lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <AANLkTi=6--vQco+vh_RGCwUVkm0UzMZcSHj8oaUWC+Vc@mail.gmail.com>
Date:	Tue, 8 Feb 2011 15:44:04 +0530
From:	Jack Daniel <wanders.thirst@...il.com>
To:	netdev@...r.kernel.org
Subject: usage setkey delete option for ipsec

Hi,

My intention is to delete SADB entries one by one using the setkey
delete option.
I have the follwoing entry in my setkey.conf

delete fec2::1[55001] fec2:0:f675:803a::4[55002] esp 4101;

But when running $setkey -f setkey.conf
it throws scuh an error ...
line 1: syntax error at [[]
parse failed, line 1.

If I remove the port values [55001] and [55002] then setkey says
"The result of line 1: No such process."

My $setkey -D
output is shown below

setkey -D
fec2:0:888b:5e45::6 fec2::1
       esp mode=transport spi=4106(0x0000100a) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=7 pid=18112 refcnt=0
fec2:0:888b:5e44::5 fec2::1
       esp mode=transport spi=4104(0x00001008) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=6 pid=18112 refcnt=0
fec2:0:888b:5e43::4 fec2::1
       esp mode=transport spi=4102(0x00001006) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=5 pid=18112 refcnt=0
fec2:0:888b:5e42::3 fec2::1
       esp mode=transport spi=4100(0x00001004) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=4 pid=18112 refcnt=0
fec2::1 fec2:0:888b:5e42::3
       esp mode=transport spi=4099(0x00001003) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=3 pid=18112 refcnt=0
fec2::1 fec2:0:888b:5e43::4
       esp mode=transport spi=4101(0x00001005) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=2 pid=18112 refcnt=0
fec2::1 fec2:0:888b:5e44::5
       esp mode=transport spi=4103(0x00001007) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=1 pid=18112 refcnt=0
fec2::1 fec2:0:888b:5e45::6
       esp mode=transport spi=4105(0x00001009) reqid=0(0x00000000)
       A: hmac-sha1  41482053 4120636f 6e666967 75726174 696f6e21
       seq=0x00000000 replay=0 flags=0x00000000 state=mature
       created: Feb  7 15:33:45 2011   current: Feb  7 17:09:22 2011
       diff: 5737(s)   hard: 0(s)      soft: 0(s)
       last:                           hard: 0(s)      soft: 0(s)
       current: 0(bytes)       hard: 0(bytes)  soft: 0(bytes)
       allocated: 0    hard: 0 soft: 0
       sadb_seq=0 pid=18112 refcnt=0


Could someone point out what I might be doing wrong or the right way
to pass the "delete" option an ipv6 address along with the port in
square brackets.

Thanks and regards,
Jack.
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ