Date: Fri, 27 May 2011 07:49:59 -0400 From: Jason Hellenthal <jhell@DataIX.net> To: ramaswamy <ramaswamy.bm@globaledgesoft.com> Cc: freebsd-user-groups@freebsd.org Subject: Re: Kernel(2.6.23.1-42.fc8) is not identifying the SADB_ACQUIRE(PF_KEY) message to indicate key management failure Message-ID: <20110527114958.GA30970@DataIX.net> In-Reply-To: <00b101cc1c5d$cc86bbe0$659433a0$@bm@globaledgesoft.com> References: <00b101cc1c5d$cc86bbe0$659433a0$@bm@globaledgesoft.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--uAKRQypu60I7Lcqm
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
ramaswamy,
Sadly this is not a FreeBSD issue while this is a FreeBSD User Group.
Please check up with your linux user mailling list.
On Fri, May 27, 2011 at 04:34:07PM +0530, ramaswamy wrote:
> Hi all,
>=20
> =20
>=20
> I'm receiving the SADB_ACQUIRE message from the kernel to establish the
> required SA, as i have registered my pfkey socket with the kernel.=20
>=20
> The Key management in my application is failing to get the require key
> information from the server, so I'm sending the same SADB_ACQUIRE message=
to
> the kernel with same sequence number which have received in the SADB_ACQU=
IRE
> message with errno set to ENOENT to indicate the Key management has faile=
d.=20
>=20
> =20
>=20
> Here i'm constructing only the base header (struct sadb_msg) as described=
in
> the RFC 2367. As per the RFC 2367 it has to return me the SADB_ACQUIRE
> message with the same errno set.=20
>=20
> =20
>=20
> The problem here I'm facing is, the kernel is dropping the message which i
> have sent to the kernel to indicate the Key management has failed. The
> Kernel is sending the same (last SADB_ACQUIRE for which key management is
> failed) SADB_ACQUIRE message with errno set to ZERO. The OS i'm using is
> Fedora core 8 (2.6.23.1-42.fc8).
>=20
> =20
>=20
> Is this handled in the above mentioned Linux Kernel version ?
>=20
> =20
>=20
> can any please let me know what is wrong i'm doing here. It will be very
> helpful for me.
>=20
> =20
>=20
> This is code snippet which i'm sending to kernel.
>=20
> =20
>=20
> /*
>=20
> * send error against acquire message to kenrel.
>=20
> */
>=20
> int
>=20
> send_acquire_msg_fail(struct acquire *acquire)
>=20
> {
>=20
> struct sadb_msg *newmsg;
>=20
> int len;
>=20
> =20
>=20
> len =3D sizeof(struct sadb_msg);
>=20
> newmsg =3D calloc(1, len);
>=20
> if (newmsg =3D=3D NULL) {
>=20
> ERROR_RETURN("failed to get buffer to send acquire.\n");
>=20
> return -1;
>=20
> }
>=20
> =20
>=20
> memset(newmsg, 0, len);
>=20
> newmsg->sadb_msg_version =3D PF_KEY_V2; =20
>=20
> newmsg->sadb_msg_type =3D SADB_ACQUIRE;
>=20
> newmsg->sadb_msg_errno =3D ENOENT; =20
>=20
> newmsg->sadb_msg_satype =3D SADB_SATYPE_ESP;
>=20
> newmsg->sadb_msg_len =3D (len/8);
>=20
> newmsg->sadb_msg_reserved =3D 0;
>=20
> newmsg->sadb_msg_seq =3D acquire->seq;
>=20
> newmsg->sadb_msg_pid =3D (u_int32_t)getpid();
>=20
> =20
>=20
> /* send message */
>=20
> if (len !=3D write(pfkey_socket, (void*)msg, len)) {
>=20
> ERROR_RETURN (("SORRY, failed to write the SADB_ACQUIRE message=
to
> the kernel\n"));
>=20
> }
>=20
> free(newmsg);
>=20
> return 0;
>=20
> }
>=20
> =20
>=20
> --=20
>=20
> Regards,
>=20
> Ram
>=20
> =20
>=20
> _______________________________________________
> freebsd-user-groups@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-user-groups
> To unsubscribe, send any mail to "freebsd-user-groups-unsubscribe@freebsd=
=2Eorg"
--=20
"Unity can only be manifested by the Binary. Unity itself and the idea of U=
nity are already two." -- Buddha
Regards, (jhell)
Jason Hellenthal
--uAKRQypu60I7Lcqm
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (FreeBSD)
Comment: http://bit.ly/0x89D8547E
iQEcBAEBAgAGBQJN34/mAAoJEJBXh4mJ2FR+M7QH/0ysdnWMlLaCSsfrbZFbMnHx
RDlTHGYxGWSDsh9d0CPfkg1RYj0507Qyp/6wnBlfabAOzwVkb+9CaYgdoBJ4GzXZ
DR6QFV4/TzEPLgQt8YNCEHQQAK6efsFeu6S6GFNXE0R6zFSxw5mw7yHy8AogO0Hz
HcYROWnew8j9lYhs1+TtW8O/zcYNgF+lLRhkL8svKXw4/sR1XrvfvzOM6SL/UZiY
GlwqqMv8WHq8rlURkBScX6D5bsC0d9QLQove6L2E9T1MON97GKp+KvSJK7oxkTCe
Sh8tRaxFC/OeKU40ZuIvB423GfW6mSV/hK0c8o0kpnt4bR80Y1uU/BHzgnhrQkk=
=ARjG
-----END PGP SIGNATURE-----
--uAKRQypu60I7Lcqm--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20110527114958.GA30970>