Raspi 3 - Initiating IoT Device » History » Version 12
Andreas Steffen, 15.08.2015 19:07
| 1 | 11 | Andreas Steffen | h1. Raspi3 - Initiating IoT Device |
|---|---|---|---|
| 2 | 1 | Andreas Steffen | |
| 3 | 1 | Andreas Steffen | strongSwan IPsec configuration file */etc/ipsec.conf* |
| 4 | 1 | Andreas Steffen | <pre> |
| 5 | 1 | Andreas Steffen | config setup |
| 6 | 1 | Andreas Steffen | charondebug="tnc 2, imc 2, imv 2, pts 3" |
| 7 | 1 | Andreas Steffen | |
| 8 | 1 | Andreas Steffen | conn %default |
| 9 | 1 | Andreas Steffen | ike=aes128-sha256-ecp256! |
| 10 | 1 | Andreas Steffen | esp=aes128-sha256-ecp256! |
| 11 | 1 | Andreas Steffen | keyexchange=ikev2 |
| 12 | 1 | Andreas Steffen | |
| 13 | 1 | Andreas Steffen | conn peer |
| 14 | 1 | Andreas Steffen | left=10.10.1.39 |
| 15 | 1 | Andreas Steffen | leftauth=eap-ttls |
| 16 | 1 | Andreas Steffen | leftcert=raspi3Cert.pem |
| 17 | 1 | Andreas Steffen | leftid=raspi3.example.com |
| 18 | 1 | Andreas Steffen | leftfirewall=yes |
| 19 | 1 | Andreas Steffen | right=10.10.1.40 |
| 20 | 1 | Andreas Steffen | rightauth=any |
| 21 | 1 | Andreas Steffen | rightid=raspi4.example.com |
| 22 | 1 | Andreas Steffen | type=transport |
| 23 | 1 | Andreas Steffen | auto=add |
| 24 | 1 | Andreas Steffen | </pre> |
| 25 | 1 | Andreas Steffen | |
| 26 | 1 | Andreas Steffen | strongSwan IPsec secrets file */etc/ipsec.secrets* |
| 27 | 1 | Andreas Steffen | <pre> |
| 28 | 1 | Andreas Steffen | : RSA raspi3Key.pem |
| 29 | 1 | Andreas Steffen | </pre> |
| 30 | 1 | Andreas Steffen | |
| 31 | 1 | Andreas Steffen | strongSwan configuration file */etc/strongswan.conf* |
| 32 | 1 | Andreas Steffen | <pre> |
| 33 | 1 | Andreas Steffen | # strongswan.conf - strongSwan configuration file |
| 34 | 1 | Andreas Steffen | |
| 35 | 1 | Andreas Steffen | charon { |
| 36 | 1 | Andreas Steffen | load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke |
| 37 | 1 | Andreas Steffen | |
| 38 | 1 | Andreas Steffen | half_open_timeout = 90 |
| 39 | 1 | Andreas Steffen | |
| 40 | 1 | Andreas Steffen | plugins { |
| 41 | 1 | Andreas Steffen | eap-ttls |
| 42 | 1 | Andreas Steffen | { |
| 43 | 1 | Andreas Steffen | max_message_count = 0 |
| 44 | 1 | Andreas Steffen | request_peer_auth = yes |
| 45 | 1 | Andreas Steffen | phase2_piggyback = yes |
| 46 | 1 | Andreas Steffen | phase2_tnc = yes |
| 47 | 1 | Andreas Steffen | } |
| 48 | 1 | Andreas Steffen | eap-tnc { |
| 49 | 1 | Andreas Steffen | max_message_count = 0 |
| 50 | 1 | Andreas Steffen | } |
| 51 | 1 | Andreas Steffen | tnccs-20 { |
| 52 | 1 | Andreas Steffen | mutual = yes |
| 53 | 1 | Andreas Steffen | } |
| 54 | 1 | Andreas Steffen | } |
| 55 | 1 | Andreas Steffen | } |
| 56 | 1 | Andreas Steffen | |
| 57 | 1 | Andreas Steffen | libimcv { |
| 58 | 1 | Andreas Steffen | database = sqlite:///etc/pts/config.db |
| 59 | 1 | Andreas Steffen | policy_script = ipsec imv_policy_manager |
| 60 | 1 | Andreas Steffen | |
| 61 | 1 | Andreas Steffen | plugins { |
| 62 | 1 | Andreas Steffen | imc-os { |
| 63 | 1 | Andreas Steffen | device_pubkey = /etc/pts/aik3Pub.der |
| 64 | 1 | Andreas Steffen | } |
| 65 | 1 | Andreas Steffen | imc-attestation { |
| 66 | 1 | Andreas Steffen | aik_blob = /etc/pts/aik3Blob.bin |
| 67 | 1 | Andreas Steffen | aik_cert = /etc/pts/aik3Cert.der |
| 68 | 1 | Andreas Steffen | } |
| 69 | 1 | Andreas Steffen | imv-attestation { |
| 70 | 1 | Andreas Steffen | cadir = /etc/pts/cacerts |
| 71 | 1 | Andreas Steffen | hash_algorithm = sha1 |
| 72 | 1 | Andreas Steffen | } |
| 73 | 1 | Andreas Steffen | } |
| 74 | 1 | Andreas Steffen | } |
| 75 | 1 | Andreas Steffen | |
| 76 | 1 | Andreas Steffen | libtls { |
| 77 | 1 | Andreas Steffen | suites = TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 |
| 78 | 1 | Andreas Steffen | } |
| 79 | 1 | Andreas Steffen | |
| 80 | 1 | Andreas Steffen | pt-tls-client { |
| 81 | 1 | Andreas Steffen | load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 curl |
| 82 | 1 | Andreas Steffen | } |
| 83 | 1 | Andreas Steffen | |
| 84 | 1 | Andreas Steffen | attest { |
| 85 | 1 | Andreas Steffen | database=sqlite:///etc/pts/config.db |
| 86 | 1 | Andreas Steffen | } |
| 87 | 1 | Andreas Steffen | </pre> |
| 88 | 1 | Andreas Steffen | |
| 89 | 1 | Andreas Steffen | <pre> |
| 90 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.3.1, Linux 3.18.13-v7+, armv7l) |
| 91 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] TNC recommendation policy is 'default' |
| 92 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMVs from '/etc/tnc_config' |
| 93 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] added IETF attributes |
| 94 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] added ITA-HSR attributes |
| 95 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] added TCG attributes |
| 96 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] added TCG functional component namespace |
| 97 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component namespace |
| 98 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted GRUB Boot Loader' |
| 99 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted Boot' |
| 100 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Linux IMA' |
| 101 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[LIB] libimcv initialized |
| 102 | 3 | Andreas Steffen | </pre> |
| 103 | 3 | Andreas Steffen | |
| 104 | 3 | Andreas Steffen | Loading Attestation IMV |
| 105 | 3 | Andreas Steffen | <pre> |
| 106 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMV] IMV 1 "Attestation" initialized |
| 107 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] loading PTS ca certificates from '/etc/pts/cacerts' |
| 108 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] loaded ca certificate "C=US, O=TNC Demo, CN=AIK CA" from '/etc/pts/cacerts/aikCaCert.pem' |
| 109 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available |
| 110 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available |
| 111 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available |
| 112 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available |
| 113 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available |
| 114 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available |
| 115 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available |
| 116 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available |
| 117 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 supports 2 message types: 'TCG/PTS' 0x005597/0x00000001 'IETF/Operating System' 0x000000/0x00000001 |
| 118 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imv-attestation.so' |
| 119 | 3 | Andreas Steffen | </pre> |
| 120 | 3 | Andreas Steffen | |
| 121 | 3 | Andreas Steffen | Loading OS IMC |
| 122 | 3 | Andreas Steffen | <pre> |
| 123 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMCs from '/etc/tnc_config' |
| 124 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 1 "OS" initialized |
| 125 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMC] processing "/etc/debian_version" file |
| 126 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system name is 'Debian' |
| 127 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system version is '7.8 armv7l' |
| 128 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 supports 1 message type: 'IETF/Operating System' 0x000000/0x00000001 |
| 129 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 "OS" loaded from '/usr/lib/ipsec/imcvs/imc-os.so' |
| 130 | 3 | Andreas Steffen | </pre> |
| 131 | 3 | Andreas Steffen | |
| 132 | 3 | Andreas Steffen | Loading Attestation IMC |
| 133 | 3 | Andreas Steffen | <pre> |
| 134 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 2 "Attestation" initialized |
| 135 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available |
| 136 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available |
| 137 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available |
| 138 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available |
| 139 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available |
| 140 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available |
| 141 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available |
| 142 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available |
| 143 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 supports 1 message type: 'TCG/PTS' 0x005597/0x00000001 |
| 144 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imc-attestation.so' |
| 145 | 3 | Andreas Steffen | </pre> |
| 146 | 3 | Andreas Steffen | |
| 147 | 3 | Andreas Steffen | <pre> |
| 148 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts' |
| 149 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA" from '/etc/ipsec.d/cacerts/demoCaCert.pem' |
| 150 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA" from '/etc/ipsec.d/cacerts/MSE_CA_Cert.pem' |
| 151 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts' |
| 152 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts' |
| 153 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts' |
| 154 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading crls from '/etc/ipsec.d/crls' |
| 155 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loading secrets from '/etc/ipsec.secrets' |
| 156 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded RSA private key from '/etc/ipsec.d/private/raspi3Key.pem' |
| 157 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[LIB] loaded plugins: charon random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke |
| 158 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 00[JOB] spawning 16 worker threads |
| 159 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 06[CFG] received stroke: add connection 'peer' |
| 160 | 1 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 06[CFG] loaded certificate "C=US, O=TNC Demo, CN=raspi3.example.com" from 'raspi3Cert.pem' |
| 161 | 2 | Andreas Steffen | Aug 15 14:45:55 raspi3 charon: 06[CFG] added configuration 'peer' |
| 162 | 3 | Andreas Steffen | </pre> |
| 163 | 3 | Andreas Steffen | |
| 164 | 3 | Andreas Steffen | Initiating the connection |
| 165 | 3 | Andreas Steffen | <pre> |
| 166 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 10[CFG] received stroke: initiate 'peer' |
| 167 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 11[IKE] initiating IKE_SA peer[1] to 10.10.1.40 |
| 168 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 11[ENC] generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(HASH_ALG) ] |
| 169 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[500] to 10.10.1.40[500] (256 bytes) |
| 170 | 6 | Andreas Steffen | </pre> |
| 171 | 6 | Andreas Steffen | |
| 172 | 6 | Andreas Steffen | <pre> |
| 173 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[NET] received packet: from 10.10.1.40[500] to 10.10.1.39[500] (309 bytes) |
| 174 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[ENC] parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(HASH_ALG) N(MULT_AUTH) ] |
| 175 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[IKE] received cert request for "C=US, O=TNC Demo, CN=TNC Demo CA" |
| 176 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[IKE] sending cert request for "C=US, O=TNC Demo, CN=TNC Demo CA" |
| 177 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[IKE] establishing CHILD_SA peer |
| 178 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[ENC] generating IKE_AUTH request 1 [ IDi N(INIT_CONTACT) CERTREQ IDr N(USE_TRANSP) SA TSi TSr N(MOBIKE_SUP) N(NO_ADD_ADDR) N(MULT_AUTH) N(EAP_ONLY) ] |
| 179 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (304 bytes) |
| 180 | 6 | Andreas Steffen | </pre> |
| 181 | 6 | Andreas Steffen | |
| 182 | 6 | Andreas Steffen | <pre> |
| 183 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (112 bytes) |
| 184 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[ENC] parsed IKE_AUTH response 1 [ IDr EAP/REQ/TTLS ] |
| 185 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[IKE] server requested EAP_TTLS authentication (id 0xDB) |
| 186 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[TLS] EAP_TTLS version is v0 |
| 187 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[IKE] allow mutual EAP-only authentication |
| 188 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[ENC] generating IKE_AUTH request 2 [ EAP/RES/TTLS ] |
| 189 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (208 bytes) |
| 190 | 6 | Andreas Steffen | </pre> |
| 191 | 6 | Andreas Steffen | |
| 192 | 6 | Andreas Steffen | <pre> |
| 193 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes) |
| 194 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 14[ENC] parsed IKE_AUTH response 2 [ EAP/REQ/TTLS ] |
| 195 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 14[ENC] generating IKE_AUTH request 3 [ EAP/RES/TTLS ] |
| 196 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 197 | 6 | Andreas Steffen | </pre> |
| 198 | 6 | Andreas Steffen | |
| 199 | 6 | Andreas Steffen | <pre> |
| 200 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (480 bytes) |
| 201 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[ENC] parsed IKE_AUTH response 3 [ EAP/REQ/TTLS ] |
| 202 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[TLS] negotiated TLS 1.2 using suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
| 203 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS server certificate 'C=US, O=TNC Demo, CN=raspi4.example.com' |
| 204 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[CFG] using certificate "C=US, O=TNC Demo, CN=raspi4.example.com" |
| 205 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[CFG] using trusted ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA" |
| 206 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[CFG] checking certificate status of "C=US, O=TNC Demo, CN=raspi4.example.com" |
| 207 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[CFG] certificate status is not available |
| 208 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[CFG] reached self-signed root ca with a path length of 0 |
| 209 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS cert request for 'C=US, O=TNC Demo, CN=TNC Demo CA |
| 210 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[TLS] sending TLS peer certificate 'C=US, O=TNC Demo, CN=raspi3.example.com' |
| 211 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[ENC] generating IKE_AUTH request 4 [ EAP/RES/TTLS ] |
| 212 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 213 | 6 | Andreas Steffen | </pre> |
| 214 | 6 | Andreas Steffen | |
| 215 | 6 | Andreas Steffen | <pre> |
| 216 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 217 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 16[ENC] parsed IKE_AUTH response 4 [ EAP/REQ/TTLS ] |
| 218 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 16[ENC] generating IKE_AUTH request 5 [ EAP/RES/TTLS ] |
| 219 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (352 bytes) |
| 220 | 6 | Andreas Steffen | </pre> |
| 221 | 6 | Andreas Steffen | |
| 222 | 6 | Andreas Steffen | <pre> |
| 223 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes) |
| 224 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[ENC] parsed IKE_AUTH response 5 [ EAP/REQ/TTLS ] |
| 225 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/ID] |
| 226 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[IKE] server requested EAP_IDENTITY authentication (id 0x00) |
| 227 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/ID] |
| 228 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[ENC] generating IKE_AUTH request 6 [ EAP/RES/TTLS ] |
| 229 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (192 bytes) |
| 230 | 6 | Andreas Steffen | </pre> |
| 231 | 6 | Andreas Steffen | |
| 232 | 6 | Andreas Steffen | <pre> |
| 233 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (176 bytes) |
| 234 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[ENC] parsed IKE_AUTH response 6 [ EAP/REQ/TTLS ] |
| 235 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 236 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IKE] server requested EAP_PT_EAP authentication (id 0xB8) |
| 237 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TLS] EAP_PT_EAP version is v1 |
| 238 | 7 | Andreas Steffen | </pre> |
| 239 | 7 | Andreas Steffen | |
| 240 | 7 | Andreas Steffen | <pre> |
| 241 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] TNC client is handling outbound connection |
| 242 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] assigned TNCCS Connection ID 1 |
| 243 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh |
| 244 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes |
| 245 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK certificate from '/etc/pts/aik3Cert.der' |
| 246 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK Blob from '/etc/pts/aik3Blob.bin' |
| 247 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh |
| 248 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes |
| 249 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" changed state of Connection ID 1 to 'Handshake' |
| 250 | 1 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" changed state of Connection ID 1 to 'Handshake' |
| 251 | 7 | Andreas Steffen | </pre> |
| 252 | 7 | Andreas Steffen | |
| 253 | 7 | Andreas Steffen | <pre> |
| 254 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] proposing PB-TNC mutual half duplex protocol |
| 255 | 6 | Andreas Steffen | </pre> |
| 256 | 6 | Andreas Steffen | |
| 257 | 6 | Andreas Steffen | <pre> |
| 258 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] operating system numeric version is 7.8 |
| 259 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] last boot: Aug 15 07:56:52 UTC 2015, 17353 s ago |
| 260 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] IPv4 forwarding is disabled |
| 261 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] factory default password is disabled |
| 262 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] loaded device public key from '/etc/pts/aik3Pub.der' |
| 263 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IMC] device ID is 565feb9e8462870dba884ce540a0768d68829873 |
| 264 | 6 | Andreas Steffen | </pre> |
| 265 | 6 | Andreas Steffen | |
| 266 | 6 | Andreas Steffen | <pre> |
| 267 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC message with ID 0x83cf019d |
| 268 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002 |
| 269 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004 |
| 270 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003 |
| 271 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005 |
| 272 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b |
| 273 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c |
| 274 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008 |
| 275 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-PA message type 'IETF/Operating System' 0x000000/0x00000001 |
| 276 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] PB-TNC state transition from 'Init' to 'Server Working' |
| 277 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-TNC CDATA batch |
| 278 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] adding ITA-HSR/PB-Mutual-Capability message |
| 279 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-Language-Preference message |
| 280 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-PA message |
| 281 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[TNC] sending PB-TNC CDATA batch (283 bytes) for Connection ID 1 |
| 282 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 283 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[ENC] generating IKE_AUTH request 7 [ EAP/RES/TTLS ] |
| 284 | 2 | Andreas Steffen | Aug 15 14:46:05 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (448 bytes) |
| 285 | 6 | Andreas Steffen | </pre> |
| 286 | 6 | Andreas Steffen | |
| 287 | 6 | Andreas Steffen | <pre> |
| 288 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (272 bytes) |
| 289 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[ENC] parsed IKE_AUTH response 7 [ EAP/REQ/TTLS ] |
| 290 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 291 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] received TNCCS batch (108 bytes) |
| 292 | 7 | Andreas Steffen | </pre> |
| 293 | 7 | Andreas Steffen | |
| 294 | 7 | Andreas Steffen | <pre> |
| 295 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC client is handling inbound connection |
| 296 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PB-TNC SDATA batch for Connection ID 1 |
| 297 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 298 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing ITA-HSR/PB-Mutual-Capability message (16 bytes) |
| 299 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing IETF/PB-PA message (84 bytes) |
| 300 | 7 | Andreas Steffen | </pre> |
| 301 | 7 | Andreas Steffen | |
| 302 | 7 | Andreas Steffen | <pre> |
| 303 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] activating mutual PB-TNC half duplex protocol |
| 304 | 7 | Andreas Steffen | </pre> |
| 305 | 7 | Andreas Steffen | |
| 306 | 8 | Andreas Steffen | <pre> |
| 307 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 308 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1 |
| 309 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC message with ID 0x42501f74 |
| 310 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021 |
| 311 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000 |
| 312 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000 |
| 313 | 7 | Andreas Steffen | </pre> |
| 314 | 7 | Andreas Steffen | |
| 315 | 7 | Andreas Steffen | <pre> |
| 316 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 received a segmentation contract request from IMV 1 for PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 317 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMC] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes |
| 318 | 7 | Andreas Steffen | </pre> |
| 319 | 7 | Andreas Steffen | |
| 320 | 7 | Andreas Steffen | <pre> |
| 321 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[PTS] supported PTS protocol capabilities: .VDT. |
| 322 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[PTS] selected PTS measurement algorithm is HASH_SHA1 |
| 323 | 8 | Andreas Steffen | </pre> |
| 324 | 8 | Andreas Steffen | |
| 325 | 8 | Andreas Steffen | <pre> |
| 326 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC message with ID 0x1d5fa63a |
| 327 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022 |
| 328 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000 |
| 329 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000 |
| 330 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 331 | 7 | Andreas Steffen | </pre> |
| 332 | 7 | Andreas Steffen | |
| 333 | 7 | Andreas Steffen | <pre> |
| 334 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC server is handling outbound connection |
| 335 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] assigned TNCCS Connection ID 2 |
| 336 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 2: +long +excl -soh |
| 337 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMV] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes |
| 338 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMV] user AR identity 'raspi4.example.com' of type username authenticated by certificate |
| 339 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMV] machine AR identity '10.10.1.40' of type IPv4 address authenticated by unknown method |
| 340 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" changed state of Connection ID 2 to 'Handshake' |
| 341 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Init' to 'Client Working' |
| 342 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-TNC SDATA batch |
| 343 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 2 |
| 344 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 345 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[ENC] generating IKE_AUTH request 8 [ EAP/RES/TTLS ] |
| 346 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (176 bytes) |
| 347 | 7 | Andreas Steffen | </pre> |
| 348 | 7 | Andreas Steffen | |
| 349 | 7 | Andreas Steffen | <pre> |
| 350 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (432 bytes) |
| 351 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[ENC] parsed IKE_AUTH response 8 [ EAP/REQ/TTLS ] |
| 352 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 353 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] received TNCCS batch (267 bytes) |
| 354 | 7 | Andreas Steffen | </pre> |
| 355 | 7 | Andreas Steffen | |
| 356 | 7 | Andreas Steffen | <pre> |
| 357 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC server is handling inbound connection |
| 358 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PB-TNC CDATA batch for Connection ID 2 |
| 359 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 360 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-Language-Preference message (31 bytes) |
| 361 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-PA message (228 bytes) |
| 362 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] setting language preference to 'en' |
| 363 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] handling PB-PA message type 'IETF/Operating System' 0x000000/0x00000001 |
| 364 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 1 |
| 365 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC message with ID 0x366c28ea |
| 366 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002 |
| 367 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004 |
| 368 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003 |
| 369 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005 |
| 370 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b |
| 371 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c |
| 372 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008 |
| 373 | 7 | Andreas Steffen | </pre> |
| 374 | 7 | Andreas Steffen | |
| 375 | 7 | Andreas Steffen | <pre> |
| 376 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system name is 'Debian' from vendor Debian Project |
| 377 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system version is '7.8 armv7l' |
| 378 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] device ID is 762872c90011671ef219b6a2a0c3c7dda875b43c |
| 379 | 7 | Andreas Steffen | </pre> |
| 380 | 7 | Andreas Steffen | |
| 381 | 9 | Andreas Steffen | <pre> |
| 382 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] assigned session ID 3 to Connection ID 2 |
| 383 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: imv_policy_manager start successful |
| 384 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: skipping enforcment 6 |
| 385 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] FWDEN workitem 13 |
| 386 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] FMETA workitem 14 |
| 387 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] PCKGS workitem 15 |
| 388 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] TCPOP workitem 16 |
| 389 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] UDPOP workitem 17 |
| 390 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] TPMRA workitem 18 |
| 391 | 7 | Andreas Steffen | </pre> |
| 392 | 7 | Andreas Steffen | |
| 393 | 7 | Andreas Steffen | <pre> |
| 394 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 requests a segmentation contract for PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 395 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes |
| 396 | 7 | Andreas Steffen | </pre> |
| 397 | 7 | Andreas Steffen | |
| 398 | 7 | Andreas Steffen | <pre> |
| 399 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC message with ID 0x918da8fe |
| 400 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021 |
| 401 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000 |
| 402 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000 |
| 403 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 404 | 7 | Andreas Steffen | </pre> |
| 405 | 7 | Andreas Steffen | |
| 406 | 7 | Andreas Steffen | <pre> |
| 407 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC client is handling outbound connection |
| 408 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 409 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-TNC CDATA batch |
| 410 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] adding IETF/PB-PA message |
| 411 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[TNC] sending PB-TNC CDATA batch (92 bytes) for Connection ID 1 |
| 412 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 413 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[ENC] generating IKE_AUTH request 9 [ EAP/RES/TTLS ] |
| 414 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes) |
| 415 | 7 | Andreas Steffen | </pre> |
| 416 | 7 | Andreas Steffen | |
| 417 | 7 | Andreas Steffen | <pre> |
| 418 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes) |
| 419 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[ENC] parsed IKE_AUTH response 9 [ EAP/REQ/TTLS ] |
| 420 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 421 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] received TNCCS batch (87 bytes) |
| 422 | 10 | Andreas Steffen | </pre> |
| 423 | 10 | Andreas Steffen | |
| 424 | 10 | Andreas Steffen | <pre> |
| 425 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC client is handling inbound connection |
| 426 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PB-TNC SDATA batch for Connection ID 1 |
| 427 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 428 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] processing IETF/PB-PA message (79 bytes) |
| 429 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 430 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1 |
| 431 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC message with ID 0xaff3c130 |
| 432 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000 |
| 433 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000 |
| 434 | 7 | Andreas Steffen | </pre> |
| 435 | 7 | Andreas Steffen | |
| 436 | 7 | Andreas Steffen | <pre> |
| 437 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[IMC] metadata request for file '/etc/tnc_config' |
| 438 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[PTS] selected PTS DH group is ECP_256 |
| 439 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[PTS] nonce length is 20 |
| 440 | 7 | Andreas Steffen | </pre> |
| 441 | 7 | Andreas Steffen | |
| 442 | 7 | Andreas Steffen | <pre> |
| 443 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC message with ID 0x5e3ee705 |
| 444 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000 |
| 445 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000 |
| 446 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 447 | 11 | Andreas Steffen | </pre> |
| 448 | 11 | Andreas Steffen | |
| 449 | 11 | Andreas Steffen | <pre> |
| 450 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC server is handling outbound connection |
| 451 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 452 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-TNC SDATA batch |
| 453 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] adding IETF/PB-PA message |
| 454 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[TNC] sending PB-TNC SDATA batch (92 bytes) for Connection ID 2 |
| 455 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 456 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[ENC] generating IKE_AUTH request 10 [ EAP/RES/TTLS ] |
| 457 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes) |
| 458 | 7 | Andreas Steffen | </pre> |
| 459 | 7 | Andreas Steffen | |
| 460 | 7 | Andreas Steffen | <pre> |
| 461 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes) |
| 462 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[ENC] parsed IKE_AUTH response 10 [ EAP/REQ/TTLS ] |
| 463 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 464 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] received TNCCS batch (92 bytes) |
| 465 | 7 | Andreas Steffen | </pre> |
| 466 | 7 | Andreas Steffen | |
| 467 | 7 | Andreas Steffen | <pre> |
| 468 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC server is handling inbound connection |
| 469 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PB-TNC CDATA batch for Connection ID 2 |
| 470 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 471 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing IETF/PB-PA message (84 bytes) |
| 472 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 473 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1 |
| 474 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC message with ID 0xf94741eb |
| 475 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022 |
| 476 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000 |
| 477 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000 |
| 478 | 7 | Andreas Steffen | </pre> |
| 479 | 7 | Andreas Steffen | |
| 480 | 7 | Andreas Steffen | <pre> |
| 481 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 received a segmentation contract response from IMC 2 for PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 482 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes |
| 483 | 7 | Andreas Steffen | </pre> |
| 484 | 7 | Andreas Steffen | |
| 485 | 7 | Andreas Steffen | <pre> |
| 486 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[PTS] supported PTS protocol capabilities: .VDT. |
| 487 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[PTS] selected PTS measurement algorithm is HASH_SHA1 |
| 488 | 7 | Andreas Steffen | </pre> |
| 489 | 7 | Andreas Steffen | |
| 490 | 7 | Andreas Steffen | <pre> |
| 491 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles FMETA workitem 14 |
| 492 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 requests metadata for file '/etc/tnc_config' |
| 493 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handled FMETA workitem 14: allow - file metadata requested |
| 494 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles TPMRA workitem 18 |
| 495 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC message with ID 0xda2a70e9 |
| 496 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000 |
| 497 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000 |
| 498 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 499 | 7 | Andreas Steffen | </pre> |
| 500 | 7 | Andreas Steffen | |
| 501 | 7 | Andreas Steffen | <pre> |
| 502 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC client is handling outbound connection |
| 503 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 504 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-TNC CDATA batch |
| 505 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] adding IETF/PB-PA message |
| 506 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[TNC] sending PB-TNC CDATA batch (226 bytes) for Connection ID 1 |
| 507 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 508 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[ENC] generating IKE_AUTH request 11 [ EAP/RES/TTLS ] |
| 509 | 1 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (400 bytes) |
| 510 | 7 | Andreas Steffen | </pre> |
| 511 | 7 | Andreas Steffen | |
| 512 | 7 | Andreas Steffen | <pre> |
| 513 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (336 bytes) |
| 514 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[ENC] parsed IKE_AUTH response 11 [ EAP/REQ/TTLS ] |
| 515 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 516 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] received TNCCS batch (172 bytes) |
| 517 | 8 | Andreas Steffen | </pre> |
| 518 | 8 | Andreas Steffen | |
| 519 | 8 | Andreas Steffen | <pre> |
| 520 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC client is handling inbound connection |
| 521 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PB-TNC SDATA batch for Connection ID 1 |
| 522 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 523 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing IETF/PB-PA message (164 bytes) |
| 524 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 525 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1 |
| 526 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC message with ID 0xd27d5b33 |
| 527 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000 |
| 528 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000 |
| 529 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000 |
| 530 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] selected DH hash algorithm is HASH_SHA1 |
| 531 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] initiator nonce: => 20 bytes @ 0x11d940 |
| 532 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 01 97 8C C2 90 09 6D 02 F0 0A 40 E1 8C 90 5F 15 ......m...@..._. |
| 533 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: FB 4E 28 AD .N(. |
| 534 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] responder nonce: => 20 bytes @ 0x11d410 |
| 535 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 3D D0 72 39 3A E1 A0 E2 0B 30 B4 D4 D9 22 9F E0 =.r9:....0...".. |
| 536 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: B6 D1 2A 01 ..*. |
| 537 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] shared DH secret: => 32 bytes @ 0x11e038 |
| 538 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 5F 0F D8 1E B5 39 B4 E2 86 BF 0C 92 9E E3 3A EA _....9........:. |
| 539 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: D7 23 93 EB C2 85 F5 09 EC DB C0 B1 E5 51 50 DE .#...........QP. |
| 540 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] secret assessment value: => 20 bytes @ 0x11c5e0 |
| 541 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: D8 9D 1E 70 CE 78 C3 13 F2 79 BA 5D 7C E5 05 7C ...p.x...y.]|..| |
| 542 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: E0 E0 83 77 ...w |
| 543 | 8 | Andreas Steffen | </pre> |
| 544 | 8 | Andreas Steffen | |
| 545 | 8 | Andreas Steffen | <pre> |
| 546 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[PTS] TPM Version Info: Chip Version: 1.2.133.32, Spec Level: 2, Errata Rev: 3, Vendor ID: IFX |
| 547 | 8 | Andreas Steffen | </pre> |
| 548 | 8 | Andreas Steffen | |
| 549 | 8 | Andreas Steffen | <pre> |
| 550 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC message with ID 0x641bcea1 |
| 551 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/TPM Version Information' 0x005597/0x09000000 |
| 552 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/Attestation Identity Key' 0x005597/0x0e000000 |
| 553 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 554 | 8 | Andreas Steffen | </pre> |
| 555 | 8 | Andreas Steffen | |
| 556 | 8 | Andreas Steffen | <pre> |
| 557 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC server is handling outbound connection |
| 558 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 559 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-TNC SDATA batch |
| 560 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] adding IETF/PB-PA message |
| 561 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[TNC] sending PB-TNC SDATA batch (87 bytes) for Connection ID 2 |
| 562 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 563 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[ENC] generating IKE_AUTH request 12 [ EAP/RES/TTLS ] |
| 564 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes) |
| 565 | 8 | Andreas Steffen | </pre> |
| 566 | 8 | Andreas Steffen | |
| 567 | 8 | Andreas Steffen | <pre> |
| 568 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (400 bytes) |
| 569 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[ENC] parsed IKE_AUTH response 12 [ EAP/REQ/TTLS ] |
| 570 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 571 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] received TNCCS batch (226 bytes) |
| 572 | 8 | Andreas Steffen | </pre> |
| 573 | 8 | Andreas Steffen | |
| 574 | 8 | Andreas Steffen | <pre> |
| 575 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC server is handling inbound connection |
| 576 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PB-TNC CDATA batch for Connection ID 2 |
| 577 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 578 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] processing IETF/PB-PA message (218 bytes) |
| 579 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 580 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1 |
| 581 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC message with ID 0x676268aa |
| 582 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000 |
| 583 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000 |
| 584 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IMV] metadata request returned 1 file: |
| 585 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IMV] 'tnc_config' (177 bytes) owner 0, group 0, type Regular |
| 586 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IMV] created Jun 16 20:09:17 2015, modified Jun 16 20:09:17 2015, accessed Jun 16 20:09:17 2015 |
| 587 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] selected DH hash algorithm is HASH_SHA1 |
| 588 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] selected PTS DH group is ECP_256 |
| 589 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] nonce length is 20 |
| 590 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] initiator nonce: => 20 bytes @ 0x11d890 |
| 591 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 27 B7 51 A0 C8 66 92 54 F0 57 C1 49 9D 2A 7D 3A '.Q..f.T.W.I.*}: |
| 592 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: F1 38 81 26 .8.& |
| 593 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] responder nonce: => 20 bytes @ 0x11e418 |
| 594 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 96 48 1F 52 8C A6 D5 6E 5F A4 17 2B AF BE 26 71 .H.R...n_..+..&q |
| 595 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 49 73 01 42 Is.B |
| 596 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] shared DH secret: => 32 bytes @ 0x127170 |
| 597 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: AA FE 9F 01 D7 CC 22 17 FF 35 CF 9C 70 41 7B 11 ......"..5..pA{. |
| 598 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: D0 3C B6 32 BF 3D 80 BF 73 32 1E 95 F3 20 9E D1 .<.2.=..s2... .. |
| 599 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] secret assessment value: => 20 bytes @ 0x11e9f0 |
| 600 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: B2 E0 AB DF 89 C5 1D B2 A3 51 FD A9 C8 3B F8 7F .........Q...;.. |
| 601 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 68 50 6C DE hPl. |
| 602 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC message with ID 0xe1b84e91 |
| 603 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000 |
| 604 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000 |
| 605 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000 |
| 606 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 607 | 8 | Andreas Steffen | </pre> |
| 608 | 8 | Andreas Steffen | |
| 609 | 8 | Andreas Steffen | <pre> |
| 610 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC client is handling outbound connection |
| 611 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 612 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-TNC CDATA batch |
| 613 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] adding IETF/PB-PA message |
| 614 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[TNC] sending PB-TNC CDATA batch (902 bytes) for Connection ID 1 |
| 615 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 616 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[ENC] generating IKE_AUTH request 13 [ EAP/RES/TTLS ] |
| 617 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1072 bytes) |
| 618 | 8 | Andreas Steffen | </pre> |
| 619 | 8 | Andreas Steffen | |
| 620 | 8 | Andreas Steffen | <pre> |
| 621 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes) |
| 622 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[ENC] parsed IKE_AUTH response 13 [ EAP/REQ/TTLS ] |
| 623 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 624 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] received TNCCS batch (80 bytes) |
| 625 | 8 | Andreas Steffen | </pre> |
| 626 | 8 | Andreas Steffen | |
| 627 | 8 | Andreas Steffen | <pre> |
| 628 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] TNC client is handling inbound connection |
| 629 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PB-TNC SDATA batch for Connection ID 1 |
| 630 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 631 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] processing IETF/PB-PA message (72 bytes) |
| 632 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 633 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1 |
| 634 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC message with ID 0xed256fac |
| 635 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Request Functional Component Evidence' 0x005597/0x00100000 |
| 636 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Generate Attestation Evidence' 0x005597/0x00200000 |
| 637 | 8 | Andreas Steffen | </pre> |
| 638 | 8 | Andreas Steffen | |
| 639 | 8 | Andreas Steffen | <pre> |
| 640 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[IMC] evidence requested for 1 functional components |
| 641 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] * ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 642 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] loaded ima measurements '/sys/kernel/security/ima/binary_runtime_measurements' (434 entries) |
| 643 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 644 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 645 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: dd:ee:60:04:dc:3b:d4:ee:30:04:06:cd:93:18:1c:5a:21:87:b5:9b |
| 646 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:boot_aggregate' |
| 647 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 648 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 649 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 65:ee:0c:a2:cd:ac:0d:67:f8:1a:fd:53:7b:96:75:6f:3b:b8:0f:82 |
| 650 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/init' |
| 651 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 652 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 653 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 6b:a1:a0:58:89:a8:f2:57:53:42:b5:dc:5f:3e:de:54:89:8a:ee:29 |
| 654 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/sh' |
| 655 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 656 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 657 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 85:e6:6e:7a:96:98:8b:0a:af:c8:88:46:5d:7a:fe:b5:e9:d3:c2:3e |
| 658 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/klibc-sO6SifHCdmbehHGtm0y1yHu6vb0.so' |
| 659 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 660 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 661 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 68:4a:c3:8d:48:55:be:e0:21:93:4f:52:a0:d2:3d:66:86:0c:b2:82 |
| 662 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/mkdir' |
| 663 | 5 | Andreas Steffen | ... |
| 664 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 665 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 666 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 1a:71:6c:9c:9f:6d:4f:2e:4a:88:42:49:b0:00:8d:5e:ec:05:7e:eb |
| 667 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/usr/sbin/service' |
| 668 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 669 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970 |
| 670 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: e8:f5:f2:02:d4:c1:18:d5:f7:55:5c:2d:4a:a0:d3:12:d4:13:06:ce |
| 671 | 2 | Andreas Steffen | Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/cp' |
| 672 | 8 | Andreas Steffen | </pre> |
| 673 | 8 | Andreas Steffen | |
| 674 | 8 | Andreas Steffen | <pre> |
| 675 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] Hash of PCR Composite: 58:f2:83:91:d6:a8:df:3d:3e:c6:33:c7:24:93:9f:9c:22:a2:01:20 |
| 676 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] TPM Quote Info: => 52 bytes @ 0x135360 |
| 677 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 0: 00 36 51 55 54 32 D8 9D 1E 70 CE 78 C3 13 F2 79 .6QUT2...p.x...y |
| 678 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 16: BA 5D 7C E5 05 7C E0 E0 83 77 00 03 00 04 00 01 .]|..|...w...... |
| 679 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 32: 58 F2 83 91 D6 A8 DF 3D 3E C6 33 C7 24 93 9F 9C X......=>.3.$... |
| 680 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 48: 22 A2 01 20 ".. |
| 681 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] TPM Quote Signature: => 256 bytes @ 0x14b5d0 |
| 682 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 0: 88 6E 6B 2E 33 AC AD 94 E6 A1 38 3E CD EC 9F E9 .nk.3.....8>.... |
| 683 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 16: F0 92 E9 E4 4A 66 05 50 0B 30 F2 DF 50 DC 80 4E ....Jf.P.0..P..N |
| 684 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 32: F1 AC BE 93 99 06 DF 41 AD 49 F9 DE 09 F1 18 15 .......A.I...... |
| 685 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 48: 2B B9 97 D9 DD A9 E9 7F 3D ED B8 BF EB FF 7E C6 +.......=.....~. |
| 686 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 64: A1 1A 77 87 67 9B 24 78 46 AC C0 AA 25 FA 87 5F ..w.g.$xF...%.._ |
| 687 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 80: E3 F4 F8 33 35 30 C3 31 BE DE 77 A5 2E 4F 8D 3B ...350.1..w..O.; |
| 688 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 96: F5 52 36 F4 8E C4 FA D4 A1 61 1C 4B 71 A2 52 8B .R6......a.Kq.R. |
| 689 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 112: 80 AD A6 DD 8D E5 D8 47 4F 2B 9C 17 CF BF AC 10 .......GO+...... |
| 690 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 128: C6 31 4B 01 C3 59 C3 FD F7 D2 65 C1 F0 32 12 8B .1K..Y....e..2.. |
| 691 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 144: 8F 54 49 A7 40 F9 BD 43 86 79 A1 FD 51 05 DB 65 .TI.@..C.y..Q..e |
| 692 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 160: C8 A4 C1 67 44 96 89 4D F4 E7 DB D5 AE 67 35 17 ...gD..M.....g5. |
| 693 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 176: D7 D3 68 23 E9 1F 98 9E E6 7C 86 89 EE A4 31 68 ..h#.....|....1h |
| 694 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 192: 15 B6 F6 E3 10 86 F0 FE C3 9B C2 7D 5B FB 33 BA ...........}[.3. |
| 695 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 208: 88 BE 5C D9 71 54 7F BF 72 31 5F 8E 58 4A E9 A4 ..\.qT..r1_.XJ.. |
| 696 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 224: B0 8E 3B 55 03 90 AD E1 C8 A0 C7 9C 83 13 DE 0F ..;U............ |
| 697 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[PTS] 240: 60 D8 A4 E2 4C CD E4 E2 A4 BA 11 BE 3D D4 A5 A7 `...L.......=... |
| 698 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC message with ID 0x2d059578 |
| 699 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 700 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 701 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 702 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 703 | 8 | Andreas Steffen | ... |
| 704 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 705 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 706 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PA-TNC attribute type 'TCG/Simple Evidence Final' 0x005597/0x00400000 |
| 707 | 1 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 708 | 11 | Andreas Steffen | </pre> |
| 709 | 11 | Andreas Steffen | |
| 710 | 11 | Andreas Steffen | <pre> |
| 711 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] TNC server is handling outbound connection |
| 712 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 713 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] creating PB-TNC SDATA batch |
| 714 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] adding IETF/PB-PA message |
| 715 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[TNC] sending PB-TNC SDATA batch (172 bytes) for Connection ID 2 |
| 716 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 717 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[ENC] generating IKE_AUTH request 14 [ EAP/RES/TTLS ] |
| 718 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (336 bytes) |
| 719 | 8 | Andreas Steffen | </pre> |
| 720 | 8 | Andreas Steffen | |
| 721 | 8 | Andreas Steffen | <pre> |
| 722 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1072 bytes) |
| 723 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[ENC] parsed IKE_AUTH response 14 [ EAP/REQ/TTLS ] |
| 724 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 725 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] received TNCCS batch (902 bytes) |
| 726 | 8 | Andreas Steffen | </pre> |
| 727 | 8 | Andreas Steffen | |
| 728 | 8 | Andreas Steffen | <pre> |
| 729 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] TNC server is handling inbound connection |
| 730 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] processing PB-TNC CDATA batch for Connection ID 2 |
| 731 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 732 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] processing IETF/PB-PA message (894 bytes) |
| 733 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 734 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1 |
| 735 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] processing PA-TNC message with ID 0x951e0284 |
| 736 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/TPM Version Information' 0x005597/0x09000000 |
| 737 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Attestation Identity Key' 0x005597/0x0e000000 |
| 738 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[PTS] TPM Version Info: Chip Version: 1.2.133.32, Spec Level: 2, Errata Rev: 3, Vendor ID: IFX |
| 739 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IMV] verifying AIK with keyid 76:28:72:c9:00:11:67:1e:f2:19:b6:a2:a0:c3:c7:dd:a8:75:b4:3c |
| 740 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IMV] AIK public key is trusted |
| 741 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[CFG] using trusted certificate "C=US, O=TNC Demo, CN=AIK CA" |
| 742 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IMV] AIK certificate is trusted |
| 743 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IMV] evidence request by |
| 744 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 745 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] creating PA-TNC message with ID 0xc8f4500b |
| 746 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/Request Functional Component Evidence' 0x005597/0x00100000 |
| 747 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/Generate Attestation Evidence' 0x005597/0x00200000 |
| 748 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 749 | 8 | Andreas Steffen | </pre> |
| 750 | 8 | Andreas Steffen | |
| 751 | 8 | Andreas Steffen | <pre> |
| 752 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] TNC client is handling outbound connection |
| 753 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 754 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] creating PB-TNC CDATA batch |
| 755 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] adding IETF/PB-PA message |
| 756 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[TNC] sending PB-TNC CDATA batch (47615 bytes) for Connection ID 1 |
| 757 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 758 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[ENC] generating IKE_AUTH request 15 [ EAP/RES/TTLS ] |
| 759 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 760 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 761 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 13[ENC] parsed IKE_AUTH response 15 [ EAP/REQ/TTLS ] |
| 762 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 13[ENC] generating IKE_AUTH request 16 [ EAP/RES/TTLS ] |
| 763 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 764 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 765 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 15[ENC] parsed IKE_AUTH response 16 [ EAP/REQ/TTLS ] |
| 766 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 15[ENC] generating IKE_AUTH request 17 [ EAP/RES/TTLS ] |
| 767 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 768 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 769 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 16[ENC] parsed IKE_AUTH response 17 [ EAP/REQ/TTLS ] |
| 770 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 16[ENC] generating IKE_AUTH request 18 [ EAP/RES/TTLS ] |
| 771 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 772 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 773 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[ENC] parsed IKE_AUTH response 18 [ EAP/REQ/TTLS ] |
| 774 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[ENC] generating IKE_AUTH request 19 [ EAP/RES/TTLS ] |
| 775 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 776 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 777 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 09[ENC] parsed IKE_AUTH response 19 [ EAP/REQ/TTLS ] |
| 778 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 09[ENC] generating IKE_AUTH request 20 [ EAP/RES/TTLS ] |
| 779 | 2 | Andreas Steffen | Aug 15 14:46:09 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 780 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 781 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] parsed IKE_AUTH response 20 [ EAP/REQ/TTLS ] |
| 782 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] generating IKE_AUTH request 21 [ EAP/RES/TTLS ] |
| 783 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 784 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 785 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] parsed IKE_AUTH response 21 [ EAP/REQ/TTLS ] |
| 786 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] generating IKE_AUTH request 22 [ EAP/RES/TTLS ] |
| 787 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 788 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 789 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] parsed IKE_AUTH response 22 [ EAP/REQ/TTLS ] |
| 790 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] generating IKE_AUTH request 23 [ EAP/RES/TTLS ] |
| 791 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 792 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 793 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] parsed IKE_AUTH response 23 [ EAP/REQ/TTLS ] |
| 794 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] generating IKE_AUTH request 24 [ EAP/RES/TTLS ] |
| 795 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 796 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 797 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] parsed IKE_AUTH response 24 [ EAP/REQ/TTLS ] |
| 798 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] generating IKE_AUTH request 25 [ EAP/RES/TTLS ] |
| 799 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 800 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 801 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] parsed IKE_AUTH response 25 [ EAP/REQ/TTLS ] |
| 802 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] generating IKE_AUTH request 26 [ EAP/RES/TTLS ] |
| 803 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 804 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 805 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] parsed IKE_AUTH response 26 [ EAP/REQ/TTLS ] |
| 806 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] generating IKE_AUTH request 27 [ EAP/RES/TTLS ] |
| 807 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 808 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 809 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] parsed IKE_AUTH response 27 [ EAP/REQ/TTLS ] |
| 810 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] generating IKE_AUTH request 28 [ EAP/RES/TTLS ] |
| 811 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 812 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 813 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] parsed IKE_AUTH response 28 [ EAP/REQ/TTLS ] |
| 814 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] generating IKE_AUTH request 29 [ EAP/RES/TTLS ] |
| 815 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 816 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 817 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] parsed IKE_AUTH response 29 [ EAP/REQ/TTLS ] |
| 818 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] generating IKE_AUTH request 30 [ EAP/RES/TTLS ] |
| 819 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 820 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 821 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] parsed IKE_AUTH response 30 [ EAP/REQ/TTLS ] |
| 822 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] generating IKE_AUTH request 31 [ EAP/RES/TTLS ] |
| 823 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 824 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 825 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] parsed IKE_AUTH response 31 [ EAP/REQ/TTLS ] |
| 826 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] generating IKE_AUTH request 32 [ EAP/RES/TTLS ] |
| 827 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 828 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 829 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] parsed IKE_AUTH response 32 [ EAP/REQ/TTLS ] |
| 830 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] generating IKE_AUTH request 33 [ EAP/RES/TTLS ] |
| 831 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 832 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 833 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] parsed IKE_AUTH response 33 [ EAP/REQ/TTLS ] |
| 834 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] generating IKE_AUTH request 34 [ EAP/RES/TTLS ] |
| 835 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 836 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 837 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] parsed IKE_AUTH response 34 [ EAP/REQ/TTLS ] |
| 838 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] generating IKE_AUTH request 35 [ EAP/RES/TTLS ] |
| 839 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 840 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 841 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] parsed IKE_AUTH response 35 [ EAP/REQ/TTLS ] |
| 842 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] generating IKE_AUTH request 36 [ EAP/RES/TTLS ] |
| 843 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 844 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 845 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] parsed IKE_AUTH response 36 [ EAP/REQ/TTLS ] |
| 846 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] generating IKE_AUTH request 37 [ EAP/RES/TTLS ] |
| 847 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 848 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 849 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] parsed IKE_AUTH response 37 [ EAP/REQ/TTLS ] |
| 850 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] generating IKE_AUTH request 38 [ EAP/RES/TTLS ] |
| 851 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 852 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 853 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] parsed IKE_AUTH response 38 [ EAP/REQ/TTLS ] |
| 854 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] generating IKE_AUTH request 39 [ EAP/RES/TTLS ] |
| 855 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 856 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 857 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] parsed IKE_AUTH response 39 [ EAP/REQ/TTLS ] |
| 858 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] generating IKE_AUTH request 40 [ EAP/RES/TTLS ] |
| 859 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 860 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 861 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] parsed IKE_AUTH response 40 [ EAP/REQ/TTLS ] |
| 862 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] generating IKE_AUTH request 41 [ EAP/RES/TTLS ] |
| 863 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 864 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 865 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] parsed IKE_AUTH response 41 [ EAP/REQ/TTLS ] |
| 866 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] generating IKE_AUTH request 42 [ EAP/RES/TTLS ] |
| 867 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 868 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 869 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] parsed IKE_AUTH response 42 [ EAP/REQ/TTLS ] |
| 870 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] generating IKE_AUTH request 43 [ EAP/RES/TTLS ] |
| 871 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 872 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 873 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] parsed IKE_AUTH response 43 [ EAP/REQ/TTLS ] |
| 874 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] generating IKE_AUTH request 44 [ EAP/RES/TTLS ] |
| 875 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 876 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 877 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] parsed IKE_AUTH response 44 [ EAP/REQ/TTLS ] |
| 878 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] generating IKE_AUTH request 45 [ EAP/RES/TTLS ] |
| 879 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 880 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 881 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] parsed IKE_AUTH response 45 [ EAP/REQ/TTLS ] |
| 882 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] generating IKE_AUTH request 46 [ EAP/RES/TTLS ] |
| 883 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 884 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 885 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] parsed IKE_AUTH response 46 [ EAP/REQ/TTLS ] |
| 886 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] generating IKE_AUTH request 47 [ EAP/RES/TTLS ] |
| 887 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 888 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 889 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] parsed IKE_AUTH response 47 [ EAP/REQ/TTLS ] |
| 890 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] generating IKE_AUTH request 48 [ EAP/RES/TTLS ] |
| 891 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 892 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 893 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] parsed IKE_AUTH response 48 [ EAP/REQ/TTLS ] |
| 894 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] generating IKE_AUTH request 49 [ EAP/RES/TTLS ] |
| 895 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 896 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 897 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] parsed IKE_AUTH response 49 [ EAP/REQ/TTLS ] |
| 898 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] generating IKE_AUTH request 50 [ EAP/RES/TTLS ] |
| 899 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 900 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 901 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] parsed IKE_AUTH response 50 [ EAP/REQ/TTLS ] |
| 902 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[ENC] generating IKE_AUTH request 51 [ EAP/RES/TTLS ] |
| 903 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 904 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 905 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] parsed IKE_AUTH response 51 [ EAP/REQ/TTLS ] |
| 906 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[ENC] generating IKE_AUTH request 52 [ EAP/RES/TTLS ] |
| 907 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 908 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 909 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] parsed IKE_AUTH response 52 [ EAP/REQ/TTLS ] |
| 910 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[ENC] generating IKE_AUTH request 53 [ EAP/RES/TTLS ] |
| 911 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 912 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 913 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] parsed IKE_AUTH response 53 [ EAP/REQ/TTLS ] |
| 914 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[ENC] generating IKE_AUTH request 54 [ EAP/RES/TTLS ] |
| 915 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 916 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 917 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] parsed IKE_AUTH response 54 [ EAP/REQ/TTLS ] |
| 918 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[ENC] generating IKE_AUTH request 55 [ EAP/RES/TTLS ] |
| 919 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 920 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 921 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] parsed IKE_AUTH response 55 [ EAP/REQ/TTLS ] |
| 922 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[ENC] generating IKE_AUTH request 56 [ EAP/RES/TTLS ] |
| 923 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 924 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 925 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] parsed IKE_AUTH response 56 [ EAP/REQ/TTLS ] |
| 926 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[ENC] generating IKE_AUTH request 57 [ EAP/RES/TTLS ] |
| 927 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 928 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 929 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] parsed IKE_AUTH response 57 [ EAP/REQ/TTLS ] |
| 930 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[ENC] generating IKE_AUTH request 58 [ EAP/RES/TTLS ] |
| 931 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 932 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 933 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] parsed IKE_AUTH response 58 [ EAP/REQ/TTLS ] |
| 934 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[ENC] generating IKE_AUTH request 59 [ EAP/RES/TTLS ] |
| 935 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 936 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 937 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] parsed IKE_AUTH response 59 [ EAP/REQ/TTLS ] |
| 938 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[ENC] generating IKE_AUTH request 60 [ EAP/RES/TTLS ] |
| 939 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 940 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 941 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] parsed IKE_AUTH response 60 [ EAP/REQ/TTLS ] |
| 942 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[ENC] generating IKE_AUTH request 61 [ EAP/RES/TTLS ] |
| 943 | 2 | Andreas Steffen | Aug 15 14:46:10 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 944 | 2 | Andreas Steffen | Aug 15 14:46:14 raspi3 charon: 13[IKE] retransmit 1 of request with message ID 61 |
| 945 | 2 | Andreas Steffen | Aug 15 14:46:14 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes) |
| 946 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes) |
| 947 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[ENC] parsed IKE_AUTH response 61 [ EAP/REQ/TTLS ] |
| 948 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 949 | 1 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] received TNCCS batch (88 bytes) |
| 950 | 11 | Andreas Steffen | </pre> |
| 951 | 11 | Andreas Steffen | |
| 952 | 11 | Andreas Steffen | <pre> |
| 953 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] TNC client is handling inbound connection |
| 954 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing PB-TNC RESULT batch for Connection ID 1 |
| 955 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] PB-TNC state transition from 'Server Working' to 'Decided' |
| 956 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing IETF/PB-PA message (48 bytes) |
| 957 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing IETF/PB-Assessment-Result message (16 bytes) |
| 958 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing IETF/PB-Access-Recommendation message (16 bytes) |
| 959 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 960 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1 |
| 961 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing PA-TNC message with ID 0x57254d62 |
| 962 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] processing PA-TNC attribute type 'IETF/Assessment Result' 0x000000/0x00000009 |
| 963 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] ***** assessment of IMC 2 "Attestation" from IMV 1 ***** |
| 964 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] assessment result is 'compliant' |
| 965 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] ***** end of assessment ***** |
| 966 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] PB-TNC assessment result is 'compliant' |
| 967 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] PB-TNC access recommendation is 'Access Allowed' |
| 968 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] IMC 1 "OS" changed state of Connection ID 1 to 'Allowed' |
| 969 | 1 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IMC] IMC 2 "Attestation" changed state of Connection ID 1 to 'Allowed' |
| 970 | 11 | Andreas Steffen | </pre> |
| 971 | 11 | Andreas Steffen | |
| 972 | 11 | Andreas Steffen | <pre> |
| 973 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] TNC server is handling outbound connection |
| 974 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] PB-TNC state transition from 'Server Working' to 'Client Working' |
| 975 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] creating PB-TNC SDATA batch |
| 976 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] adding IETF/PB-PA message |
| 977 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[TNC] sending PB-TNC SDATA batch (80 bytes) for Connection ID 2 |
| 978 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 979 | 2 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[ENC] generating IKE_AUTH request 62 [ EAP/RES/TTLS ] |
| 980 | 1 | Andreas Steffen | Aug 15 14:46:16 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes) |
| 981 | 11 | Andreas Steffen | </pre> |
| 982 | 11 | Andreas Steffen | |
| 983 | 11 | Andreas Steffen | <pre> |
| 984 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes) |
| 985 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 16[ENC] parsed IKE_AUTH response 62 [ EAP/REQ/TTLS ] |
| 986 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 16[ENC] generating IKE_AUTH request 63 [ EAP/RES/TTLS ] |
| 987 | 1 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 988 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes) |
| 989 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 14[ENC] parsed IKE_AUTH response 63 [ EAP/REQ/TTLS ] |
| 990 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 14[ENC] generating IKE_AUTH request 64 [ EAP/RES/TTLS ] |
| 991 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 992 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes) |
| 993 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 09[ENC] parsed IKE_AUTH response 64 [ EAP/REQ/TTLS ] |
| 994 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 09[ENC] generating IKE_AUTH request 65 [ EAP/RES/TTLS ] |
| 995 | 2 | Andreas Steffen | Aug 15 14:46:17 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 996 | 11 | Andreas Steffen | ... |
| 997 | 1 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes) |
| 998 | 1 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 08[ENC] parsed IKE_AUTH response 109 [ EAP/REQ/TTLS ] |
| 999 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 08[ENC] generating IKE_AUTH request 110 [ EAP/RES/TTLS ] |
| 1000 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 1001 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1040 bytes) |
| 1002 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[ENC] parsed IKE_AUTH response 110 [ EAP/REQ/TTLS ] |
| 1003 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[IKE] need more AVP data |
| 1004 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 1005 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] received TNCCS batch (49524 bytes) |
| 1006 | 11 | Andreas Steffen | </pre> |
| 1007 | 11 | Andreas Steffen | |
| 1008 | 11 | Andreas Steffen | <pre> |
| 1009 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] TNC server is handling inbound connection |
| 1010 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PB-TNC CDATA batch for Connection ID 2 |
| 1011 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] PB-TNC state transition from 'Client Working' to 'Server Working' |
| 1012 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing IETF/PB-PA message (49516 bytes) |
| 1013 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 1014 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1 |
| 1015 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC message with ID 0xed64f7ab |
| 1016 | 11 | Andreas Steffen | </pre> |
| 1017 | 11 | Andreas Steffen | |
| 1018 | 11 | Andreas Steffen | <pre> |
| 1019 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1020 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1021 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1022 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: dd:ee:60:04:dc:3b:d4:ee:30:04:06:cd:93:18:1c:5a:21:87:b5:9b |
| 1023 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:boot_aggregate' |
| 1024 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1025 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1026 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1027 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 65:ee:0c:a2:cd:ac:0d:67:f8:1a:fd:53:7b:96:75:6f:3b:b8:0f:82 |
| 1028 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/init' |
| 1029 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1030 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1031 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1032 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 6b:a1:a0:58:89:a8:f2:57:53:42:b5:dc:5f:3e:de:54:89:8a:ee:29 |
| 1033 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/bin/sh' |
| 1034 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1035 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1036 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1037 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 85:e6:6e:7a:96:98:8b:0a:af:c8:88:46:5d:7a:fe:b5:e9:d3:c2:3e |
| 1038 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/lib/klibc-sO6SifHCdmbehHGtm0y1yHu6vb0.so' |
| 1039 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1040 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1041 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1042 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 68:4a:c3:8d:48:55:be:e0:21:93:4f:52:a0:d2:3d:66:86:0c:b2:82 |
| 1043 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/bin/mkdir' |
| 1044 | 2 | Andreas Steffen | ... |
| 1045 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1046 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1047 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1048 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 55:f4:cd:fd:82:d2:99:e1:33:b6:82:67:95:e6:5d:03:5c:bb:d2:c2 |
| 1049 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/usr/bin/clear_console' |
| 1050 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Component Evidence' 0x005597/0x00300000 |
| 1051 | 5 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System' |
| 1052 | 5 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] measurement time: Jan 01 01:00:04 1970 |
| 1053 | 5 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] PCR 10 extended with: 7a:fc:49:eb:8f:e6:74:3f:ac:91:41:a2:c0:ac:92:28:33:fd:7b:33 |
| 1054 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 'sha1:/usr/libexec/ipsec/stroke' |
| 1055 | 11 | Andreas Steffen | </pre> |
| 1056 | 11 | Andreas Steffen | |
| 1057 | 11 | Andreas Steffen | <pre> |
| 1058 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Simple Evidence Final' 0x005597/0x00400000 |
| 1059 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] checking boot aggregate evidence measurement |
| 1060 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 65:ee:0c:a2:cd:ac:0d:67:f8:1a:fd:53:7b:96:75:6f:3b:b8:0f:82 for '/init' not found |
| 1061 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 6b:a1:a0:58:89:a8:f2:57:53:42:b5:dc:5f:3e:de:54:89:8a:ee:29 for '/bin/sh' is ok |
| 1062 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 85:e6:6e:7a:96:98:8b:0a:af:c8:88:46:5d:7a:fe:b5:e9:d3:c2:3e for '/lib/klibc-sO6SifHCdmbehHGtm0y1yHu6vb0.so' is ok |
| 1063 | 2 | Andreas Steffen | Aug 15 14:46:18 raspi3 charon: 07[PTS] 68:4a:c3:8d:48:55:be:e0:21:93:4f:52:a0:d2:3d:66:86:0c:b2:82 for '/bin/mkdir' is ok |
| 1064 | 2 | Andreas Steffen | ... |
| 1065 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 55:f4:cd:fd:82:d2:99:e1:33:b6:82:67:95:e6:5d:03:5c:bb:d2:c2 for '/usr/bin/clear_console' is ok |
| 1066 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 7a:fc:49:eb:8f:e6:74:3f:ac:91:41:a2:c0:ac:92:28:33:fd:7b:33 for '/usr/libexec/ipsec/stroke' is ok |
| 1067 | 11 | Andreas Steffen | </pre> |
| 1068 | 11 | Andreas Steffen | |
| 1069 | 11 | Andreas Steffen | <pre> |
| 1070 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] constructed PCR Composite: => 29 bytes @ 0x125488 |
| 1071 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 0: 00 03 00 04 00 00 00 00 14 7D C1 1B 87 CF 2E B8 .........}...... |
| 1072 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 16: 5C 1B 52 99 B8 BD 11 D9 B9 8A 31 8E 61 \.R.......1.a |
| 1073 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] constructed PCR Composite hash: c4:6a:f4:fa:82:39:a6:7a:80:fe:4e:d2:7e:a5:05:b3:1e:60:4f:ff |
| 1074 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] constructed TPM Quote Info: => 52 bytes @ 0x1954c8 |
| 1075 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 0: 00 36 51 55 54 32 B2 E0 AB DF 89 C5 1D B2 A3 51 .6QUT2.........Q |
| 1076 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 16: FD A9 C8 3B F8 7F 68 50 6C DE 00 03 00 04 00 01 ...;..hPl....... |
| 1077 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 32: C4 6A F4 FA 82 39 A6 7A 80 FE 4E D2 7E A5 05 B3 .j...9.z..N.~... |
| 1078 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] 48: 1E 60 4F FF .`O. |
| 1079 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] received PCR Composite matches constructed one |
| 1080 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] TPM Quote Info signature verification successful |
| 1081 | 11 | Andreas Steffen | </pre> |
| 1082 | 11 | Andreas Steffen | |
| 1083 | 11 | Andreas Steffen | <pre> |
| 1084 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[PTS] processed 450 IMA file evidence measurements: 385 ok, 65 unknown, 0 differ, 0 failed |
| 1085 | 11 | Andreas Steffen | </pre> |
| 1086 | 11 | Andreas Steffen | |
| 1087 | 11 | Andreas Steffen | <pre> |
| 1088 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] IMV 1 handled TPMRA workitem 18: allow - processed 450 IMA file evidence measurements: 385 ok, 65 unknown, 0 differ, 0 failed |
| 1089 | 4 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] creating PA-TNC message with ID 0x4077e3ed |
| 1090 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'IETF/Assessment Result' 0x000000/0x00000009 |
| 1091 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001 |
| 1092 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] IMV 1 provides recommendation 'allow' and evaluation 'compliant' |
| 1093 | 11 | Andreas Steffen | </pre> |
| 1094 | 11 | Andreas Steffen | |
| 1095 | 11 | Andreas Steffen | <pre> |
| 1096 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] TNC server is handling outbound connection |
| 1097 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] policy: recommendation for access requestor 10.10.1.40 is allow |
| 1098 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] policy: imv_policy_manager stop successful |
| 1099 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IMV] IMV 1 "Attestation" changed state of Connection ID 2 to 'Allowed' |
| 1100 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] PB-TNC state transition from 'Server Working' to 'Decided' |
| 1101 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] creating PB-TNC RESULT batch |
| 1102 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] adding IETF/PB-PA message |
| 1103 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] adding IETF/PB-Assessment-Result message |
| 1104 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] adding IETF/PB-Access-Recommendation message |
| 1105 | 5 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[TNC] sending PB-TNC RESULT batch (88 bytes) for Connection ID 2 |
| 1106 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 1107 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[ENC] generating IKE_AUTH request 111 [ EAP/RES/TTLS ] |
| 1108 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes) |
| 1109 | 11 | Andreas Steffen | </pre> |
| 1110 | 11 | Andreas Steffen | |
| 1111 | 12 | Andreas Steffen | <pre> |
| 1112 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (176 bytes) |
| 1113 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[ENC] parsed IKE_AUTH response 111 [ EAP/REQ/TTLS ] |
| 1114 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT] |
| 1115 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] received TNCCS batch (8 bytes) |
| 1116 | 11 | Andreas Steffen | </pre> |
| 1117 | 11 | Andreas Steffen | |
| 1118 | 11 | Andreas Steffen | <pre> |
| 1119 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] TNC server is handling inbound connection |
| 1120 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] processing PB-TNC CLOSE batch for Connection ID 2 |
| 1121 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] PB-TNC state transition from 'Decided' to 'End' |
| 1122 | 11 | Andreas Steffen | </pre> |
| 1123 | 11 | Andreas Steffen | |
| 1124 | 11 | Andreas Steffen | <pre> |
| 1125 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] TNC client is handling outbound connection |
| 1126 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] PB-TNC state transition from 'Decided' to 'End' |
| 1127 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] creating PB-TNC CLOSE batch |
| 1128 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[TNC] sending PB-TNC CLOSE batch (8 bytes) for Connection ID 1 |
| 1129 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT] |
| 1130 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[ENC] generating IKE_AUTH request 112 [ EAP/RES/TTLS ] |
| 1131 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (176 bytes) |
| 1132 | 11 | Andreas Steffen | </pre> |
| 1133 | 11 | Andreas Steffen | |
| 1134 | 11 | Andreas Steffen | <pre> |
| 1135 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 1136 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[ENC] parsed IKE_AUTH response 112 [ EAP/SUCC ] |
| 1137 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[IKE] EAP method EAP_TTLS succeeded, MSK established |
| 1138 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[IKE] authentication of 'raspi3.example.com' (myself) with EAP |
| 1139 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[ENC] generating IKE_AUTH request 113 [ AUTH ] |
| 1140 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (112 bytes) |
| 1141 | 11 | Andreas Steffen | </pre> |
| 1142 | 11 | Andreas Steffen | |
| 1143 | 11 | Andreas Steffen | <pre> |
| 1144 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (240 bytes) |
| 1145 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[ENC] parsed IKE_AUTH response 113 [ AUTH N(USE_TRANSP) SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(NO_ADD_ADDR) ] |
| 1146 | 11 | Andreas Steffen | </pre> |
| 1147 | 11 | Andreas Steffen | |
| 1148 | 11 | Andreas Steffen | <pre> |
| 1149 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] authentication of 'raspi4.example.com' with EAP successful |
| 1150 | 11 | Andreas Steffen | </pre> |
| 1151 | 11 | Andreas Steffen | |
| 1152 | 11 | Andreas Steffen | <pre> |
| 1153 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IMV] IMV 1 "Attestation" deleted the state of Connection ID 2 |
| 1154 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[TNC] removed TNCCS Connection ID 2 |
| 1155 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IMC] IMC 1 "OS" deleted the state of Connection ID 1 |
| 1156 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IMC] IMC 2 "Attestation" deleted the state of Connection ID 1 |
| 1157 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[TNC] removed TNCCS Connection ID 1 |
| 1158 | 11 | Andreas Steffen | </pre> |
| 1159 | 11 | Andreas Steffen | |
| 1160 | 11 | Andreas Steffen | <pre> |
| 1161 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] IKE_SA peer[1] established between 10.10.1.39[raspi3.example.com]...10.10.1.40[raspi4.example.com] |
| 1162 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] scheduling reauthentication in 10132s |
| 1163 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] maximum IKE_SA lifetime 10672s |
| 1164 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] CHILD_SA peer{1} established with SPIs c12c1aae_i ce21eedf_o and TS 10.10.1.39/32 === 10.10.1.40/32 |
| 1165 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] received AUTH_LIFETIME of 10143s, scheduling reauthentication in 9603s |
| 1166 | 2 | Andreas Steffen | Aug 15 14:46:25 raspi3 charon: 12[IKE] peer supports MOBIKE |
| 1167 | 11 | Andreas Steffen | </pre> |
| 1168 | 11 | Andreas Steffen | |
| 1169 | 11 | Andreas Steffen | <pre> |
| 1170 | 2 | Andreas Steffen | Aug 15 14:49:04 raspi3 charon: 13[CFG] received stroke: terminate 'peer' |
| 1171 | 2 | Andreas Steffen | Aug 15 14:49:04 raspi3 charon: 15[IKE] deleting IKE_SA peer[1] between 10.10.1.39[raspi3.example.com]...10.10.1.40[raspi4.example.com] |
| 1172 | 2 | Andreas Steffen | Aug 15 14:49:04 raspi3 charon: 15[IKE] sending DELETE for IKE_SA peer[1] |
| 1173 | 2 | Andreas Steffen | Aug 15 14:49:04 raspi3 charon: 15[ENC] generating INFORMATIONAL request 114 [ D ] |
| 1174 | 2 | Andreas Steffen | Aug 15 14:49:04 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes) |
| 1175 | 2 | Andreas Steffen | Aug 15 14:49:05 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes) |
| 1176 | 2 | Andreas Steffen | Aug 15 14:49:05 raspi3 charon: 09[ENC] parsed INFORMATIONAL response 114 [ ] |
| 1177 | 2 | Andreas Steffen | Aug 15 14:49:05 raspi3 charon: 09[IKE] IKE_SA deleted |
| 1178 | 11 | Andreas Steffen | </pre> |
| 1179 | 11 | Andreas Steffen | |
| 1180 | 11 | Andreas Steffen | <pre> |
| 1181 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[DMN] signal of type SIGINT received. Shutting down |
| 1182 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[IMC] IMC 2 "Attestation" terminated |
| 1183 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[IMC] IMC 1 "OS" terminated |
| 1184 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[IMV] IMV 1 "Attestation" terminated |
| 1185 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[PTS] removed TCG functional component namespace |
| 1186 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[PTS] removed ITA-HSR functional component namespace |
| 1187 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[TNC] removed IETF attributes |
| 1188 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[TNC] removed ITA-HSR attributes |
| 1189 | 2 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[TNC] removed TCG attributes |
| 1190 | 1 | Andreas Steffen | Aug 15 14:49:08 raspi3 charon: 00[LIB] libimcv terminated |
| 1191 | 1 | Andreas Steffen | </pre> |