' not found
Dec 15 12:23:11 moon charon: 03[PTS] 15:7b:95:da:b0:24:9b:eb:5a:f2:da:c2:d4:73:f1:c4:c7:1f:91:0d for '/etc/rc2.d/S50rsync' not found
Dec 15 12:23:11 moon charon: 03[PTS] 7d:47:f3:59:cb:52:bc:00:d1:62:63:d5:5a:c3:90:9f:a7:1e:6b:30 for '/etc/rc2.d/S50saned' not found
Dec 15 12:23:11 moon charon: 03[PTS] f7:fe:94:0f:08:c5:ab:e7:21:5f:a3:fb:7e:0e:6a:24:21:d2:1e:65 for '/etc/rc2.d/S70dns-clean' not found
Dec 15 12:23:11 moon charon: 03[PTS] 4c:25:0c:f0:85:bb:38:07:d8:47:a9:e1:3c:2f:92:d1:14:a9:b7:17 for '/etc/rc2.d/S75sudo' not found
Dec 15 12:23:11 moon charon: 03[PTS] 2a:63:26:d8:48:c1:1c:3e:b5:c0:65:98:ad:0e:a3:d8:c6:e3:b2:ff for '/etc/rc2.d/S91apache2' not found
Dec 15 12:23:11 moon charon: 03[PTS] ea:c5:64:8b:81:a8:77:89:b4:e2:31:92:7d:4e:7c:e7:0c:fc:d3:57 for '/etc/gdm/Init/Default' not found
Dec 15 12:23:11 moon charon: 03[PTS] ac:83:b3:8c:7a:2c:6d:47:09:26:c4:37:f8:59:2a:5c:0e:26:ce:31 for '/usr/lib/gdm/gdm-session-worker' not found
                                     ... 264 ok measurements
Dec 15 12:23:11 moon charon: 03[TNC] no recommendation available yet, sending empty PB-TNC SDATA batch
Dec 15 12:23:11 moon charon: 03[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:11 moon charon: 03[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:11 moon charon: 03[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 1
Dec 15 12:23:11 moon charon: 03[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:11 moon charon: 03[ENC] generating IKE_AUTH response 77 [ EAP/REQ/TTLS ]
Dec 15 12:23:11 moon charon: 03[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (144 bytes)

Third PB-TNC Client Data batch with evidence attributes received

Dec 15 12:23:11 moon charon: 02[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:11 moon charon: 02[ENC] parsed IKE_AUTH request 78 [ EAP/RES/TTLS ]
Dec 15 12:23:11 moon charon: 02[ENC] generating IKE_AUTH response 78 [ EAP/REQ/TTLS ]
Dec 15 12:23:11 moon charon: 02[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:11 moon charon: 01[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:11 moon charon: 01[ENC] parsed IKE_AUTH request 79 [ EAP/RES/TTLS ]
Dec 15 12:23:11 moon charon: 01[ENC] generating IKE_AUTH response 79 [ EAP/REQ/TTLS ]
Dec 15 12:23:11 moon charon: 01[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
                                     ... 30 more IKE_AUTH request/response pairs
Dec 15 12:23:11 moon charon: 15[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (256 bytes)
Dec 15 12:23:11 moon charon: 15[ENC] parsed IKE_AUTH request 110 [ EAP/RES/TTLS ]
Dec 15 12:23:11 moon charon: 15[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:11 moon charon: 15[TNC] received TNCCS batch (32675 bytes) for Connection ID 1
Dec 15 12:23:11 moon charon: 15[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'

Dec 15 12:23:11 moon charon: 15[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:11 moon charon: 15[TNC] processing IETF/PB-PA message (32667 bytes)
Dec 15 12:23:11 moon charon: 15[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:11 moon charon: 15[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:11 moon charon: 15[TNC] processing PA-TNC message with ID 0x253850ae
Dec 15 12:23:11 moon charon: 15[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:11 moon charon: 15[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
                                     ... 270 more PA-TNC attributes
Dec 15 12:23:11 moon charon: 15[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:11 moon charon: 15[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:12 moon charon: 15[PTS] a2:37:0b:43:2a:c2:b5:c3:5b:3e:0d:74:3d:aa:49:8f:6e:d1:5c:9c for '/etc/rc2.d/S99grub-common' not found
Dec 15 12:23:12 moon charon: 15[PTS] c2:75:f7:92:72:05:04:e6:2d:ba:38:b6:95:38:2c:52:3a:bc:7c:d5 for '/etc/rc2.d/S99ondemand' not found
Dec 15 12:23:12 moon charon: 15[PTS] a7:5b:03:c6:27:6b:66:da:a8:09:86:a4:8e:02:0a:72:20:75:1b:55 for '/etc/rc2.d/S99rc.local' not found
Dec 15 12:23:12 moon charon: 15[PTS] fe:10:cc:88:b8:ab:f7:b2:e8:05:47:71:ad:29:cf:81:96:06:07:b6 for '/usr/lib/gnome-session/gnome-session-check-accelerated' not found
Dec 15 12:23:12 moon charon: 15[PTS] 44:34:39:87:ea:ac:9b:d7:f9:b8:c3:de:41:9b:b4:50:ed:91:09:91 for '/usr/lib/gnome-session/gnome-session-check-accelerated-helper' not found
Dec 15 12:23:12 moon charon: 15[PTS] 14:d8:a2:6c:61:80:35:42:47:21:60:7e:f0:97:3f:e4:f2:52:f9:e6 for '/usr/lib/gnome-settings-daemon/gnome-settings-daemon-localeexec' not found
Dec 15 12:23:12 moon charon: 15[PTS] a5:0f:0e:3f:8b:bc:3e:c8:2c:dd:f2:30:fd:2c:3e:91:e4:dc:86:b5 for '/usr/lib/gnome-settings-daemon/gnome-settings-daemon' not found
Dec 15 12:23:12 moon charon: 15[PTS] 7a:19:1b:db:4e:1f:b8:81:d4:96:14:4b:3a:fb:a8:42:d0:2a:a4:e0 for '/usr/lib/upower/upowerd' not found
Dec 15 12:23:12 moon charon: 15[PTS] 9a:3c:8c:8e:a8:99:26:4b:21:08:27:f0:bf:9e:c2:5f:3b:c9:1b:fa for '/usr/lib/colord/colord' not found
Dec 15 12:23:13 moon charon: 15[PTS] 63:f6:c2:9b:4c:1f:21:dc:5a:33:b0:51:98:2a:be:7c:0c:51:be:fa for '/usr/lib/rtkit/rtkit-daemon' not found
Dec 15 12:23:13 moon charon: 15[PTS] 35:78:2f:47:80:e4:17:30:13:3a:dc:b3:f5:e1:a6:f8:09:75:57:58 for '/usr/lib/gnome-bluetooth/libgnome-bluetooth-applet.so.0.0.0' not found
Dec 15 12:23:13 moon charon: 15[PTS] cb:b1:c0:62:c5:fb:9c:f4:7d:f6:d6:62:80:a9:df:75:48:24:f7:6a for '/usr/lib/pulseaudio/pulse/gconf-helper' not found
Dec 15 12:23:13 moon charon: 15[PTS] dc:ed:30:30:cf:76:1c:16:e6:78:4d:95:c6:bc:94:95:56:89:fb:77 for '/usr/lib/x86_64-linux-gnu/gconf/gconfd-2' not found
                                    ... 259 ok measurements
Dec 15 12:23:13 moon charon: 15[TNC] no recommendation available yet, sending empty PB-TNC SDATA batch
Dec 15 12:23:13 moon charon: 15[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:13 moon charon: 15[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:13 moon charon: 15[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 1
Dec 15 12:23:13 moon charon: 15[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:13 moon charon: 15[ENC] generating IKE_AUTH response 110 [ EAP/REQ/TTLS ]
Dec 15 12:23:13 moon charon: 15[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (144 bytes)

Fourth PB-TNC Client Data batch with evidence attributes received

Dec 15 12:23:13 moon charon: 16[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:13 moon charon: 16[ENC] parsed IKE_AUTH request 111 [ EAP/RES/TTLS ]
Dec 15 12:23:13 moon charon: 16[ENC] generating IKE_AUTH response 111 [ EAP/REQ/TTLS ]
Dec 15 12:23:13 moon charon: 16[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:13 moon charon: 04[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:13 moon charon: 04[ENC] parsed IKE_AUTH request 112 [ EAP/RES/TTLS ]
Dec 15 12:23:13 moon charon: 04[ENC] generating IKE_AUTH response 112 [ EAP/REQ/TTLS ]
Dec 15 12:23:13 moon charon: 04[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
                                     ... 30 more IKE_AUTH request/response pairs
Dec 15 12:23:13 moon charon: 12[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (272 bytes)
Dec 15 12:23:13 moon charon: 12[ENC] parsed IKE_AUTH request 143 [ EAP/RES/TTLS ]
Dec 15 12:23:13 moon charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:13 moon charon: 12[TNC] received TNCCS batch (32683 bytes) for Connection ID 1
Dec 15 12:23:13 moon charon: 12[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'

Dec 15 12:23:13 moon charon: 12[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:13 moon charon: 12[TNC] processing IETF/PB-PA message (32675 bytes)
Dec 15 12:23:13 moon charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:13 moon charon: 12[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:13 moon charon: 12[TNC] processing PA-TNC message with ID 0x211fab41
Dec 15 12:23:13 moon charon: 12[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:13 moon charon: 12[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
                                      ... 262 more PA-TNC attributes
Dec 15 12:23:13 moon charon: 12[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:13 moon charon: 12[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:13 moon charon: 12[PTS] 46:fe:82:f6:92:66:3a:3f:03:9f:8e:60:7e:3a:e0:2b:24:f8:dd:15 for '/usr/lib/x86_64-linux-gnu/mesa-egl/libEGL.so.1.0.0' not found
Dec 15 12:23:13 moon charon: 12[PTS] d3:8d:b4:d7:e5:5d:3c:98:44:38:18:0a:cf:52:04:37:cb:c5:24:e5 for '/usr/lib/ibus/ibus-dconf' not found
Dec 15 12:23:13 moon charon: 12[PTS] 29:67:a0:80:b3:2d:f4:37:2a:80:d9:b8:bf:dc:a8:23:6c:4c:34:af for '/usr/lib/ibus/ibus-x11' not found
Dec 15 12:23:13 moon charon: 12[PTS] 09:6f:27:b3:30:cf:00:f9:b6:08:6c:f5:a7:24:54:51:9e:f8:ee:a9 for '/usr/lib/telepathy/mission-control-5' not found
Dec 15 12:23:13 moon charon: 12[PTS] 2d:cb:55:4f:fb:74:0e:d0:83:d6:31:35:10:6b:23:4d:6f:b3:dc:bd for '/usr/lib/ibus/ibus-engine-simple' not found
Dec 15 12:23:13 moon charon: 12[PTS] 6e:b4:85:db:49:3d:b0:08:60:ee:bb:94:75:d0:e3:c5:8b:49:87:9f for '/etc/gdm/Xsession' not found
Dec 15 12:23:13 moon charon: 12[PTS] d0:90:c6:27:98:3b:ed:fa:c5:b9:f0:de:6d:9a:1d:f8:67:87:b6:16 for '/etc/gdm/PreSession/Default' not found
Dec 15 12:23:13 moon charon: 12[PTS] 5b:c6:51:f8:32:a5:a4:10:a2:36:52:29:2b:e3:16:56:76:d4:fa:a2 for '/usr/lib/x86_64-linux-gnu/hud/window-stack-bridge' not found
Dec 15 12:23:13 moon charon: 12[PTS] 07:0c:c2:05:0b:65:78:17:01:66:a8:35:e6:bb:f2:fb:ed:a3:90:02 for '/usr/lib/unity-settings-daemon/unity-settings-daemon' not found
Dec 15 12:23:13 moon charon: 12[PTS] 23:f0:1a:59:5b:e5:eb:b2:27:4f:46:6e:bb:62:2e:cb:30:c6:5d:5d for '/usr/lib/ibus/ibus-ui-gtk3' not found
Dec 15 12:23:13 moon charon: 12[PTS] 39:7e:d0:ab:c1:fd:3e:a7:1a:01:2a:42:bf:67:c5:ce:93:8c:00:93 for '/usr/lib/x86_64-linux-gnu/bamf/bamfdaemon' not found
Dec 15 12:23:14 moon charon: 12[PTS] 15:1a:f5:3e:cb:e3:1c:14:0e:fd:c9:f8:b9:5f:ea:70:3e:c9:27:e3 for '/usr/lib/policykit-1-gnome/polkit-gnome-authentication-agent-1' not found
Dec 15 12:23:14 moon charon: 12[PTS] 32:c0:fd:93:28:74:8b:ef:25:ed:28:df:f1:81:c2:89:d3:ba:15:06 for '/usr/lib/unity-settings-daemon/unity-fallback-mount-helper' not found
Dec 15 12:23:14 moon charon: 12[PTS] ed:ac:cc:af:f2:21:31:24:3f:d8:1f:9d:54:f0:16:95:09:4e:83:d9 for '/usr/lib/udisks2/udisksd' not found
Dec 15 12:23:14 moon charon: 12[PTS] 4a:eb:81:62:25:a0:52:af:4a:0a:b3:52:83:13:4e:5b:60:07:e1:4a for '/usr/lib/x86_64-linux-gnu/libunity/libunity-protocol-private.so.0.0.0' not found
Dec 15 12:23:14 moon charon: 12[PTS] 30:ba:70:48:c2:9e:55:85:a7:8c:f3:7c:91:15:37:2a:2f:d0:20:0b for '/usr/lib/evolution/evolution-source-registry' not found
Dec 15 12:23:14 moon charon: 12[PTS] 09:48:c4:25:04:6d:a4:2f:ab:f9:fe:d7:84:47:06:f9:18:f7:2e:9d for '/usr/lib/gnome-online-accounts/goa-daemon' not found
Dec 15 12:23:14 moon charon: 12[PTS] 75:4d:bd:63:87:75:73:45:bb:c5:6d:ea:18:05:45:c1:b0:b6:0a:07 for '/usr/lib/evolution/evolution-calendar-factory' not found
                                     .. 246 ok measurements
Dec 15 12:23:14 moon charon: 12[TNC] no recommendation available yet, sending empty PB-TNC SDATA batch
Dec 15 12:23:14 moon charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Dec 15 12:23:14 moon charon: 12[TNC] creating PB-TNC SDATA batch
Dec 15 12:23:14 moon charon: 12[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 1
Dec 15 12:23:14 moon charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:14 moon charon: 12[ENC] generating IKE_AUTH response 143 [ EAP/REQ/TTLS ]
Dec 15 12:23:14 moon charon: 12[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (144 bytes)

Fifth and final PB-TNC Client Data batch with evidence attributes received

Dec 15 12:23:14 moon charon: 14[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:14 moon charon: 14[ENC] parsed IKE_AUTH request 144 [ EAP/RES/TTLS ]
Dec 15 12:23:14 moon charon: 14[ENC] generating IKE_AUTH response 144 [ EAP/REQ/TTLS ]
Dec 15 12:23:14 moon charon: 14[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:14 moon charon: 05[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (1104 bytes)
Dec 15 12:23:14 moon charon: 05[ENC] parsed IKE_AUTH request 145 [ EAP/RES/TTLS ]
Dec 15 12:23:14 moon charon: 05[ENC] generating IKE_AUTH response 145 [ EAP/REQ/TTLS ]
Dec 15 12:23:14 moon charon: 05[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
                                      ... 22 more IKE_AUTH request/response pairs
Dec 15 12:23:14 moon charon: 14[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (512 bytes)
Dec 15 12:23:14 moon charon: 14[ENC] parsed IKE_AUTH request 168 [ EAP/RES/TTLS ]
Dec 15 12:23:14 moon charon: 14[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:14 moon charon: 14[TNC] received TNCCS batch (24776 bytes) for Connection ID 1
Dec 15 12:23:14 moon charon: 14[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'

Dec 15 12:23:14 moon charon: 14[TNC] processing PB-TNC CDATA batch
Dec 15 12:23:14 moon charon: 14[TNC] processing IETF/PB-PA message (24768 bytes)
Dec 15 12:23:14 moon charon: 14[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:14 moon charon: 14[IMV] IMV 1 "Attestation" received message for Connection ID 1 from IMC 2 to IMV 1
Dec 15 12:23:14 moon charon: 14[TNC] processing PA-TNC message with ID 0x7fa041ec
Dec 15 12:23:14 moon charon: 14[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:14 moon charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
                                     ... 201 more PA-TNC attributes
Dec 15 12:23:14 moon charon: 14[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000
Dec 15 12:23:14 moon charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Dec 15 12:23:14 moon charon: 14[TNC] processing PA-TNC attribute type 'TCG/Simple Evidence Final' 0x005597/0x00400000
Dec 15 12:23:15 moon charon: 14[PTS] f2:d8:2f:34:3e:ba:ce:ed:60:5b:63:e7:ae:ca:51:d1:18:81:2e:45 for '/usr/lib/gnome-user-share/gnome-user-share' not found
Dec 15 12:23:15 moon charon: 14[PTS] bf:2f:ae:7c:43:97:45:a2:58:45:08:58:c3:5d:85:c0:d4:6f:94:53 for '/usr/lib/firefox/plugin-container' not found
Dec 15 12:23:15 moon charon: 14[PTS] 0d:a9:96:62:ee:36:c8:9f:21:9e:7d:8a:ed:c6:29:41:80:6f:12:21 for '/usr/lib/libvte-2.90-9/gnome-pty-helper' not found
Dec 15 12:23:15 moon charon: 14[PTS] 51:63:39:d1:9c:73:90:44:4d:46:ea:d9:f3:4d:a4:20:e3:df:98:c2 for '/usr/lib/gcc/x86_64-linux-gnu/4.8/cc1' not found
Dec 15 12:23:15 moon charon: 14[PTS] 57:04:58:cd:ce:ce:ae:42:b1:0f:d1:b7:81:cd:a1:fa:21:60:c4:df for '/usr/lib/gcc/x86_64-linux-gnu/4.8/collect2' not found
Dec 15 12:23:15 moon charon: 14[PTS] c3:38:9f:31:c7:5c:90:42:53:41:1a:2d:0f:e4:2a:7c:2c:f8:a0:6c for '/usr/share/apport/apport-checkreports' not found
Dec 15 12:23:15 moon charon: 14[PTS] 0c:7c:7c:ab:9b:e6:21:cd:24:16:a2:89:91:7b:7d:d5:05:5c:ec:e3 for '/usr/lib/x86_64-linux-gnu/deja-dup/deja-dup-monitor' not found
Dec 15 12:23:15 moon charon: 14[PTS] 07:71:e0:60:66:de:22:da:9a:3b:3c:ab:39:93:0d:ff:b6:24:d0:38 for '/usr/local/bin/pki' not found
Dec 15 12:23:15 moon charon: 14[PTS] 31:85:b5:6e:04:15:1c:69:af:23:6a:b9:57:27:47:7f:b4:64:dd:60 for '/usr/local/lib/ipsec/libstrongswan.so.0.0.0' not found
                             ... 154 more file measurements

TPM Quote Signature

Dec 15 12:23:15 moon charon: 14[PTS] constructed PCR Composite: => 249 bytes @ 0x8b15d0
Dec 15 12:23:15 moon charon: 14[PTS]    0: 00 03 FF 0F 00 00 00 00 F0 4A 36 8C 2C 9C 43 83  .........J6.,.C.
Dec 15 12:23:15 moon charon: 14[PTS]   16: 7E 00 C4 2E 25 6F 73 F3 F5 60 AC 32 96 3A 3F 78  ~...%os..`.2.:?x
Dec 15 12:23:15 moon charon: 14[PTS]   32: 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39 57 C3 3B 22  .....i....n9W.;" 
Dec 15 12:23:15 moon charon: 14[PTS]   48: 75 0B B6 23 55 B7 13 63 37 D6 AC 4A C6 35 90 CE  u..#U..c7..J.5..
Dec 15 12:23:15 moon charon: 14[PTS]   64: 9A BE CC 00 5E 3A 3F 78 0F 11 A4 B4 99 69 FC AA  ....^:?x.....i..
Dec 15 12:23:15 moon charon: 14[PTS]   80: 80 CD 6E 39 57 C3 3B 22 75 4F 1F E7 8F F1 A1 2E  ..n9W.;"uO......
Dec 15 12:23:15 moon charon: 14[PTS]   96: DC EC 35 9D 4A FD AC 1C 17 6D 25 3A FA A3 35 09  ..5.J....m%:..5.
Dec 15 12:23:15 moon charon: 14[PTS]  112: 54 30 C1 99 90 37 6F C7 67 F3 37 16 9E 95 D6 33  T0...7o.g.7....3
Dec 15 12:23:15 moon charon: 14[PTS]  128: 9F 3A 3F 78 0F 11 A4 B4 99 69 FC AA 80 CD 6E 39  .:?x.....i....n9
Dec 15 12:23:15 moon charon: 14[PTS]  144: 57 C3 3B 22 75 3A 3F 78 0F 11 A4 B4 99 69 FC AA  W.;"u:?x.....i..
Dec 15 12:23:15 moon charon: 14[PTS]  160: 80 CD 6E 39 57 C3 3B 22 75 FD 73 D4 8B 13 B6 E6  ..n9W.;"u.s.....
Dec 15 12:23:15 moon charon: 14[PTS]  176: 45 06 51 BE 6F 6D 89 7E DA E1 0D 68 A1 03 C2 D5  E.Q.om.~...h....
Dec 15 12:23:15 moon charon: 14[PTS]  192: F2 25 D1 CC E2 38 25 EE 4D 42 37 9C 85 B8 55 A5  .%...8%.MB7...U.
Dec 15 12:23:15 moon charon: 14[PTS]  208: 49 5A E2 48 81 EE 0E 87 D8 7F 45 90 76 02 30 E1  IZ.H......E.v.0.
Dec 15 12:23:15 moon charon: 14[PTS]  224: 7D 9C 82 2F DE B2 A8 3B 0E BF 2F 83 74 29 9A 5B  }../...;../.t).[
Dec 15 12:23:15 moon charon: 14[PTS]  240: 2B DF C3 1E A9 55 AD 72 36                       +....U.r6
Dec 15 12:23:15 moon charon: 14[PTS] constructed PCR Composite hash: 14:96:9d:81:5a:40:71:29:f5:24:75:40:a8:a5:0b:90:ff:e4:44:c6
Dec 15 12:23:15 moon charon: 14[PTS] constructed TPM Quote Info: => 52 bytes @ 0x8af5e0
Dec 15 12:23:15 moon charon: 14[PTS]    0: 00 36 51 55 54 32 4F 3C 0A 83 A8 47 61 29 2E 47  .6QUT2O<...Ga).G
Dec 15 12:23:15 moon charon: 14[PTS]   16: C6 D9 87 77 E2 76 08 DC 99 9A 00 03 FF 0F 00 01  ...w.v..........
Dec 15 12:23:15 moon charon: 14[PTS]   32: 14 96 9D 81 5A 40 71 29 F5 24 75 40 A8 A5 0B 90  ....Z@q).$u@....
Dec 15 12:23:15 moon charon: 14[PTS]   48: FF E4 44 C6                                      ..D.
Dec 15 12:23:15 moon charon: 14[IMV] received PCR Composite matches constructed one
Dec 15 12:23:15 moon charon: 14[IMV] TPM Quote Info signature verification successful

Assessment Result

Dec 15 12:23:15 moon charon: 14[PTS] processed 1286 IMA file evidence measurements: 1176 ok, 110 unknown, 0 differ, 0 failed
Dec 15 12:23:15 moon charon: 14[PTS] 23 BIOS evidence measurements are ok
Dec 15 12:23:15 moon charon: 14[IMV] IMV 1 handled TPMRA workitem 15: allow - processed 1286 IMA file evidence measurements: 1176 ok, 110 unknown, 0 differ, 0 failed; 23 BIOS evidence measurements are ok
Dec 15 12:23:15 moon charon: 14[TNC] creating PA-TNC message with ID 0xf20fb506
Dec 15 12:23:15 moon charon: 14[TNC] creating PA-TNC attribute type 'IETF/Assessment Result' 0x000000/0x00000009
Dec 15 12:23:15 moon charon: 14[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Dec 15 12:23:15 moon charon: 14[TNC] IMV 1 provides recommendation 'allow' and evaluation 'compliant'
Dec 15 12:23:16 moon charon: 14[IMV] policy: imv_policy_manager stop successful
Dec 15 12:23:16 moon charon: 14[IMV] IMV 1 "Attestation" changed state of Connection ID 1 to 'Allowed'
Dec 15 12:23:16 moon charon: 14[TNC] PB-TNC state transition from 'Server Working' to 'Decided'
Dec 15 12:23:16 moon charon: 14[TNC] creating PB-TNC RESULT batch
Dec 15 12:23:16 moon charon: 14[TNC] adding IETF/PB-PA message
Dec 15 12:23:16 moon charon: 14[TNC] adding IETF/PB-Assessment-Result message
Dec 15 12:23:16 moon charon: 14[TNC] adding IETF/PB-Access-Recommendation message
Dec 15 12:23:16 moon charon: 14[TNC] sending PB-TNC RESULT batch (88 bytes) for Connection ID 1
Dec 15 12:23:16 moon charon: 14[IKE] sending tunneled EAP-TTLS AVP [EAP/REQ/PT]
Dec 15 12:23:16 moon charon: 14[ENC] generating IKE_AUTH response 168 [ EAP/REQ/TTLS ]
Dec 15 12:23:16 moon charon: 14[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (224 bytes)
Dec 15 12:23:16 moon charon: 05[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (144 bytes)
Dec 15 12:23:16 moon charon: 05[ENC] parsed IKE_AUTH request 169 [ EAP/RES/TTLS ]
Dec 15 12:23:16 moon charon: 05[IKE] received tunneled EAP-TTLS AVP [EAP/RES/PT]
Dec 15 12:23:16 moon charon: 05[TNC] received TNCCS batch (8 bytes) for Connection ID 1
Dec 15 12:23:16 moon charon: 05[TNC] PB-TNC state transition from 'Decided' to 'End'
Dec 15 12:23:16 moon charon: 05[TNC] processing PB-TNC CLOSE batch
Dec 15 12:23:16 moon charon: 05[TNC] final recommendation is 'allow' and evaluation is 'compliant'
Dec 15 12:23:16 moon charon: 05[TNC] policy enforced on peer 'carol@strongswan.org' is 'allow'
Dec 15 12:23:16 moon charon: 05[TNC] policy enforcement point added group membership 'allow'
Dec 15 12:23:16 moon charon: 05[IKE] EAP_TTLS phase2 authentication of 'carol@strongswan.org' with EAP_PT_EAP successful
Dec 15 12:23:16 moon charon: 05[IMV] IMV 1 "Attestation" deleted the state of Connection ID 1
Dec 15 12:23:16 moon charon: 05[TNC] removed TNCCS Connection ID 1
Dec 15 12:23:16 moon charon: 05[TLS] sending TLS close notify
Dec 15 12:23:16 moon charon: 05[ENC] generating IKE_AUTH response 169 [ EAP/REQ/TTLS ]
Dec 15 12:23:16 moon charon: 05[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (112 bytes)

IKEv2 Child SA Establishment

Dec 15 12:23:16 moon charon: 15[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (112 bytes)
Dec 15 12:23:16 moon charon: 15[ENC] parsed IKE_AUTH request 170 [ EAP/RES/TTLS ]
Dec 15 12:23:16 moon charon: 15[IKE] EAP method EAP_TTLS succeeded, MSK established
Dec 15 12:23:16 moon charon: 15[ENC] generating IKE_AUTH response 170 [ EAP/SUCC ]
Dec 15 12:23:16 moon charon: 15[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)
Dec 15 12:23:16 moon charon: 16[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (112 bytes)
Dec 15 12:23:16 moon charon: 16[ENC] parsed IKE_AUTH request 171 [ AUTH ]
Dec 15 12:23:16 moon charon: 16[IKE] authentication of 'carol@strongswan.org' with EAP successful
Dec 15 12:23:16 moon charon: 16[IKE] authentication of 'moon.strongswan.org' (myself) with EAP
Dec 15 12:23:16 moon charon: 16[IKE] IKE_SA rw-allow[1] established between 192.168.0.1[moon.strongswan.org]...192.168.0.254[carol@strongswan.org]
Dec 15 12:23:16 moon charon: 16[IKE] scheduling reauthentication in 10219s
Dec 15 12:23:16 moon charon: 16[IKE] maximum IKE_SA lifetime 10759s
Dec 15 12:23:16 moon charon: 16[IKE] CHILD_SA rw-allow{1} established with SPIs cd43e24d_i c1b95275_o and TS 10.1.0.0/28 === 192.168.0.254/32 
Dec 15 12:23:16 moon charon: 16[ENC] generating IKE_AUTH response 171 [ AUTH SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_6_ADDR) N(ADD_6_ADDR) ]
Dec 15 12:23:16 moon charon: 16[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (272 bytes)

IKEv2 Connection Termination

Dec 15 12:39:53 moon charon: 06[NET] received packet: from 192.168.0.254[4500] to 192.168.0.1[4500] (80 bytes)
Dec 15 12:39:53 moon charon: 06[ENC] parsed INFORMATIONAL request 172 [ D ]
Dec 15 12:39:53 moon charon: 06[IKE] received DELETE for IKE_SA rw-allow[1]
Dec 15 12:39:53 moon charon: 06[IKE] deleting IKE_SA rw-allow[1] between 192.168.0.1[moon.strongswan.org]...192.168.0.254[carol@strongswan.org]
Dec 15 12:39:53 moon charon: 06[IKE] IKE_SA deleted
Dec 15 12:39:53 moon charon: 06[ENC] generating INFORMATIONAL response 172 [ ]
Dec 15 12:39:53 moon charon: 06[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.254[4500] (80 bytes)

Server Shutdown

Dec 15 12:39:57 moon charon: 00[DMN] signal of type SIGINT received. Shutting down
Dec 15 12:39:57 moon charon: 00[IMV] IMV 1 "Attestation" terminated
Dec 15 12:39:57 moon charon: 00[PTS] removed TCG functional component namespace
Dec 15 12:39:57 moon charon: 00[PTS] removed ITA-HSR functional component namespace
Dec 15 12:39:57 moon charon: 00[TNC] removed IETF attributes
Dec 15 12:39:57 moon charon: 00[TNC] removed ITA-HSR attributes
Dec 15 12:39:57 moon charon: 00[TNC] removed TCG attributes
Dec 15 12:39:57 moon charon: 00[LIB] libimcv terminated