[Ipsec-tools-users] SPMD Internal Error: Can't set security policy

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi All,

Please help!!!

I am trying to establish a IPv4 point-to-point connection using IPSec.
When i start spmd, following internal error appears and hence no Security Policy is configured.

2010-06-11 00:20:53 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-11 00:20:53 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-11 00:20:53 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-11 00:20:53 [DEBUG]: spmd_pfkey.c:1095: [SP UPDATE] SRC=[192.168.0.14]:0 DST=[192.168.0.1]:0
2010-06-11 00:20:53 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-10 23:18:20 [INTERNAL_ERR]: spmd_pfkey.c:997: Maybe can't set SP: selector=ike_tun_sel_out
2010-06-10 23:18:20 [DEBUG]: spmd_pfkey.c:1095: [SP UPDATE] SRC=[192.168.0.14]:0 DST=[192.168.0.1]:0
2010-06-10 23:18:20 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-10 23:18:20 [DEBUG]: spmd_pfkey.c:1095: [SP UPDATE] SRC=[192.168.0.14]:0 DST=[192.168.0.1]:0
2010-06-10 23:18:20 [DEBUG]: if_pfkeyv2.c:525:  SENT PF_KEY MESSAGE TO KERNEL
2010-06-10 23:18:20 [INTERNAL_ERR]: spmd_pfkey.c:997: Maybe can't set SP: selector=ike_tun_sel_in

What is the reason of this internal error: "May be can't set SP" ?
There is no problem with the configuration files. The same configuration worked for me in another linux kernel.
So i am sure that configuration file is ok.

Looking at the source code, i found that the following function returns error:
===========================================
        ret = spmd_spd_update(sl, rc, urgent); /* urgent == 1 */
        if (ret<0) {
                SPMD_PLOG(SPMD_L_INTERR, "Maybe can't set SP: selector=%.*s", sl->sl_index->l, sl->sl_index->v);
                goto err;
        }
===========================================

Please Help!!! An early response will be of great help for me.

Best Regards,
Arif

DISCLAIMER:

-----------------------------------------------------------------------------------------------------------------------

The contents of this e-mail and any attachment(s) are confidential and
intended

for the named recipient(s) only. 

It shall not attach any liability on the originator or NECHCL or its

affiliates. Any views or opinions presented in 

this email are solely those of the author and may not necessarily reflect the

opinions of NECHCL or its affiliates. 

Any form of reproduction, dissemination, copying, disclosure, modification,

distribution and / or publication of 

this message without the prior written consent of the author of this e-mail is

strictly prohibited. If you have 

received this email in error please delete it and notify the sender

immediately. .

-----------------------------------------------------------------------------------------------------------------------