Test Information

Title	5.2.5 Host transport mode, ESP=AES-CTR HMAC-SHA1
CommandLine	./p2_HTR_E_Common.seq -pkt ./p2_HTR_E_ICMP_common.def test_type=ADVANCED support=AES_CTR_HMAC_SHA1_SUPPORT ealgo=aes-ctr eauth=hmac-sha1 einkey=E_aesctr_in_key ainkey=A_hmacsha1_in_key eoutkey=E_aesctr_out_key aoutkey=A_hmacsha1_out_key ealgo_from=ealgo_aesctr_hmacsha1_in ealgo_to=ealgo_aesctr_hmacsha1_out -log 18.html -ti 5.2.5 Host transport mode, ESP=AES-CTR HMAC-SHA1
TestVersion	V6PC_P2_IPsec_1_1_2
ToolVersion	REL_3_0_12
Start	2008/05/06 11:02:09
Tn	/usr/local/v6eval//etc//tn.def
Nu	/usr/local/v6eval//etc//nut.def
Pkt	./p2_HTR_E_ICMP_common.def
System	rhel51
TargetName	RHEL5.1
HostName	IPv6testee2.nay.redhat.com
Type	host

Test Sequence Execution Log

11:02:09	Start
	* Target initialization phase * Target: Clear all SAD and SPD entries
11:02:09	vRemote(ipsecClearAll.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecClearAll.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 '' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$\|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$\|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdflush; flush;' \| setkey -c'' command /bin/echo 'spdflush; flush;' \| setkey -c sendMessagesSync: got echo back of /bin/echo 'spdflush; flush;' \| setkey -c rCommand: Try to get command prompt (0.2 sec) [root@IPv6testee2 ~]# rCommand: CmdOutput=`` [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT]
11:02:10	Start Capturing Packets (Link0)
	Target: Set SAD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport protocol=esp ealgo=aes-ctr ealgokey=ipv6readylogaescin01 eauth=hmac-sha1 eauthkey=ipv6readylogsha1in01
11:02:10	vRemote(ipsecSetSAD.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport protocol=esp ealgo=aes-ctr ealgokey=ipv6readylogaescin01 eauth=hmac-sha1 eauthkey=ipv6readylogsha1in01 '' eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_spi='0x1000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='aes-ctr' eval $main::rOpt_ealgokey='ipv6readylogaescin01' eval $main::rOpt_eauth='hmac-sha1' eval $main::rOpt_eauthkey='ipv6readylogsha1in01' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$\|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$\|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E aes-ctr "ipv6readylogaescin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' \| setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E aes-ctr "ipv6readyloga escin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' \| setkey -c line 0: unsupported algorithm at [ipv6readylogaescin01] No SAD entries. [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E aes-ctr "ipv6readylogaescin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' \| setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E aes-ctr "ipv6readyloga escin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' \| setkey -c line 0: unsupported algorithm at [ipv6readylogaescin01] No SAD entries. [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [root@IPv6terCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT]
	Target: Set SPD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in protocol=esp-auth mode=transport
11:02:15	vRemote(ipsecSetSPD.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in protocol=esp-auth mode=transport '' eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='in' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$\|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$\|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' \| setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' \| s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=264 seq=1 pid=5896 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=274 seq=0 pid=5896 refcnt=2 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' \| setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' \| s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=264 seq=1 pid=5896 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=274 seq=0 pid=5896 refcnt=2 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT]
	Target: Set SAD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport protocol=esp ealgo=aes-ctr ealgokey=ipv6readylogaescout1 eauth=hmac-sha1 eauthkey=ipv6readylogsha1out1
11:02:22	vRemote(ipsecSetSAD.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport protocol=esp ealgo=aes-ctr ealgokey=ipv6readylogaescout1 eauth=hmac-sha1 eauthkey=ipv6readylogsha1out1 '' eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_spi='0x2000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='aes-ctr' eval $main::rOpt_ealgokey='ipv6readylogaescout1' eval $main::rOpt_eauth='hmac-sha1' eval $main::rOpt_eauthkey='ipv6readylogsha1out1' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$\|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$\|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E aes-ctr "ipv6readylogaescout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' \| setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E aes-ctr "ipv6readyloga escout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' \| setkey -c line 0: unsupported algorithm at [ipv6readylogaescout1] No SAD entries. [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E aes-ctr "ipv6readylogaescout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' \| setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E aes-ctr "ipv6readyloga escout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' \| setkey -c line 0: unsupported algorithm at [ipv6readylogaescout1] No SAD entries. [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT]
	Target: Set SPD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any direction=out protocol=esp-auth mode=transport
11:02:28	vRemote(ipsecSetSPD.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any direction=out protocol=esp-auth mode=transport '' eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='out' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$\|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$\|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' \| setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' \| setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=264 seq=2 pid=5909 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:25:21 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=281 seq=1 pid=5909 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=274 seq=0 pid=5909 refcnt=1 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' \| setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' \| setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=264 seq=2 pid=5909 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:25:21 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=281 seq=1 pid=5909 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:25:08 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=274 seq=0 pid=5909 refcnt=1 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$\|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT]
	Target: Enable and start IPsec function
11:02:33	vRemote(ipsecEnable.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecEnable.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 ''
	* Target testing phase *
11:02:33	Clear Captured Packets (Link0)
11:02:33	vSend(Link0,echo_request_from_host1_esp) Send Echo Request with ESP from HOST-1(TN)
11:02:33	vRecv(Link0,echo_reply_to_host1_esp ns_to_router_linkaddr_w_linkaddr rs_from_nut rs_from_nut_wsll ns_to_router_wo_sllopt ns_to_router_linkaddr ns_to_router rs_from_nut_wunspec) timeout:3 cntLimit:0 seektime:0 vRecv() return status=1
	TN received no echo reply from End-Node(NUT) to HOST-1(TN). NG
11:02:36	End

Packet Reverse Log

Send Echo Request with ESP from HOST-1(TN) at 11:02:33

Frame_Ether                     (length:106)
| Hdr_Ether                       (length:14)
| | DestinationAddress               = 00:07:e9:0b:28:41
| | SourceAddress                    = 00:00:00:00:00:0f
| | Type                             = 34525
| Packet_IPv6                     (length:92)
| | Hdr_IPv6                        (length:40)
| | | Version                          = 6
| | | TrafficClass                     = 0
| | | FlowLabel                        = 0
| | | PayloadLength                    = 52
| | | NextHeader                       = 50
| | | HopLimit                         = 64
| | | SourceAddress                    = 3ffe:501:ffff:1::1
| | | DestinationAddress               = 3ffe:501:ffff:0:207:e9ff:fe0b:2841
| | Hdr_ESP                         (length:52)
| | | SPI                              = 4096
| | | SequenceNumber                   = 1
| | | algorithm                        = ealgo_aesctr_hmacsha1_in
| | | IVEC                             = 00000000 00000000
| | | Decrypted                       (length:24)
| | | | ESPPayload                      (length:22)
| | | | | ICMPv6_EchoRequest              (length:22)
| | | | | | Type                             = 128
| | | | | | Code                             = 0
| | | | | | Checksum                         = 26848 calc(26848)
| | | | | | Identifier                       = 0
| | | | | | SequenceNumber                   = 0
| | | | | | Payload                         (length:14)
| | | | | | | data                             = 5061644c 656e2069  73205a65 726f
| | | | Padding                          = 
| | | | PadLength                        = 0
| | | | NextHeader                       = 58
| | | ICV                              = 543701cc 4cd72dcd  212afb4e calc(543701cc 4cd72dcd  212afb4e)