Raspi 3 - Initiating IoT Device » History » Version 4
Version 3 (Andreas Steffen, 15.08.2015 17:57) → Version 4/41 (Andreas Steffen, 15.08.2015 18:03)
h1. Raspi3 - IoT-Initiator Raspi 3
strongSwan IPsec configuration file */etc/ipsec.conf*
<pre>
config setup
charondebug="tnc 2, imc 2, imv 2, pts 3"
conn %default
ike=aes128-sha256-ecp256!
esp=aes128-sha256-ecp256!
keyexchange=ikev2
conn peer
left=10.10.1.39
leftauth=eap-ttls
leftcert=raspi3Cert.pem
leftid=raspi3.example.com
leftfirewall=yes
right=10.10.1.40
rightauth=any
rightid=raspi4.example.com
type=transport
auto=add
</pre>
strongSwan IPsec secrets file */etc/ipsec.secrets*
<pre>
: RSA raspi3Key.pem
</pre>
strongSwan configuration file */etc/strongswan.conf*
<pre>
# strongswan.conf - strongSwan configuration file
charon {
load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke
half_open_timeout = 90
plugins {
eap-ttls
{
max_message_count = 0
request_peer_auth = yes
phase2_piggyback = yes
phase2_tnc = yes
}
eap-tnc {
max_message_count = 0
}
tnccs-20 {
mutual = yes
}
}
}
libimcv {
database = sqlite:///etc/pts/config.db
policy_script = ipsec imv_policy_manager
plugins {
imc-os {
device_pubkey = /etc/pts/aik3Pub.der
}
imc-attestation {
aik_blob = /etc/pts/aik3Blob.bin
aik_cert = /etc/pts/aik3Cert.der
}
imv-attestation {
cadir = /etc/pts/cacerts
hash_algorithm = sha1
}
}
}
libtls {
suites = TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
}
pt-tls-client {
load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 curl
}
attest {
database=sqlite:///etc/pts/config.db
}
</pre>
<pre>
Aug 15 14:45:55 raspi3 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.3.1, Linux 3.18.13-v7+, armv7l)
Aug 15 14:45:55 raspi3 charon: 00[TNC] TNC recommendation policy is 'default'
Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMVs from '/etc/tnc_config'
Aug 15 14:45:55 raspi3 charon: 00[TNC] added IETF attributes
Aug 15 14:45:55 raspi3 charon: 00[TNC] added ITA-HSR attributes
Aug 15 14:45:55 raspi3 charon: 00[TNC] added TCG attributes
Aug 15 14:45:55 raspi3 charon: 00[PTS] added TCG functional component namespace
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component namespace
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted GRUB Boot Loader'
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted Boot'
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Linux IMA'
Aug 15 14:45:55 raspi3 charon: 00[LIB] libimcv initialized
</pre>
Loading Attestation IMV
<pre>
Aug 15 14:45:55 raspi3 charon: 00[IMV] IMV 1 "Attestation" initialized
Aug 15 14:45:55 raspi3 charon: 00[PTS] loading PTS ca certificates from '/etc/pts/cacerts'
Aug 15 14:45:55 raspi3 charon: 00[PTS] loaded ca certificate "C=US, O=TNC Demo, CN=AIK CA" from '/etc/pts/cacerts/aikCaCert.pem'
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 supports 2 message types: 'TCG/PTS' 0x005597/0x00000001 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imv-attestation.so'
</pre>
Loading OS IMC
<pre>
Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMCs from '/etc/tnc_config'
Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 1 "OS" initialized
Aug 15 14:45:55 raspi3 charon: 00[IMC] processing "/etc/debian_version" file
Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system name is 'Debian'
Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system version is '7.8 armv7l'
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 supports 1 message type: 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 "OS" loaded from '/usr/lib/ipsec/imcvs/imc-os.so'
</pre>
Loading Attestation IMC
<pre>
Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 2 "Attestation" initialized
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 supports 1 message type: 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imc-attestation.so'
</pre>
<pre>
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA" from '/etc/ipsec.d/cacerts/demoCaCert.pem'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA" from '/etc/ipsec.d/cacerts/MSE_CA_Cert.pem'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading crls from '/etc/ipsec.d/crls'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading secrets from '/etc/ipsec.secrets'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded RSA private key from '/etc/ipsec.d/private/raspi3Key.pem'
Aug 15 14:45:55 raspi3 charon: 00[LIB] loaded plugins: charon random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke
Aug 15 14:45:55 raspi3 charon: 00[JOB] spawning 16 worker threads
Aug 15 14:45:55 raspi3 charon: 06[CFG] received stroke: add connection 'peer'
Aug 15 14:45:55 raspi3 charon: 06[CFG] loaded certificate "C=US, O=TNC Demo, CN=raspi3.example.com" from 'raspi3Cert.pem'
Aug 15 14:45:55 raspi3 charon: 06[CFG] added configuration 'peer'
</pre>
Initiating the connection
<pre>
Aug 15 14:46:05 raspi3 charon: 10[CFG] received stroke: initiate 'peer'
Aug 15 14:46:05 raspi3 charon: 11[IKE] initiating IKE_SA peer[1] to 10.10.1.40
Aug 15 14:46:05 raspi3 charon: 11[ENC] generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(HASH_ALG) ]
Aug 15 14:46:05 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[500] to 10.10.1.40[500] (256 bytes)
Aug 15 14:46:05 raspi3 charon: 12[NET] received packet: from 10.10.1.40[500] to 10.10.1.39[500] (309 bytes)
Aug 15 14:46:05 raspi3 charon: 12[ENC] parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(HASH_ALG) N(MULT_AUTH) ]
Aug 15 14:46:05 raspi3 charon: 12[IKE] received cert request for "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] received cert request for "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] sending cert request for "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] sending cert request for "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] establishing CHILD_SA peer
Aug 15 14:46:05 raspi3 charon: 12[ENC] generating IKE_AUTH request 1 [ IDi N(INIT_CONTACT) CERTREQ IDr N(USE_TRANSP) SA TSi TSr N(MOBIKE_SUP) N(NO_ADD_ADDR) N(MULT_AUTH) N(EAP_ONLY) ]
Aug 15 14:46:05 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (304 bytes)
Aug 15 14:46:05 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (112 bytes)
Aug 15 14:46:05 raspi3 charon: 13[ENC] parsed IKE_AUTH response 1 [ IDr EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 13[IKE] server requested EAP_TTLS authentication (id 0xDB)
Aug 15 14:46:05 raspi3 charon: 13[TLS] EAP_TTLS version is v0
Aug 15 14:46:05 raspi3 charon: 13[IKE] allow mutual EAP-only authentication
Aug 15 14:46:05 raspi3 charon: 13[ENC] generating IKE_AUTH request 2 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (208 bytes)
Aug 15 14:46:05 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes)
Aug 15 14:46:05 raspi3 charon: 14[ENC] parsed IKE_AUTH response 2 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 14[ENC] generating IKE_AUTH request 3 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes)
Aug 15 14:46:05 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (480 bytes)
Aug 15 14:46:05 raspi3 charon: 15[ENC] parsed IKE_AUTH response 3 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 15[TLS] negotiated TLS 1.2 using suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS server certificate 'C=US, O=TNC Demo, CN=raspi4.example.com'
Aug 15 14:46:05 raspi3 charon: 15[CFG] using certificate "C=US, O=TNC Demo, CN=raspi4.example.com"
Aug 15 14:46:05 raspi3 charon: 15[CFG] using trusted ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 15[CFG] checking certificate status of "C=US, O=TNC Demo, CN=raspi4.example.com"
Aug 15 14:46:05 raspi3 charon: 15[CFG] certificate status is not available
Aug 15 14:46:05 raspi3 charon: 15[CFG] reached self-signed root ca with a path length of 0
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS cert request for 'C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS cert request for 'C=US, O=TNC Demo, CN=TNC Demo CA
Aug 15 14:46:05 raspi3 charon: 15[TLS] sending TLS peer certificate 'C=US, O=TNC Demo, CN=raspi3.example.com'
Aug 15 14:46:05 raspi3 charon: 15[ENC] generating IKE_AUTH request 4 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes)
Aug 15 14:46:05 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes)
Aug 15 14:46:05 raspi3 charon: 16[ENC] parsed IKE_AUTH response 4 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 16[ENC] generating IKE_AUTH request 5 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (352 bytes)
Aug 15 14:46:05 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:05 raspi3 charon: 09[ENC] parsed IKE_AUTH response 5 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 09[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/ID]
Aug 15 14:46:05 raspi3 charon: 09[IKE] server requested EAP_IDENTITY authentication (id 0x00)
Aug 15 14:46:05 raspi3 charon: 09[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/ID]
Aug 15 14:46:05 raspi3 charon: 09[ENC] generating IKE_AUTH request 6 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (192 bytes)
Aug 15 14:46:05 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (176 bytes)
Aug 15 14:46:05 raspi3 charon: 08[ENC] parsed IKE_AUTH response 6 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 08[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:05 raspi3 charon: 08[IKE] server requested EAP_PT_EAP authentication (id 0xB8)
Aug 15 14:46:05 raspi3 charon: 08[TLS] EAP_PT_EAP version is v1
Aug 15 14:46:05 raspi3 charon: 08[TNC] TNC client is handling outbound connection
Aug 15 14:46:05 raspi3 charon: 08[TNC] assigned TNCCS Connection ID 1
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh
Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK certificate from '/etc/pts/aik3Cert.der'
Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK Blob from '/etc/pts/aik3Blob.bin'
Aug 15 14:46:05 raspi3 charon: 08[PTS] AIK Blob: => 559 bytes @ 0x76eaf000
Aug 15 14:46:05 raspi3 charon: 08[PTS] 0: 01 01 00 00 00 12 00 00 00 04 00 00 00 00 01 00 ................
Aug 15 14:46:05 raspi3 charon: 08[PTS] 16: 01 00 02 00 00 00 0C 00 00 08 00 00 00 00 02 00 ................
Aug 15 14:46:05 raspi3 charon: 08[PTS] 32: 00 00 00 00 00 00 00 00 00 01 00 9B 3E 44 E6 65 ............>D.e
Aug 15 14:46:05 raspi3 charon: 08[PTS] 48: 0F DF 14 1A 57 B4 81 E3 7A 75 2F CC FE 8E 8C DE ....W...zu/.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 64: C8 42 17 25 43 3D 7B 83 01 F6 43 BB 38 0D 82 38 .B.%C={...C.8..8
Aug 15 14:46:05 raspi3 charon: 08[PTS] 80: 2E 66 DB 0D EC AE 21 22 A3 3D 1E 43 08 7C 7B F6 .f....!".=.C.|{.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 96: 78 95 73 05 37 E0 D0 22 52 AC 5A 00 0F F4 A3 92 x.s.7.."R.Z.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 112: 5D 70 E8 56 18 34 9C A6 86 3D DE 48 45 16 BD 67 ]p.V.4...=.HE..g
Aug 15 14:46:05 raspi3 charon: 08[PTS] 128: F1 6E B8 5D 03 82 DF 84 29 B6 8E 0A 76 FE 25 DD .n.]....)...v.%.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 144: 03 E1 81 C9 80 47 3A 9C 96 CD 0A D4 E9 ED F9 12 .....G:.........
Aug 15 14:46:05 raspi3 charon: 08[PTS] 160: 37 C8 65 AE 16 26 A1 9F B8 6E 50 DA 96 A1 39 93 7.e..&...nP...9.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 176: D2 FC 85 13 31 28 30 D3 F0 AF D4 8E B3 9A 39 8C ....1(0.......9.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 192: 2C 4E 67 1A 03 1C 6C 60 EB CF E1 25 78 E7 2E F5 ,Ng...l`...%x...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 208: 21 C8 66 C7 A2 52 89 81 26 52 75 84 C9 77 19 A2 !.f..R..&Ru..w..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 224: 69 45 CB 4A E6 77 8B 1F E1 CD F8 A7 0B 39 C9 B3 iE.J.w.......9..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 240: 91 43 C9 A0 F7 62 EE 9F E4 E7 5A 29 73 BB 7F 60 .C...b....Z)s..`
Aug 15 14:46:05 raspi3 charon: 08[PTS] 256: 12 97 F9 7C 72 43 BE C7 C1 4C 00 AD BC 7C 50 CF ...|rC...L...|P.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 272: 54 DF F2 10 56 B1 68 B2 58 CC 23 08 8D 78 4C 1A T...V.h.X.#..xL.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 288: 07 4B 20 05 3B 0E 6A C3 9E F3 6D 00 00 01 00 04 .K .;.j...m.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 304: 81 5C 12 BC D0 DC BC 6C CC 11 2B 38 9C 13 0B DD .\.....l..+8....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 320: CE B5 9A 9F 63 96 32 CD 17 5B 52 1A A8 E5 1F EB ....c.2..[R.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 336: A2 88 8D EB 4E 50 F8 B6 48 F6 1A 7F A1 94 D9 A8 ....NP..H.......
Aug 15 14:46:05 raspi3 charon: 08[PTS] 352: 7D 86 6E BE C4 23 0B DA FE 99 41 8F 31 E3 D1 F7 }.n..#....A.1...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 368: 58 B9 FD FD A5 49 5B 25 B5 6C 5C BA 8A 2A 65 F6 X....I[%.l\..*e.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 384: 89 B9 14 C7 67 63 0D 53 08 95 54 43 34 9F A4 FE ....gc.S..TC4...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 400: D9 18 95 AF 50 38 DC 73 AA 71 68 54 EF A0 C5 8F ....P8.s.qhT....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 416: 91 59 9F 22 44 E6 CE F8 E2 33 F2 58 9D DE 8E F4 .Y."D....3.X....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 432: C3 52 95 6B 0E 95 22 42 B6 63 FF D3 34 4B 92 87 .R.k.."B.c..4K..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 448: 92 3E A0 55 07 92 92 52 95 FF 6F 9B C3 84 6F 8C .>.U...R..o...o.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 464: C3 87 1C 42 35 95 83 7A 89 EA 78 05 71 73 1B 07 ...B5..z..x.qs..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 480: 29 20 B2 B0 C6 74 2C 26 04 27 BF E6 D9 B3 3D 28 ) ...t,&.'....=(
Aug 15 14:46:05 raspi3 charon: 08[PTS] 496: 40 CA 69 40 E7 35 4F 4A F4 0B C1 E8 27 3D 9F B4 @.i@.5OJ....'=..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 512: 28 12 E9 56 35 FF C8 77 0B 19 71 85 EF 9C DF 3C (..V5..w..q....<
Aug 15 14:46:05 raspi3 charon: 08[PTS] 528: 41 6D 71 E0 E7 9E 12 7B 9B C0 05 A8 EA 4B 3F 4A Amq....{.....K?J
Aug 15 14:46:05 raspi3 charon: 08[PTS] 544: F7 1F 9C BF 3F D9 D2 B4 D2 91 60 0F 30 B3 6A ....?.....`.0.j
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh
Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" changed state of Connection ID 1 to 'Handshake'
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" changed state of Connection ID 1 to 'Handshake'
Aug 15 14:46:05 raspi3 charon: 08[TNC] proposing PB-TNC mutual half duplex protocol
Aug 15 14:46:05 raspi3 charon: 08[IMC] operating system numeric version is 7.8
Aug 15 14:46:05 raspi3 charon: 08[IMC] last boot: Aug 15 07:56:52 UTC 2015, 17353 s ago
Aug 15 14:46:05 raspi3 charon: 08[IMC] IPv4 forwarding is disabled
Aug 15 14:46:05 raspi3 charon: 08[IMC] factory default password is disabled
Aug 15 14:46:05 raspi3 charon: 08[IMC] loaded device public key from '/etc/pts/aik3Pub.der'
Aug 15 14:46:05 raspi3 charon: 08[IMC] device ID is 565feb9e8462870dba884ce540a0768d68829873
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC message with ID 0x83cf019d
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-PA message type 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:46:05 raspi3 charon: 08[TNC] PB-TNC state transition from 'Init' to 'Server Working'
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding ITA-HSR/PB-Mutual-Capability message
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-Language-Preference message
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-PA message
Aug 15 14:46:05 raspi3 charon: 08[TNC] sending PB-TNC CDATA batch (283 bytes) for Connection ID 1
Aug 15 14:46:05 raspi3 charon: 08[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:05 raspi3 charon: 08[ENC] generating IKE_AUTH request 7 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (448 bytes)
Aug 15 14:46:08 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (272 bytes)
Aug 15 14:46:08 raspi3 charon: 07[ENC] parsed IKE_AUTH response 7 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 07[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 07[TNC] received TNCCS batch (108 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing ITA-HSR/PB-Mutual-Capability message (16 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing IETF/PB-PA message (84 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] activating mutual PB-TNC half duplex protocol
Aug 15 14:46:08 raspi3 charon: 07[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC message with ID 0x42501f74
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000
Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 received a segmentation contract request from IMV 1 for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[IMC] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 07[PTS] supported PTS protocol capabilities: .VDT.
Aug 15 14:46:08 raspi3 charon: 07[PTS] selected PTS measurement algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC message with ID 0x1d5fa63a
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 07[TNC] assigned TNCCS Connection ID 2
Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 2: +long +excl -soh
Aug 15 14:46:08 raspi3 charon: 07[IMV] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:08 raspi3 charon: 07[IMV] user AR identity 'raspi4.example.com' of type username authenticated by certificate
Aug 15 14:46:08 raspi3 charon: 07[IMV] machine AR identity '10.10.1.40' of type IPv4 address authenticated by unknown method
Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" changed state of Connection ID 2 to 'Handshake'
Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Init' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 07[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 07[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 07[ENC] generating IKE_AUTH request 8 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (176 bytes)
Aug 15 14:46:08 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (432 bytes)
Aug 15 14:46:08 raspi3 charon: 06[ENC] parsed IKE_AUTH response 8 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 06[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 06[TNC] received TNCCS batch (267 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-Language-Preference message (31 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-PA message (228 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] setting language preference to 'en'
Aug 15 14:46:08 raspi3 charon: 06[TNC] handling PB-PA message type 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 1
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC message with ID 0x366c28ea
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008
Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system name is 'Debian' from vendor Debian Project
Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system version is '7.8 armv7l'
Aug 15 14:46:08 raspi3 charon: 06[IMV] device ID is 762872c90011671ef219b6a2a0c3c7dda875b43c
Aug 15 14:46:08 raspi3 charon: 06[IMV] assigned session ID 3 to Connection ID 2
Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: imv_policy_manager start successful
Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: skipping enforcment 6
Aug 15 14:46:08 raspi3 charon: 06[IMV] FWDEN workitem 13
Aug 15 14:46:08 raspi3 charon: 06[IMV] FMETA workitem 14
Aug 15 14:46:08 raspi3 charon: 06[IMV] PCKGS workitem 15
Aug 15 14:46:08 raspi3 charon: 06[IMV] TCPOP workitem 16
Aug 15 14:46:08 raspi3 charon: 06[IMV] UDPOP workitem 17
Aug 15 14:46:08 raspi3 charon: 06[IMV] TPMRA workitem 18
Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 requests a segmentation contract for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC message with ID 0x918da8fe
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 06[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 06[TNC] sending PB-TNC CDATA batch (92 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 06[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 06[ENC] generating IKE_AUTH request 9 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 05[ENC] parsed IKE_AUTH response 9 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 05[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 05[TNC] received TNCCS batch (87 bytes)
Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing IETF/PB-PA message (79 bytes)
Aug 15 14:46:08 raspi3 charon: 05[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 05[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC message with ID 0xaff3c130
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000
Aug 15 14:46:08 raspi3 charon: 05[IMC] metadata request for file '/etc/tnc_config'
Aug 15 14:46:08 raspi3 charon: 05[PTS] selected PTS DH group is ECP_256
Aug 15 14:46:08 raspi3 charon: 05[PTS] nonce length is 20
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC message with ID 0x5e3ee705
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 05[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 05[TNC] sending PB-TNC SDATA batch (92 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 05[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 05[ENC] generating IKE_AUTH request 10 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 11[ENC] parsed IKE_AUTH response 10 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 11[TNC] received TNCCS batch (92 bytes)
Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing IETF/PB-PA message (84 bytes)
Aug 15 14:46:08 raspi3 charon: 11[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC message with ID 0xf94741eb
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 received a segmentation contract response from IMC 2 for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 11[PTS] supported PTS protocol capabilities: .VDT.
Aug 15 14:46:08 raspi3 charon: 11[PTS] selected PTS measurement algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles FMETA workitem 14
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 requests metadata for file '/etc/tnc_config'
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handled FMETA workitem 14: allow - file metadata requested
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles TPMRA workitem 18
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC message with ID 0xda2a70e9
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 11[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 11[TNC] sending PB-TNC CDATA batch (226 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 11[ENC] generating IKE_AUTH request 11 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (400 bytes)
Aug 15 14:46:08 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (336 bytes)
Aug 15 14:46:08 raspi3 charon: 12[ENC] parsed IKE_AUTH response 11 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 12[TNC] received TNCCS batch (172 bytes)
Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing IETF/PB-PA message (164 bytes)
Aug 15 14:46:08 raspi3 charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 12[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC message with ID 0xd27d5b33
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000
Aug 15 14:46:08 raspi3 charon: 12[PTS] selected DH hash algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 12[PTS] initiator nonce: => 20 bytes @ 0x11d940
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 01 97 8C C2 90 09 6D 02 F0 0A 40 E1 8C 90 5F 15 ......m...@..._.
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: FB 4E 28 AD .N(.
Aug 15 14:46:08 raspi3 charon: 12[PTS] responder nonce: => 20 bytes @ 0x11d410
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 3D D0 72 39 3A E1 A0 E2 0B 30 B4 D4 D9 22 9F E0 =.r9:....0..."..
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: B6 D1 2A 01 ..*.
Aug 15 14:46:08 raspi3 charon: 12[PTS] shared DH secret: => 32 bytes @ 0x11e038
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 5F 0F D8 1E B5 39 B4 E2 86 BF 0C 92 9E E3 3A EA _....9........:.
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: D7 23 93 EB C2 85 F5 09 EC DB C0 B1 E5 51 50 DE .#...........QP.
Aug 15 14:46:08 raspi3 charon: 12[PTS] secret assessment value: => 20 bytes @ 0x11c5e0
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: D8 9D 1E 70 CE 78 C3 13 F2 79 BA 5D 7C E5 05 7C ...p.x...y.]|..|
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: E0 E0 83 77 ...w
Aug 15 14:46:08 raspi3 charon: 12[PTS] TPM Version Info: Chip Version: 1.2.133.32, Spec Level: 2, Errata Rev: 3, Vendor ID: IFX
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC message with ID 0x641bcea1
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/TPM Version Information' 0x005597/0x09000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/Attestation Identity Key' 0x005597/0x0e000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 12[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 12[TNC] sending PB-TNC SDATA batch (87 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 12[ENC] generating IKE_AUTH request 12 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (400 bytes)
Aug 15 14:46:08 raspi3 charon: 13[ENC] parsed IKE_AUTH response 12 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 13[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 13[TNC] received TNCCS batch (226 bytes)
Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing IETF/PB-PA message (218 bytes)
Aug 15 14:46:08 raspi3 charon: 13[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 13[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC message with ID 0x676268aa
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000
Aug 15 14:46:08 raspi3 charon: 13[IMV] metadata request returned 1 file:
Aug 15 14:46:08 raspi3 charon: 13[IMV] 'tnc_config' (177 bytes) owner 0, group 0, type Regular
Aug 15 14:46:08 raspi3 charon: 13[IMV] created Jun 16 20:09:17 2015, modified Jun 16 20:09:17 2015, accessed Jun 16 20:09:17 2015
Aug 15 14:46:08 raspi3 charon: 13[PTS] selected DH hash algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 13[PTS] selected PTS DH group is ECP_256
Aug 15 14:46:08 raspi3 charon: 13[PTS] nonce length is 20
Aug 15 14:46:08 raspi3 charon: 13[PTS] initiator nonce: => 20 bytes @ 0x11d890
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 27 B7 51 A0 C8 66 92 54 F0 57 C1 49 9D 2A 7D 3A '.Q..f.T.W.I.*}:
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: F1 38 81 26 .8.&
Aug 15 14:46:08 raspi3 charon: 13[PTS] responder nonce: => 20 bytes @ 0x11e418
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 96 48 1F 52 8C A6 D5 6E 5F A4 17 2B AF BE 26 71 .H.R...n_..+..&q
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 49 73 01 42 Is.B
Aug 15 14:46:08 raspi3 charon: 13[PTS] shared DH secret: => 32 bytes @ 0x127170
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: AA FE 9F 01 D7 CC 22 17 FF 35 CF 9C 70 41 7B 11 ......"..5..pA{.
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: D0 3C B6 32 BF 3D 80 BF 73 32 1E 95 F3 20 9E D1 .<.2.=..s2... ..
Aug 15 14:46:08 raspi3 charon: 13[PTS] secret assessment value: => 20 bytes @ 0x11e9f0
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: B2 E0 AB DF 89 C5 1D B2 A3 51 FD A9 C8 3B F8 7F .........Q...;..
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 68 50 6C DE hPl.
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC message with ID 0xe1b84e91
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 13[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 13[TNC] sending PB-TNC CDATA batch (902 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 13[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 13[ENC] generating IKE_AUTH request 13 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1072 bytes)
Aug 15 14:46:08 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 14[ENC] parsed IKE_AUTH response 13 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 14[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 14[TNC] received TNCCS batch (80 bytes)
Aug 15 14:46:08 raspi3 charon: 14[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 14[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing IETF/PB-PA message (72 bytes)
Aug 15 14:46:08 raspi3 charon: 14[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 14[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC message with ID 0xed256fac
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Request Functional Component Evidence' 0x005597/0x00100000
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Generate Attestation Evidence' 0x005597/0x00200000
Aug 15 14:46:08 raspi3 charon: 14[IMC] evidence requested for 1 functional components
Aug 15 14:46:08 raspi3 charon: 14[PTS] * ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] loaded ima measurements '/sys/kernel/security/ima/binary_runtime_measurements' (434 entries)
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: dd:ee:60:04:dc:3b:d4:ee:30:04:06:cd:93:18:1c:5a:21:87:b5:9b
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:boot_aggregate'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 65:ee:0c:a2:cd:ac:0d:67:f8:1a:fd:53:7b:96:75:6f:3b:b8:0f:82
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/init'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 6b:a1:a0:58:89:a8:f2:57:53:42:b5:dc:5f:3e:de:54:89:8a:ee:29
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/sh'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 85:e6:6e:7a:96:98:8b:0a:af:c8:88:46:5d:7a:fe:b5:e9:d3:c2:3e
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/klibc-sO6SifHCdmbehHGtm0y1yHu6vb0.so'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 68:4a:c3:8d:48:55:be:e0:21:93:4f:52:a0:d2:3d:66:86:0c:b2:82
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/mkdir'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 4b:f9:e0:ee:b2:29:ce:9d:b3:32:4d:c7:89:b7:e5:85:46:7e:67:ea
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/mount'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: f6:79:f9:cb:f3:45:8b:6c:f1:2b:c8:c7:25:ac:17:03:b8:ee:44:3b
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/etc/udev/udev.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 1b:58:34:3c:0b:26:f2:82:9e:44:92:14:14:93:73:66:d9:a6:12:3e
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/conf/arch.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 07:5c:e3:03:d5:16:29:7f:60:6e:ef:d6:64:a6:f9:a6:1b:a7:87:95
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/conf/initramfs.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8e:36:36:07:ce:6a:2d:e3:03:91:a1:1c:64:75:3c:e2:e2:02:08:87
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/functions'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 0d:16:c7:df:df:07:a1:f8:47:70:04:ef:c9:fb:1a:18:ea:f6:74:55
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/cat'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8a:6a:02:1d:e5:80:60:e8:06:24:5e:30:79:d5:23:fa:2c:3a:9f:ef
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/ORDER'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: d0:dc:06:f1:a3:92:d4:50:54:48:57:2c:d5:20:b1:ba:6e:53:ff:14
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/all_generic_ide'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: ff:19:54:90:8c:fe:4d:2e:37:c8:0e:05:40:41:e1:2d:59:f6:0f:e3
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/blacklist'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: b9:7b:5e:84:9f:e9:ed:82:30:09:f1:88:f5:e3:bb:c4:5a:ec:fc:d2
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/keymap'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 77:66:42:2c:b3:fd:a6:ce:26:a1:0d:a4:65:b7:a9:45:c9:d3:36:37
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/udev'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 86:5d:0d:73:cc:01:24:8e:01:fe:2c:db:e9:5e:e1:f5:37:11:11:1f
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/sbin/udevd'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 70:8e:97:48:bb:27:0e:55:d1:e5:e8:54:15:2b:ec:c9:08:6b:e4:f9
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/ld-linux-armhf.so.3'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 04:92:98:b0:7e:fe:40:eb:8e:97:ed:74:d7:f3:b7:cf:f4:5c:07:0c
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/etc/ld.so.cache'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 20:ef:47:e0:ec:ba:67:89:cc:63:12:4b:d3:4b:03:7f:db:48:56:24
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/arm-linux-gnueabihf/libselinux.so.1'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8a:17:94:db:04:b0:eb:af:9c:7b:c4:04:29:7f:c4:7a:1a:b5:6c:1d
Aug 15 14:46:08 raspi3 charon: [ Incomplete diff, document too large... ]
strongSwan IPsec configuration file */etc/ipsec.conf*
<pre>
config setup
charondebug="tnc 2, imc 2, imv 2, pts 3"
conn %default
ike=aes128-sha256-ecp256!
esp=aes128-sha256-ecp256!
keyexchange=ikev2
conn peer
left=10.10.1.39
leftauth=eap-ttls
leftcert=raspi3Cert.pem
leftid=raspi3.example.com
leftfirewall=yes
right=10.10.1.40
rightauth=any
rightid=raspi4.example.com
type=transport
auto=add
</pre>
strongSwan IPsec secrets file */etc/ipsec.secrets*
<pre>
: RSA raspi3Key.pem
</pre>
strongSwan configuration file */etc/strongswan.conf*
<pre>
# strongswan.conf - strongSwan configuration file
charon {
load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke
half_open_timeout = 90
plugins {
eap-ttls
{
max_message_count = 0
request_peer_auth = yes
phase2_piggyback = yes
phase2_tnc = yes
}
eap-tnc {
max_message_count = 0
}
tnccs-20 {
mutual = yes
}
}
}
libimcv {
database = sqlite:///etc/pts/config.db
policy_script = ipsec imv_policy_manager
plugins {
imc-os {
device_pubkey = /etc/pts/aik3Pub.der
}
imc-attestation {
aik_blob = /etc/pts/aik3Blob.bin
aik_cert = /etc/pts/aik3Cert.der
}
imv-attestation {
cadir = /etc/pts/cacerts
hash_algorithm = sha1
}
}
}
libtls {
suites = TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
}
pt-tls-client {
load = random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 curl
}
attest {
database=sqlite:///etc/pts/config.db
}
</pre>
<pre>
Aug 15 14:45:55 raspi3 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.3.1, Linux 3.18.13-v7+, armv7l)
Aug 15 14:45:55 raspi3 charon: 00[TNC] TNC recommendation policy is 'default'
Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMVs from '/etc/tnc_config'
Aug 15 14:45:55 raspi3 charon: 00[TNC] added IETF attributes
Aug 15 14:45:55 raspi3 charon: 00[TNC] added ITA-HSR attributes
Aug 15 14:45:55 raspi3 charon: 00[TNC] added TCG attributes
Aug 15 14:45:55 raspi3 charon: 00[PTS] added TCG functional component namespace
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component namespace
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted GRUB Boot Loader'
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Trusted Boot'
Aug 15 14:45:55 raspi3 charon: 00[PTS] added ITA-HSR functional component 'Linux IMA'
Aug 15 14:45:55 raspi3 charon: 00[LIB] libimcv initialized
</pre>
Loading Attestation IMV
<pre>
Aug 15 14:45:55 raspi3 charon: 00[IMV] IMV 1 "Attestation" initialized
Aug 15 14:45:55 raspi3 charon: 00[PTS] loading PTS ca certificates from '/etc/pts/cacerts'
Aug 15 14:45:55 raspi3 charon: 00[PTS] loaded ca certificate "C=US, O=TNC Demo, CN=AIK CA" from '/etc/pts/cacerts/aikCaCert.pem'
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 supports 2 message types: 'TCG/PTS' 0x005597/0x00000001 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMV 1 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imv-attestation.so'
</pre>
Loading OS IMC
<pre>
Aug 15 14:45:55 raspi3 charon: 00[TNC] loading IMCs from '/etc/tnc_config'
Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 1 "OS" initialized
Aug 15 14:45:55 raspi3 charon: 00[IMC] processing "/etc/debian_version" file
Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system name is 'Debian'
Aug 15 14:45:55 raspi3 charon: 00[IMC] operating system version is '7.8 armv7l'
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 supports 1 message type: 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 1 "OS" loaded from '/usr/lib/ipsec/imcvs/imc-os.so'
</pre>
Loading Attestation IMC
<pre>
Aug 15 14:45:55 raspi3 charon: 00[IMC] IMC 2 "Attestation" initialized
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA1[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS measurement algorithm HASH_SHA256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS measurement algorithm HASH_SHA384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_2048[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1536[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group MODP_1024[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] mandatory PTS DH group ECP_256[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[PTS] optional PTS DH group ECP_384[openssl] available
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 supports 1 message type: 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:45:55 raspi3 charon: 00[TNC] IMC 2 "Attestation" loaded from '/usr/lib/ipsec/imcvs/imc-attestation.so'
</pre>
<pre>
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA" from '/etc/ipsec.d/cacerts/demoCaCert.pem'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded ca certificate "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA" from '/etc/ipsec.d/cacerts/MSE_CA_Cert.pem'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading crls from '/etc/ipsec.d/crls'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loading secrets from '/etc/ipsec.secrets'
Aug 15 14:45:55 raspi3 charon: 00[CFG] loaded RSA private key from '/etc/ipsec.d/private/raspi3Key.pem'
Aug 15 14:45:55 raspi3 charon: 00[LIB] loaded plugins: charon random nonce x509 revocation constraints pkcs1 pkcs8 pem openssl pubkey tnc-imc tnc-imv tnc-tnccs tnccs-20 eap-identity eap-ttls eap-tnc sqlite curl kernel-netlink socket-default updown stroke
Aug 15 14:45:55 raspi3 charon: 00[JOB] spawning 16 worker threads
Aug 15 14:45:55 raspi3 charon: 06[CFG] received stroke: add connection 'peer'
Aug 15 14:45:55 raspi3 charon: 06[CFG] loaded certificate "C=US, O=TNC Demo, CN=raspi3.example.com" from 'raspi3Cert.pem'
Aug 15 14:45:55 raspi3 charon: 06[CFG] added configuration 'peer'
</pre>
Initiating the connection
<pre>
Aug 15 14:46:05 raspi3 charon: 10[CFG] received stroke: initiate 'peer'
Aug 15 14:46:05 raspi3 charon: 11[IKE] initiating IKE_SA peer[1] to 10.10.1.40
Aug 15 14:46:05 raspi3 charon: 11[ENC] generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(HASH_ALG) ]
Aug 15 14:46:05 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[500] to 10.10.1.40[500] (256 bytes)
Aug 15 14:46:05 raspi3 charon: 12[NET] received packet: from 10.10.1.40[500] to 10.10.1.39[500] (309 bytes)
Aug 15 14:46:05 raspi3 charon: 12[ENC] parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(HASH_ALG) N(MULT_AUTH) ]
Aug 15 14:46:05 raspi3 charon: 12[IKE] received cert request for "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] received cert request for "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] sending cert request for "C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] sending cert request for "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 12[IKE] establishing CHILD_SA peer
Aug 15 14:46:05 raspi3 charon: 12[ENC] generating IKE_AUTH request 1 [ IDi N(INIT_CONTACT) CERTREQ IDr N(USE_TRANSP) SA TSi TSr N(MOBIKE_SUP) N(NO_ADD_ADDR) N(MULT_AUTH) N(EAP_ONLY) ]
Aug 15 14:46:05 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (304 bytes)
Aug 15 14:46:05 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (112 bytes)
Aug 15 14:46:05 raspi3 charon: 13[ENC] parsed IKE_AUTH response 1 [ IDr EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 13[IKE] server requested EAP_TTLS authentication (id 0xDB)
Aug 15 14:46:05 raspi3 charon: 13[TLS] EAP_TTLS version is v0
Aug 15 14:46:05 raspi3 charon: 13[IKE] allow mutual EAP-only authentication
Aug 15 14:46:05 raspi3 charon: 13[ENC] generating IKE_AUTH request 2 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (208 bytes)
Aug 15 14:46:05 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (1104 bytes)
Aug 15 14:46:05 raspi3 charon: 14[ENC] parsed IKE_AUTH response 2 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 14[ENC] generating IKE_AUTH request 3 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 14[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (80 bytes)
Aug 15 14:46:05 raspi3 charon: 15[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (480 bytes)
Aug 15 14:46:05 raspi3 charon: 15[ENC] parsed IKE_AUTH response 3 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 15[TLS] negotiated TLS 1.2 using suite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS server certificate 'C=US, O=TNC Demo, CN=raspi4.example.com'
Aug 15 14:46:05 raspi3 charon: 15[CFG] using certificate "C=US, O=TNC Demo, CN=raspi4.example.com"
Aug 15 14:46:05 raspi3 charon: 15[CFG] using trusted ca certificate "C=US, O=TNC Demo, CN=TNC Demo CA"
Aug 15 14:46:05 raspi3 charon: 15[CFG] checking certificate status of "C=US, O=TNC Demo, CN=raspi4.example.com"
Aug 15 14:46:05 raspi3 charon: 15[CFG] certificate status is not available
Aug 15 14:46:05 raspi3 charon: 15[CFG] reached self-signed root ca with a path length of 0
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS cert request for 'C=CH, O=MSE, OU=TSM_ITSec, CN=MSE CA
Aug 15 14:46:05 raspi3 charon: 15[TLS] received TLS cert request for 'C=US, O=TNC Demo, CN=TNC Demo CA
Aug 15 14:46:05 raspi3 charon: 15[TLS] sending TLS peer certificate 'C=US, O=TNC Demo, CN=raspi3.example.com'
Aug 15 14:46:05 raspi3 charon: 15[ENC] generating IKE_AUTH request 4 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 15[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1104 bytes)
Aug 15 14:46:05 raspi3 charon: 16[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (80 bytes)
Aug 15 14:46:05 raspi3 charon: 16[ENC] parsed IKE_AUTH response 4 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 16[ENC] generating IKE_AUTH request 5 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 16[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (352 bytes)
Aug 15 14:46:05 raspi3 charon: 09[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:05 raspi3 charon: 09[ENC] parsed IKE_AUTH response 5 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 09[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/ID]
Aug 15 14:46:05 raspi3 charon: 09[IKE] server requested EAP_IDENTITY authentication (id 0x00)
Aug 15 14:46:05 raspi3 charon: 09[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/ID]
Aug 15 14:46:05 raspi3 charon: 09[ENC] generating IKE_AUTH request 6 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 09[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (192 bytes)
Aug 15 14:46:05 raspi3 charon: 08[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (176 bytes)
Aug 15 14:46:05 raspi3 charon: 08[ENC] parsed IKE_AUTH response 6 [ EAP/REQ/TTLS ]
Aug 15 14:46:05 raspi3 charon: 08[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:05 raspi3 charon: 08[IKE] server requested EAP_PT_EAP authentication (id 0xB8)
Aug 15 14:46:05 raspi3 charon: 08[TLS] EAP_PT_EAP version is v1
Aug 15 14:46:05 raspi3 charon: 08[TNC] TNC client is handling outbound connection
Aug 15 14:46:05 raspi3 charon: 08[TNC] assigned TNCCS Connection ID 1
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh
Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK certificate from '/etc/pts/aik3Cert.der'
Aug 15 14:46:05 raspi3 charon: 08[PTS] loaded AIK Blob from '/etc/pts/aik3Blob.bin'
Aug 15 14:46:05 raspi3 charon: 08[PTS] AIK Blob: => 559 bytes @ 0x76eaf000
Aug 15 14:46:05 raspi3 charon: 08[PTS] 0: 01 01 00 00 00 12 00 00 00 04 00 00 00 00 01 00 ................
Aug 15 14:46:05 raspi3 charon: 08[PTS] 16: 01 00 02 00 00 00 0C 00 00 08 00 00 00 00 02 00 ................
Aug 15 14:46:05 raspi3 charon: 08[PTS] 32: 00 00 00 00 00 00 00 00 00 01 00 9B 3E 44 E6 65 ............>D.e
Aug 15 14:46:05 raspi3 charon: 08[PTS] 48: 0F DF 14 1A 57 B4 81 E3 7A 75 2F CC FE 8E 8C DE ....W...zu/.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 64: C8 42 17 25 43 3D 7B 83 01 F6 43 BB 38 0D 82 38 .B.%C={...C.8..8
Aug 15 14:46:05 raspi3 charon: 08[PTS] 80: 2E 66 DB 0D EC AE 21 22 A3 3D 1E 43 08 7C 7B F6 .f....!".=.C.|{.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 96: 78 95 73 05 37 E0 D0 22 52 AC 5A 00 0F F4 A3 92 x.s.7.."R.Z.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 112: 5D 70 E8 56 18 34 9C A6 86 3D DE 48 45 16 BD 67 ]p.V.4...=.HE..g
Aug 15 14:46:05 raspi3 charon: 08[PTS] 128: F1 6E B8 5D 03 82 DF 84 29 B6 8E 0A 76 FE 25 DD .n.]....)...v.%.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 144: 03 E1 81 C9 80 47 3A 9C 96 CD 0A D4 E9 ED F9 12 .....G:.........
Aug 15 14:46:05 raspi3 charon: 08[PTS] 160: 37 C8 65 AE 16 26 A1 9F B8 6E 50 DA 96 A1 39 93 7.e..&...nP...9.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 176: D2 FC 85 13 31 28 30 D3 F0 AF D4 8E B3 9A 39 8C ....1(0.......9.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 192: 2C 4E 67 1A 03 1C 6C 60 EB CF E1 25 78 E7 2E F5 ,Ng...l`...%x...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 208: 21 C8 66 C7 A2 52 89 81 26 52 75 84 C9 77 19 A2 !.f..R..&Ru..w..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 224: 69 45 CB 4A E6 77 8B 1F E1 CD F8 A7 0B 39 C9 B3 iE.J.w.......9..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 240: 91 43 C9 A0 F7 62 EE 9F E4 E7 5A 29 73 BB 7F 60 .C...b....Z)s..`
Aug 15 14:46:05 raspi3 charon: 08[PTS] 256: 12 97 F9 7C 72 43 BE C7 C1 4C 00 AD BC 7C 50 CF ...|rC...L...|P.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 272: 54 DF F2 10 56 B1 68 B2 58 CC 23 08 8D 78 4C 1A T...V.h.X.#..xL.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 288: 07 4B 20 05 3B 0E 6A C3 9E F3 6D 00 00 01 00 04 .K .;.j...m.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 304: 81 5C 12 BC D0 DC BC 6C CC 11 2B 38 9C 13 0B DD .\.....l..+8....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 320: CE B5 9A 9F 63 96 32 CD 17 5B 52 1A A8 E5 1F EB ....c.2..[R.....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 336: A2 88 8D EB 4E 50 F8 B6 48 F6 1A 7F A1 94 D9 A8 ....NP..H.......
Aug 15 14:46:05 raspi3 charon: 08[PTS] 352: 7D 86 6E BE C4 23 0B DA FE 99 41 8F 31 E3 D1 F7 }.n..#....A.1...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 368: 58 B9 FD FD A5 49 5B 25 B5 6C 5C BA 8A 2A 65 F6 X....I[%.l\..*e.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 384: 89 B9 14 C7 67 63 0D 53 08 95 54 43 34 9F A4 FE ....gc.S..TC4...
Aug 15 14:46:05 raspi3 charon: 08[PTS] 400: D9 18 95 AF 50 38 DC 73 AA 71 68 54 EF A0 C5 8F ....P8.s.qhT....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 416: 91 59 9F 22 44 E6 CE F8 E2 33 F2 58 9D DE 8E F4 .Y."D....3.X....
Aug 15 14:46:05 raspi3 charon: 08[PTS] 432: C3 52 95 6B 0E 95 22 42 B6 63 FF D3 34 4B 92 87 .R.k.."B.c..4K..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 448: 92 3E A0 55 07 92 92 52 95 FF 6F 9B C3 84 6F 8C .>.U...R..o...o.
Aug 15 14:46:05 raspi3 charon: 08[PTS] 464: C3 87 1C 42 35 95 83 7A 89 EA 78 05 71 73 1B 07 ...B5..z..x.qs..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 480: 29 20 B2 B0 C6 74 2C 26 04 27 BF E6 D9 B3 3D 28 ) ...t,&.'....=(
Aug 15 14:46:05 raspi3 charon: 08[PTS] 496: 40 CA 69 40 E7 35 4F 4A F4 0B C1 E8 27 3D 9F B4 @.i@.5OJ....'=..
Aug 15 14:46:05 raspi3 charon: 08[PTS] 512: 28 12 E9 56 35 FF C8 77 0B 19 71 85 EF 9C DF 3C (..V5..w..q....<
Aug 15 14:46:05 raspi3 charon: 08[PTS] 528: 41 6D 71 E0 E7 9E 12 7B 9B C0 05 A8 EA 4B 3F 4A Amq....{.....K?J
Aug 15 14:46:05 raspi3 charon: 08[PTS] 544: F7 1F 9C BF 3F D9 D2 B4 D2 91 60 0F 30 B3 6A ....?.....`.0.j
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 1: +long +excl -soh
Aug 15 14:46:05 raspi3 charon: 08[IMC] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 1 "OS" changed state of Connection ID 1 to 'Handshake'
Aug 15 14:46:05 raspi3 charon: 08[IMC] IMC 2 "Attestation" changed state of Connection ID 1 to 'Handshake'
Aug 15 14:46:05 raspi3 charon: 08[TNC] proposing PB-TNC mutual half duplex protocol
Aug 15 14:46:05 raspi3 charon: 08[IMC] operating system numeric version is 7.8
Aug 15 14:46:05 raspi3 charon: 08[IMC] last boot: Aug 15 07:56:52 UTC 2015, 17353 s ago
Aug 15 14:46:05 raspi3 charon: 08[IMC] IPv4 forwarding is disabled
Aug 15 14:46:05 raspi3 charon: 08[IMC] factory default password is disabled
Aug 15 14:46:05 raspi3 charon: 08[IMC] loaded device public key from '/etc/pts/aik3Pub.der'
Aug 15 14:46:05 raspi3 charon: 08[IMC] device ID is 565feb9e8462870dba884ce540a0768d68829873
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC message with ID 0x83cf019d
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-PA message type 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:46:05 raspi3 charon: 08[TNC] PB-TNC state transition from 'Init' to 'Server Working'
Aug 15 14:46:05 raspi3 charon: 08[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding ITA-HSR/PB-Mutual-Capability message
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-Language-Preference message
Aug 15 14:46:05 raspi3 charon: 08[TNC] adding IETF/PB-PA message
Aug 15 14:46:05 raspi3 charon: 08[TNC] sending PB-TNC CDATA batch (283 bytes) for Connection ID 1
Aug 15 14:46:05 raspi3 charon: 08[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:05 raspi3 charon: 08[ENC] generating IKE_AUTH request 7 [ EAP/RES/TTLS ]
Aug 15 14:46:05 raspi3 charon: 08[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (448 bytes)
Aug 15 14:46:08 raspi3 charon: 07[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (272 bytes)
Aug 15 14:46:08 raspi3 charon: 07[ENC] parsed IKE_AUTH response 7 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 07[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 07[TNC] received TNCCS batch (108 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing ITA-HSR/PB-Mutual-Capability message (16 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing IETF/PB-PA message (84 bytes)
Aug 15 14:46:08 raspi3 charon: 07[TNC] activating mutual PB-TNC half duplex protocol
Aug 15 14:46:08 raspi3 charon: 07[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC message with ID 0x42501f74
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000
Aug 15 14:46:08 raspi3 charon: 07[IMC] IMC 2 received a segmentation contract request from IMV 1 for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[IMC] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 07[PTS] supported PTS protocol capabilities: .VDT.
Aug 15 14:46:08 raspi3 charon: 07[PTS] selected PTS measurement algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC message with ID 0x1d5fa63a
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 07[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 07[TNC] assigned TNCCS Connection ID 2
Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" created a state for IF-TNCCS 2.0 Connection ID 2: +long +excl -soh
Aug 15 14:46:08 raspi3 charon: 07[IMV] over IF-T for Tunneled EAP 2.0 with maximum PA-TNC message size of 65490 bytes
Aug 15 14:46:08 raspi3 charon: 07[IMV] user AR identity 'raspi4.example.com' of type username authenticated by certificate
Aug 15 14:46:08 raspi3 charon: 07[IMV] machine AR identity '10.10.1.40' of type IPv4 address authenticated by unknown method
Aug 15 14:46:08 raspi3 charon: 07[IMV] IMV 1 "Attestation" changed state of Connection ID 2 to 'Handshake'
Aug 15 14:46:08 raspi3 charon: 07[TNC] PB-TNC state transition from 'Init' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 07[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 07[TNC] sending PB-TNC SDATA batch (8 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 07[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 07[ENC] generating IKE_AUTH request 8 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 07[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (176 bytes)
Aug 15 14:46:08 raspi3 charon: 06[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (432 bytes)
Aug 15 14:46:08 raspi3 charon: 06[ENC] parsed IKE_AUTH response 8 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 06[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 06[TNC] received TNCCS batch (267 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-Language-Preference message (31 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing IETF/PB-PA message (228 bytes)
Aug 15 14:46:08 raspi3 charon: 06[TNC] setting language preference to 'en'
Aug 15 14:46:08 raspi3 charon: 06[TNC] handling PB-PA message type 'IETF/Operating System' 0x000000/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 1
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC message with ID 0x366c28ea
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Product Information' 0x000000/0x00000002
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/String Version' 0x000000/0x00000004
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Numeric Version' 0x000000/0x00000003
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Operational Status' 0x000000/0x00000005
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Forwarding Enabled' 0x000000/0x0000000b
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'IETF/Factory Default Password Enabled' 0x000000/0x0000000c
Aug 15 14:46:08 raspi3 charon: 06[TNC] processing PA-TNC attribute type 'ITA-HSR/Device ID' 0x00902a/0x00000008
Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system name is 'Debian' from vendor Debian Project
Aug 15 14:46:08 raspi3 charon: 06[IMV] operating system version is '7.8 armv7l'
Aug 15 14:46:08 raspi3 charon: 06[IMV] device ID is 762872c90011671ef219b6a2a0c3c7dda875b43c
Aug 15 14:46:08 raspi3 charon: 06[IMV] assigned session ID 3 to Connection ID 2
Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: imv_policy_manager start successful
Aug 15 14:46:08 raspi3 charon: 06[IMV] policy: skipping enforcment 6
Aug 15 14:46:08 raspi3 charon: 06[IMV] FWDEN workitem 13
Aug 15 14:46:08 raspi3 charon: 06[IMV] FMETA workitem 14
Aug 15 14:46:08 raspi3 charon: 06[IMV] PCKGS workitem 15
Aug 15 14:46:08 raspi3 charon: 06[IMV] TCPOP workitem 16
Aug 15 14:46:08 raspi3 charon: 06[IMV] UDPOP workitem 17
Aug 15 14:46:08 raspi3 charon: 06[IMV] TPMRA workitem 18
Aug 15 14:46:08 raspi3 charon: 06[IMV] IMV 1 requests a segmentation contract for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC message with ID 0x918da8fe
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Max Attribute Size Request' 0x005597/0x00000021
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/Request PTS Protocol Capabilities' 0x005597/0x01000000
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PA-TNC attribute type 'TCG/PTS Measurement Algorithm Request' 0x005597/0x06000000
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 06[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 06[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 06[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 06[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 06[TNC] sending PB-TNC CDATA batch (92 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 06[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 06[ENC] generating IKE_AUTH request 9 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 06[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 05[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 05[ENC] parsed IKE_AUTH response 9 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 05[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 05[TNC] received TNCCS batch (87 bytes)
Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing IETF/PB-PA message (79 bytes)
Aug 15 14:46:08 raspi3 charon: 05[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 05[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC message with ID 0xaff3c130
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000
Aug 15 14:46:08 raspi3 charon: 05[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000
Aug 15 14:46:08 raspi3 charon: 05[IMC] metadata request for file '/etc/tnc_config'
Aug 15 14:46:08 raspi3 charon: 05[PTS] selected PTS DH group is ECP_256
Aug 15 14:46:08 raspi3 charon: 05[PTS] nonce length is 20
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC message with ID 0x5e3ee705
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 05[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 05[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 05[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 05[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 05[TNC] sending PB-TNC SDATA batch (92 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 05[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 05[ENC] generating IKE_AUTH request 10 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 05[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 11[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 11[ENC] parsed IKE_AUTH response 10 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 11[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 11[TNC] received TNCCS batch (92 bytes)
Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing IETF/PB-PA message (84 bytes)
Aug 15 14:46:08 raspi3 charon: 11[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC message with ID 0xf94741eb
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/Max Attribute Size Response' 0x005597/0x00000022
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Protocol Capabilities' 0x005597/0x02000000
Aug 15 14:46:08 raspi3 charon: 11[TNC] processing PA-TNC attribute type 'TCG/PTS Measurement Algorithm' 0x005597/0x07000000
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 received a segmentation contract response from IMC 2 for PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[IMV] maximum attribute size of 100000000 bytes with maximum segment size of 65446 bytes
Aug 15 14:46:08 raspi3 charon: 11[PTS] supported PTS protocol capabilities: .VDT.
Aug 15 14:46:08 raspi3 charon: 11[PTS] selected PTS measurement algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles FMETA workitem 14
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 requests metadata for file '/etc/tnc_config'
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handled FMETA workitem 14: allow - file metadata requested
Aug 15 14:46:08 raspi3 charon: 11[IMV] IMV 1 handles TPMRA workitem 18
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC message with ID 0xda2a70e9
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/Request File Metadata' 0x005597/0x00700000
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Parameters Request' 0x005597/0x03000000
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 11[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 11[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 11[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 11[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 11[TNC] sending PB-TNC CDATA batch (226 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 11[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 11[ENC] generating IKE_AUTH request 11 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 11[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (400 bytes)
Aug 15 14:46:08 raspi3 charon: 12[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (336 bytes)
Aug 15 14:46:08 raspi3 charon: 12[ENC] parsed IKE_AUTH response 11 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 12[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 12[TNC] received TNCCS batch (172 bytes)
Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing IETF/PB-PA message (164 bytes)
Aug 15 14:46:08 raspi3 charon: 12[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 12[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC message with ID 0xd27d5b33
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] processing PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000
Aug 15 14:46:08 raspi3 charon: 12[PTS] selected DH hash algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 12[PTS] initiator nonce: => 20 bytes @ 0x11d940
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 01 97 8C C2 90 09 6D 02 F0 0A 40 E1 8C 90 5F 15 ......m...@..._.
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: FB 4E 28 AD .N(.
Aug 15 14:46:08 raspi3 charon: 12[PTS] responder nonce: => 20 bytes @ 0x11d410
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 3D D0 72 39 3A E1 A0 E2 0B 30 B4 D4 D9 22 9F E0 =.r9:....0..."..
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: B6 D1 2A 01 ..*.
Aug 15 14:46:08 raspi3 charon: 12[PTS] shared DH secret: => 32 bytes @ 0x11e038
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: 5F 0F D8 1E B5 39 B4 E2 86 BF 0C 92 9E E3 3A EA _....9........:.
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: D7 23 93 EB C2 85 F5 09 EC DB C0 B1 E5 51 50 DE .#...........QP.
Aug 15 14:46:08 raspi3 charon: 12[PTS] secret assessment value: => 20 bytes @ 0x11c5e0
Aug 15 14:46:08 raspi3 charon: 12[PTS] 0: D8 9D 1E 70 CE 78 C3 13 F2 79 BA 5D 7C E5 05 7C ...p.x...y.]|..|
Aug 15 14:46:08 raspi3 charon: 12[PTS] 16: E0 E0 83 77 ...w
Aug 15 14:46:08 raspi3 charon: 12[PTS] TPM Version Info: Chip Version: 1.2.133.32, Spec Level: 2, Errata Rev: 3, Vendor ID: IFX
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC message with ID 0x641bcea1
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/TPM Version Information' 0x005597/0x09000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PA-TNC attribute type 'TCG/Attestation Identity Key' 0x005597/0x0e000000
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 12[TNC] TNC server is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 12[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 12[TNC] creating PB-TNC SDATA batch
Aug 15 14:46:08 raspi3 charon: 12[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 12[TNC] sending PB-TNC SDATA batch (87 bytes) for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 12[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 12[ENC] generating IKE_AUTH request 12 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 12[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 13[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (400 bytes)
Aug 15 14:46:08 raspi3 charon: 13[ENC] parsed IKE_AUTH response 12 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 13[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 13[TNC] received TNCCS batch (226 bytes)
Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC server is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PB-TNC CDATA batch for Connection ID 2
Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing IETF/PB-PA message (218 bytes)
Aug 15 14:46:08 raspi3 charon: 13[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 13[IMV] IMV 1 "Attestation" received message for Connection ID 2 from IMC 2 to IMV 1
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC message with ID 0x676268aa
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/Unix-Style File Metadata' 0x005597/0x00900000
Aug 15 14:46:08 raspi3 charon: 13[TNC] processing PA-TNC attribute type 'TCG/DH Nonce Parameters Response' 0x005597/0x04000000
Aug 15 14:46:08 raspi3 charon: 13[IMV] metadata request returned 1 file:
Aug 15 14:46:08 raspi3 charon: 13[IMV] 'tnc_config' (177 bytes) owner 0, group 0, type Regular
Aug 15 14:46:08 raspi3 charon: 13[IMV] created Jun 16 20:09:17 2015, modified Jun 16 20:09:17 2015, accessed Jun 16 20:09:17 2015
Aug 15 14:46:08 raspi3 charon: 13[PTS] selected DH hash algorithm is HASH_SHA1
Aug 15 14:46:08 raspi3 charon: 13[PTS] selected PTS DH group is ECP_256
Aug 15 14:46:08 raspi3 charon: 13[PTS] nonce length is 20
Aug 15 14:46:08 raspi3 charon: 13[PTS] initiator nonce: => 20 bytes @ 0x11d890
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 27 B7 51 A0 C8 66 92 54 F0 57 C1 49 9D 2A 7D 3A '.Q..f.T.W.I.*}:
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: F1 38 81 26 .8.&
Aug 15 14:46:08 raspi3 charon: 13[PTS] responder nonce: => 20 bytes @ 0x11e418
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: 96 48 1F 52 8C A6 D5 6E 5F A4 17 2B AF BE 26 71 .H.R...n_..+..&q
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 49 73 01 42 Is.B
Aug 15 14:46:08 raspi3 charon: 13[PTS] shared DH secret: => 32 bytes @ 0x127170
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: AA FE 9F 01 D7 CC 22 17 FF 35 CF 9C 70 41 7B 11 ......"..5..pA{.
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: D0 3C B6 32 BF 3D 80 BF 73 32 1E 95 F3 20 9E D1 .<.2.=..s2... ..
Aug 15 14:46:08 raspi3 charon: 13[PTS] secret assessment value: => 20 bytes @ 0x11e9f0
Aug 15 14:46:08 raspi3 charon: 13[PTS] 0: B2 E0 AB DF 89 C5 1D B2 A3 51 FD A9 C8 3B F8 7F .........Q...;..
Aug 15 14:46:08 raspi3 charon: 13[PTS] 16: 68 50 6C DE hPl.
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC message with ID 0xe1b84e91
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/DH Nonce Finish' 0x005597/0x05000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get TPM Version Information' 0x005597/0x08000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PA-TNC attribute type 'TCG/Get Attestation Identity Key' 0x005597/0x0d000000
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 13[TNC] TNC client is handling outbound connection
Aug 15 14:46:08 raspi3 charon: 13[TNC] PB-TNC state transition from 'Client Working' to 'Server Working'
Aug 15 14:46:08 raspi3 charon: 13[TNC] creating PB-TNC CDATA batch
Aug 15 14:46:08 raspi3 charon: 13[TNC] adding IETF/PB-PA message
Aug 15 14:46:08 raspi3 charon: 13[TNC] sending PB-TNC CDATA batch (902 bytes) for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 13[IKE] sending tunneled EAP-TTLS AVP [EAP/RES/PT]
Aug 15 14:46:08 raspi3 charon: 13[ENC] generating IKE_AUTH request 13 [ EAP/RES/TTLS ]
Aug 15 14:46:08 raspi3 charon: 13[NET] sending packet: from 10.10.1.39[4500] to 10.10.1.40[4500] (1072 bytes)
Aug 15 14:46:08 raspi3 charon: 14[NET] received packet: from 10.10.1.40[4500] to 10.10.1.39[4500] (256 bytes)
Aug 15 14:46:08 raspi3 charon: 14[ENC] parsed IKE_AUTH response 13 [ EAP/REQ/TTLS ]
Aug 15 14:46:08 raspi3 charon: 14[IKE] received tunneled EAP-TTLS AVP [EAP/REQ/PT]
Aug 15 14:46:08 raspi3 charon: 14[TNC] received TNCCS batch (80 bytes)
Aug 15 14:46:08 raspi3 charon: 14[TNC] TNC client is handling inbound connection
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PB-TNC SDATA batch for Connection ID 1
Aug 15 14:46:08 raspi3 charon: 14[TNC] PB-TNC state transition from 'Server Working' to 'Client Working'
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing IETF/PB-PA message (72 bytes)
Aug 15 14:46:08 raspi3 charon: 14[TNC] handling PB-PA message type 'TCG/PTS' 0x005597/0x00000001
Aug 15 14:46:08 raspi3 charon: 14[IMC] IMC 2 "Attestation" received message for Connection ID 1 from IMV 1
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC message with ID 0xed256fac
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Request Functional Component Evidence' 0x005597/0x00100000
Aug 15 14:46:08 raspi3 charon: 14[TNC] processing PA-TNC attribute type 'TCG/Generate Attestation Evidence' 0x005597/0x00200000
Aug 15 14:46:08 raspi3 charon: 14[IMC] evidence requested for 1 functional components
Aug 15 14:46:08 raspi3 charon: 14[PTS] * ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] loaded ima measurements '/sys/kernel/security/ima/binary_runtime_measurements' (434 entries)
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: dd:ee:60:04:dc:3b:d4:ee:30:04:06:cd:93:18:1c:5a:21:87:b5:9b
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:boot_aggregate'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 65:ee:0c:a2:cd:ac:0d:67:f8:1a:fd:53:7b:96:75:6f:3b:b8:0f:82
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/init'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 6b:a1:a0:58:89:a8:f2:57:53:42:b5:dc:5f:3e:de:54:89:8a:ee:29
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/sh'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 85:e6:6e:7a:96:98:8b:0a:af:c8:88:46:5d:7a:fe:b5:e9:d3:c2:3e
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/klibc-sO6SifHCdmbehHGtm0y1yHu6vb0.so'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 68:4a:c3:8d:48:55:be:e0:21:93:4f:52:a0:d2:3d:66:86:0c:b2:82
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/mkdir'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 4b:f9:e0:ee:b2:29:ce:9d:b3:32:4d:c7:89:b7:e5:85:46:7e:67:ea
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/mount'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: f6:79:f9:cb:f3:45:8b:6c:f1:2b:c8:c7:25:ac:17:03:b8:ee:44:3b
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/etc/udev/udev.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 1b:58:34:3c:0b:26:f2:82:9e:44:92:14:14:93:73:66:d9:a6:12:3e
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/conf/arch.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 07:5c:e3:03:d5:16:29:7f:60:6e:ef:d6:64:a6:f9:a6:1b:a7:87:95
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/conf/initramfs.conf'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8e:36:36:07:ce:6a:2d:e3:03:91:a1:1c:64:75:3c:e2:e2:02:08:87
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/functions'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 0d:16:c7:df:df:07:a1:f8:47:70:04:ef:c9:fb:1a:18:ea:f6:74:55
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/bin/cat'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8a:6a:02:1d:e5:80:60:e8:06:24:5e:30:79:d5:23:fa:2c:3a:9f:ef
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/ORDER'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: d0:dc:06:f1:a3:92:d4:50:54:48:57:2c:d5:20:b1:ba:6e:53:ff:14
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/all_generic_ide'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: ff:19:54:90:8c:fe:4d:2e:37:c8:0e:05:40:41:e1:2d:59:f6:0f:e3
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/blacklist'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: b9:7b:5e:84:9f:e9:ed:82:30:09:f1:88:f5:e3:bb:c4:5a:ec:fc:d2
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/keymap'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 77:66:42:2c:b3:fd:a6:ce:26:a1:0d:a4:65:b7:a9:45:c9:d3:36:37
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/scripts/init-top/udev'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 86:5d:0d:73:cc:01:24:8e:01:fe:2c:db:e9:5e:e1:f5:37:11:11:1f
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/sbin/udevd'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 70:8e:97:48:bb:27:0e:55:d1:e5:e8:54:15:2b:ec:c9:08:6b:e4:f9
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/ld-linux-armhf.so.3'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 04:92:98:b0:7e:fe:40:eb:8e:97:ed:74:d7:f3:b7:cf:f4:5c:07:0c
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/etc/ld.so.cache'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 20:ef:47:e0:ec:ba:67:89:cc:63:12:4b:d3:4b:03:7f:db:48:56:24
Aug 15 14:46:08 raspi3 charon: 14[PTS] 'sha1:/lib/arm-linux-gnueabihf/libselinux.so.1'
Aug 15 14:46:08 raspi3 charon: 14[PTS] ITA-HSR functional component 'Linux IMA' [K.] 'Operating System'
Aug 15 14:46:08 raspi3 charon: 14[PTS] measurement time: Jan 01 01:00:04 1970
Aug 15 14:46:08 raspi3 charon: 14[PTS] PCR 10 extended with: 8a:17:94:db:04:b0:eb:af:9c:7b:c4:04:29:7f:c4:7a:1a:b5:6c:1d
Aug 15 14:46:08 raspi3 charon: [ Incomplete diff, document too large... ]