Menu
▾
▴
[Ipsec-tools-commits] [ ipsec-tools-Bugs-1208425 ] ESP Authentication aalgo null problem
|
From: SourceForge.net <no...@so...> - 2005-05-25 13:08:46
|
Bugs item #1208425, was opened at 2005-05-25 14:50 Message generated for change (Comment added) made by maikbachmann You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=541482&aid=1208425&group_id=74601 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: Configuration Group: 0.5 branch Status: Open Resolution: None Priority: 5 Submitted By: Nobody/Anonymous (nobody) Assigned to: Nobody/Anonymous (nobody) Summary: ESP Authentication aalgo null problem Initial Comment: ENV: Debian sarge ipsec-tools 0.5.2-1 setkey error EINVAL "invalid argument" This is the SA, -A null returns the EINVAL add 2001:0:0:1:0:0:56:515b 2001:0:0:2:0:0:6a:3a83 esp 1000 -r 0 -m transport -E rijndael-cbc "0123456789012345" -A null; Here is output of setkey -cv darth-vader:/usr/local/etc# sh ipsec.conf | more sadb_msg{ version=2 type=3 errno=0 satype=3 len=19 reserved=0 seq=0 pid=5877 sadb_ext{ len=3 type=9 } sadb_key{ bits=128 reserved=0 key= 30313233 34353637 38393031 32333435 } sadb_ext{ len=2 type=1 } sadb_sa{ spi=1000 replay=0 state=0 auth=251 encrypt=12 flags=0x00000040 } sadb_ext{ len=2 type=19 } sadb_x_sa2{ mode=1 reqid=0 reserved1=0 reserved2=0 sequence=0 } sadb_ext{ len=5 type=5 } sadb_address{ proto=255 prefixlen=128 reserved=0x0000 } sockaddr{ len=28 family=10 port=0 flowinfo=0x00000000, scope_id=0x00000000 20010000 00000001 00000000 0056515b } sadb_ext{ len=5 type=6 } sadb_address{ proto=255 prefixlen=128 reserved=0x0000 } sockaddr{ len=28 family=10 port=0 flowinfo=0x00000000, scope_id=0x00000000 20010000 00000002 00000000 006a3a83 } sadb_msg{ version=2 type=3 errno=22 satype=3 len=2 reserved=0 seq=0 pid=5877 Invalid argument. Moving the ";" around, joining lines etc does not help. From the source files (lex/yacc) it should go into ALG_AUTH_NOKEY branch but this seems not to be working. Also auth 251 from sadb_sa seems strange to me - shouldn't this be 286 ? Thx for help ---Maik ---------------------------------------------------------------------- Comment By: Maik Bachmann (maikbachmann) Date: 2005-05-25 15:08 Message: Logged In: YES user_id=1285136 update: same SA works perfectly on FreeBSD 4.9 ---Maik ---------------------------------------------------------------------- Comment By: Nobody/Anonymous (nobody) Date: 2005-05-25 14:57 Message: Logged In: NO UPDATE: same SA works perfect for FreeBSD4.9 ---Maik ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=541482&aid=1208425&group_id=74601 |
