/testing/guestbin/swan-prep
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# /usr/bin/pk12util -i /testing/x509/strongswan/strongEast.p12 -d sql:/etc/ipsec.d -w /testing/x509/nss-pw
pk12util: PKCS12 IMPORT SUCCESSFUL
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# # Tuomo: why doesn't ipsec checknss --settrust work here?
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# certutil -M -d sql:/etc/ipsec.d -n "strongSwan CA - strongSwan" -t CT,,
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# #ipsec start
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ipsec _stackmanager start
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ipsec pluto --config /etc/ipsec.conf --leak-detective
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# /testing/pluto/bin/wait-until-pluto-started
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ipsec auto --add westnet-eastnet-ikev2
002 added connection description "westnet-eastnet-ikev2"
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ipsec whack --impair suppress-retransmits
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# echo "initdone"
initdone
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ipsec whack --shutdown
002 shutting down
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# ../bin/check-for-core.sh
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# if [ -f /sbin/ausearch ]; then ausearch -r -m avc -ts recent ; fi
type=AVC msg=audit(1566824781.750:169760): avc:  denied  { write } for  pid=5361 comm="ip" path="/tmp/pluto.log" dev="dm-0" ino=942309374 scontext=unconfined_u:system_r:ifconfig_t:s0 tcontext=unconfined_u:object_r:container_file_t:s0:c718,c778 tclass=file permissive=1
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]# : ==== end ====
kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-ecdsa-01\[root@east ikev2-ecdsa-01]#