Test Information

Title	Detect modification of IPv4 header IP src address with AH
CommandLine	./HTR_A_In_DM_IPv4H_src.seq -pkt ./HTR_A_DM_IPv4H.def -cpp=-include ./ipsecaddr.def -log 13.html -ti Detect modification of IPv4 header IP src address with AH
TestVersion
ToolVersion	undefined
Start	2002/03/27 20:48:27
Tn	/usr/local/v6eval//etc//tn.def
Nu	/usr/local/v6eval//etc//nut.def
Pkt	./HTR_A_DM_IPv4H.def
System	usagi-i386
TargetName	Red Hat Linux release 7.2 (Enigma) + usagi cvs 2002/03/26 20:00
HostName	usagi.tahi.org
Type	host

Test Sequence Execution Log

20:48:28	Start
	* Target initialization phase * Target: Clear all SAD and SPD entries
20:48:28	vRemote(ipsecClearAll.rmt) ``/usr/local/v6eval//bin/usagi-i386//ipsecClearAll.rmt -t usagi-i386 -u root -p v6eval -d cuaa0 -o 1 '' Connected. [root@usagi root]# [root@usagi root]# /usr/local/v6/bin/pfkey -F any [root@usagi root]# echo $? 16 ~. ~. ~. Disconnected.
	Target: Set SAD entries: src="192.168.105.31" dst="192.168.103.20" spi=0x1000 mode=transport protocol=ah aalgo=hmac-md5 aalgokey=TAHITEST89ABCDEF
20:48:32	vRemote(ipsecSetSAD.rmt) ``/usr/local/v6eval//bin/usagi-i386//ipsecSetSAD.rmt -t usagi-i386 -u root -p v6eval -d cuaa0 -o 1 src="192.168.105.31" dst="192.168.103.20" spi=0x1000 mode=transport protocol=ah aalgo=hmac-md5 aalgokey=TAHITEST89ABCDEF '' Connected. [root@usagi root]# [root@usagi root]# /usr/local/v6/bin/pfkey -A sa -T ah -S 0x1000 -s 192.168.105 .31/128 -d 192.168.103.20/128 --auth hmac-md5 --authkey 0x5441484954455354383941 4243444546 parse_address is failed [root@usagi root]# sendMessagesSync: never got /usr/local/v6/bin/pfkey -A sa -T ah -S 0x1000 -s 192.168.105.31/128 -d 192.168.103.20/128 --auth hmac-md5 --authkey 0x54414849544553543839414243444546 ~. Disconnected.
	Target: Set SPD entries: src="192.168.105.31" dst="192.168.103.20" upperspec=any direction=in protocol=ah mode=transport
20:49:11	vRemote(ipsecSetSPD.rmt) ``/usr/local/v6eval//bin/usagi-i386//ipsecSetSPD.rmt -t usagi-i386 -u root -p v6eval -d cuaa0 -o 1 src="192.168.105.31" dst="192.168.103.20" upperspec=any direction=in protocol=ah mode=transport '' Connected. level is specified. I ignore it [root@usagi root]# [root@usagi root]# /usr/local/v6/bin/pfkey -A sp -S any -T ah -s 192.168.105.31/ 128 -d 192.168.103.20/128 parse_address is failed [root@usagi root]# sendMessagesSync: never got /usr/local/v6/bin/pfkey -A sp -S any -T ah -s 192.168.105.31/128 -d 192.168.103.20/128 [root@usagi root]# /usr/local/v6/bin/pfkey -L SADB: ----------------------------------------------- SPD: --------------------------------------------- [root@usagi root]# echo $? 1 ~. Disconnected.
	* Target testing phase *
20:49:49	Start Capturing Packets (Link0)
20:49:49	vSend(Link0,echo_request_from_host1_ah) send echo_request_from_host1_ah
20:49:50	vRecv(Link0,ns_to_router echo_reply_to_host1) timeout:6 cntLimit:0 seektime:0 recv ns_to_router
20:49:50	vSend(Link0,na_from_router) send na_from_router
20:49:50	vRecv(Link0,echo_reply_to_host1) timeout:5 cntLimit:0 seektime:0 recv unexpect packet at 20:49:50 vRecv() return status=1
	TN received no echo reply from NUT to HOST1. NG
20:49:55	End

Packet Reverse Log

send echo_request_from_host1_ah at 20:49:50

Frame_Ether                     (length:90)
| Hdr_Ether                       (length:14)
| | DestinationAddress               = 0:e0:18:a8:ab:de
| | SourceAddress                    = 0:0:0:0:a0:a0
| | Type                             = 2048
| Packet_IPv4                     (length:76)
| | Hdr_IPv4                        (length:20)
| | | Version                          = 4
| | | IHL                              = 5
| | | TypeOfService                    = 0
| | | TotalLength                      = 76
| | | Identifier                       = 0
| | | Reserved                         = 0
| | | DF                               = 0
| | | MF                               = 0
| | | FragmentOffset                   = 0
| | | TTL                              = 255
| | | Protocol                         = 51
| | | HeaderChecksum                   = 27130 calc(27130)
| | | SourceAddress                    = 192.168.105.31
| | | DestinationAddress               = 192.168.103.20
| | Hdr_AH                          (length:24)
| | | NextHeader                       = 1
| | | PayloadLength                    = 4
| | | Reserved                         = 0
| | | SPI                              = 4096
| | | SequenceNumber                   = 1
| | | algorithm                        = aalgo_hmacmd5_012
| | | ICV                              = dce9bb6b 0547700a  c59d0759 calc(dce9bb6b 0547700a  c59d0759)
| | ICMPv4_EchoRequest              (length:32)
| | | Type                             = 8
| | | Code                             = 0
| | | Checksum                         = 50239 calc(50239)
| | | Identifier                       = 0
| | | SequenceNumber                   = 0
| | | Payload                         (length:24)
| | | | data                             = 
  4563686f 44617461  4563686f 44617461  4563686f 44617461

Recv at 20:49:50

Frame_Ether                     (length:60)
| Hdr_Ether                       (length:14)
| | DestinationAddress               = ff:ff:ff:ff:ff:ff
| | SourceAddress                    = 0:e0:18:a8:ab:de
| | Type                             = 2054
| Packet_ARP                      (length:28)
| | Hdr_ARP                         (length:28)
| | | Hardware                         = 1
| | | Protocol                         = 2048
| | | HLEN                             = 6
| | | PLEN                             = 4
| | | Operation                        = 1
| | | SenderHAddr                      = 0:e0:18:a8:ab:de
| | | SenderPAddr                      = 192.168.103.20
| | | TargetHAddr                      = 0:0:0:0:0:0
| | | TargetPAddr                      = 192.168.103.10
| [Needless]                      (length:18)
| | data                             = 
  00000000 00000000  00000000 00000000  0000
===ns_to_router=================================

send na_from_router at 20:49:50

Frame_Ether                     (length:42)
| Hdr_Ether                       (length:14)
| | DestinationAddress               = 0:e0:18:a8:ab:de
| | SourceAddress                    = 0:0:0:0:a0:a0
| | Type                             = 2054
| Packet_ARP                      (length:28)
| | Hdr_ARP                         (length:28)
| | | Hardware                         = 1
| | | Protocol                         = 2048
| | | HLEN                             = 6
| | | PLEN                             = 4
| | | Operation                        = 2
| | | SenderHAddr                      = 0:0:0:0:a0:a0
| | | SenderPAddr                      = 192.168.103.10
| | | TargetHAddr                      = 0:e0:18:a8:ab:de
| | | TargetPAddr                      = 192.168.103.20

Recv at 20:49:50

Frame_Ether                     (length:118)
| Hdr_Ether                       (length:14)
| | DestinationAddress               = 0:0:0:0:a0:a0
| | SourceAddress                    = 0:e0:18:a8:ab:de
| | Type                             = 2048
| Packet_IPv4                     (length:104)
| | Hdr_IPv4                        (length:20)
| | | Version                          = 4
| | | IHL                              = 5
| | | TypeOfService                    = 192
| | | TotalLength                      = 104
| | | Identifier                       = 30371
| | | Reserved                         = 0
| | | DF                               = 0
| | | MF                               = 0
| | | FragmentOffset                   = 0
| | | TTL                              = 255
| | | Protocol                         = 1
| | | HeaderChecksum                   = 62124 calc(62124)
| | | SourceAddress                    = 192.168.103.20
| | | DestinationAddress               = 192.168.105.31
| | ICMPv4_DestinationUnreachable   (length:84)
| | | Type                             = 3
| | | Code                             = 2
| | | Checksum                         = 4443 calc(4443)
| | | Unused                           = 0
| | | Payload                         (length:76)
| | | | data                             = 
  4500004c 00000000  ff3369fa c0a8691f  c0a86714 01040000  00001000 00000001
  dce9bb6b 0547700a  c59d0759 0800c43f  00000000 4563686f  44617461 4563686f
  44617461 4563686f  44617461
===echo_reply_to_host1=================================
ng meta Packet_IPv4.ICMPv4_EchoReply != Packet_IPv4.ICMPv4_DestinationUnreachable