Date: Thu, 30 Oct 2008 18:11:40 +0900
From: Yukiyo Akisada <akisada@tahi.org>
Subject: [users:00969] Re: [TAHI]test suite bug
To: Mitsuru Chinen <mitch@linux.vnet.ibm.com>,        wang_jiabo <jiabwang@redhat.com>
Cc: users@tahi.org
Message-Id: <20081030181140.472735d3.akisada@tahi.org>
In-Reply-To: <20081030104402.3ae42890.mitch@linux.vnet.ibm.com>
References: <49090B25.4090100@redhat.com>	<20081030104402.3ae42890.mitch@linux.vnet.ibm.com>
X-Mail-Count: 00969

Chinen-san,
thank you very much again for explanation. :-)


On Thu, 30 Oct 2008 10:44:02 +0900
Mitsuru Chinen <mitch@linux.vnet.ibm.com> wrote:

> On Thu, 30 Oct 2008 09:17:25 +0800
> wang_jiabo <jiabwang@redhat.com> wrote:
> 
> > Hello, TAHI:
> >      when I test IPsec suite, 5.1.2 and 5.2.3 report failures.
> > do you think 5.1.2 is a bug of ipsecSetSPD.rmt, please  give me  explain.
> > another bug , it is 5.2.3.  do you  think  that  the  null  algorithm 
> > should have a key in the spd entry.
> > we thought that the null algorithm shouldn't have a key in the spd entry
> 
> Then, IPsec conformance test set null string to eauthkey. 
> 
> | 16:29:59 	vRemote(ipsecSetSAD.rmt)
> | ``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p
> | redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001"
> | dst="3ffe:501:ffff:0:21d:fff:fe0f:be4e" spi=0x1000 mode=transport
> | protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcin01 eauth=null
> | eauthkey= ''
>   ^^^^^^^^^^^^
> 
> Your ipsecSetSAD.rmt sets a key on its own.
> 
> Best Regards,
> ----
> Mitsuru Chinen <mitch@linux.vnet.ibm.com>
> 
> 


-- 
Yukiyo Akisada <akisada@tahi.org>