Hello, all:
I think it is a bug of IPv6 Conformance test tool in RTU_E_In_EncryptKey.seq
of ipsec category.
In the RTU_E_In_EncryptKey test case (ipsec#168), TN sends ICMP Echo Request
with ESP Inbound Invalid Encryption Key to Link0 in Router Tunnel Mode, if
TN receives no de-capsulated packet from HOST1_NET4 to HOST1_NET1, it
ignores the invalid encryption key and PASS.
But in a special occasion, if NUT sends out a ns_to_host1_net1, in that
case, the TN receives the ns_to_host1_net1 (a no de-capsulated packet from
HOST1_NET4 to HOST1_NET1), and think NUT does not ignore the invalid
encryption key, then the test is FAIL.
In normal case, when time of the NC about HOST1_NET1 reaches ReachableTime,
it will send out a ns_to_host1_net1 for Neighbor Unreachability Detection.
The ns_to_host1_net1 received by TN is not induced by ICMP Echo Request with
ESP and should not be judged FAIL in that case.
To avoid receiving ns_to_host1_net1 which disturbs the test by chance, I
make the patch for the RTU_E_In_EncryptKey.seq as follows:
------------------------------------------------------------------------------
--- ipsec-original/RTU_E_In_EncryptKey.seq 2006-05-10 09:02:11.308149912
+0800
+++ ipsec/RTU_E_In_EncryptKey.seq 2006-05-10 09:05:22.401099368 +0800
@@ -121,6 +121,9 @@
vLogHTML("TN received decapsulated packet from HOST1_NET4 to
HOST1_NET1.<BR>");
# Invalid key
+# Insure NC about HOST1_NET1 is REACHABLE.
+vSend($IF1,na_from_host1_net1);
+sleep 1;
($stat, %ret) = ipsecForwardDecap($IF0, $IF1,
'esptun_from_sg1_net2_echo_request_from_host1_net4_to_host1_net1_on_net0_2',
----------------------------------------------------------------------------------
The information of my test environment is as following:
Environment to execute the test: TN: RHEL4U1; NUT: RHEL4U3
IPv6 Conformance test tool version: REL_3_0_2
IPv6 Conformance test program package version: REL_2_1_1
Best Regards.
Wang Chen