/testing/guestbin/swan-prep --x509
Preparing X.509 files
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# certutil -D -n east -d sql:/etc/ipsec.d
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# cp policies/* /etc/ipsec.d/policies/
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# echo "192.1.2.0/24" >> /etc/ipsec.d/policies/private-or-clear
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# ipsec start
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Redirecting to: /etc/init.d/ipsec start
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Starting pluto IKE daemon for IPsec: 
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# /testing/pluto/bin/wait-until-pluto-started
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# # give OE policies time to load
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# sleep 5
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# echo "initdone"
initdone
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]# ipsec whack --oppohere 192.1.2.45 --oppothere 192.1.2.23
002 initiate on demand from 192.1.2.45:0 to 192.1.2.23:0 proto=0 because: whack
181 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: initiate
002 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23: constructed local IKE proposals for private-or-clear#192.1.2.0/24 (IKE SA initiator selecting KE): 1:IKE:ENCR=AES_GCM_C_256;PRF=HMAC_SHA2_512,HMAC_SHA2_256;INTEG=NONE;DH=MODP2048,MODP3072,MODP4096,MODP8192,ECP_256,ECP_384,ECP_521,CURVE25519 2:IKE:ENCR=AES_GCM_C_128;PRF=HMAC_SHA2_512,HMAC_SHA2_256;INTEG=NONE;DH=MODP2048,MODP3072,MODP4096,MODP8192,ECP_256,ECP_384,ECP_521,CURVE25519 3:IKE:ENCR=AES_CBC_256;PRF=HMAC_SHA2_512,HMAC_SHA2_256;INTEG=HMAC_SHA2_512_256,HMAC_SHA2_256_128;DH=MODP2048,MODP3072,MODP4096,MODP8192,ECP_256,ECP_384,ECP_521,CURVE25519 4:IKE:ENCR=AES_CBC_128;PRF=HMAC_SHA2_512,HMAC_SHA2_256;INTEG=HMAC_SHA2_512_256,HMAC_SHA2_256_128;DH=MODP2048,MODP3072,MODP4096,MODP8192,ECP_256,ECP_384,ECP_521,CURVE25519
010 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: STATE_PARENT_I1: retransmission; will wait 2 seconds for response
010 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: STATE_PARENT_I1: retransmission; will wait 4 seconds for response
010 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: STATE_PARENT_I1: retransmission; will wait 8 seconds for response
031 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: STATE_PARENT_I1: 10 second timeout exceeded after 3 retransmits.  No response (or no acceptable response) to our first IKEv2 message
000 "private-or-clear#192.1.2.0/24"[1] ...192.1.2.23 #1: starting keying attempt 2 of an unlimited number, but releasing whack
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack 31]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 31 westrun.sh 'ipsec whack --oppohere 192.1.2.45 --oppothere 192.1.2.23' <<<<<<<<<<tuc<<<<<<<<<<ping -n -c 4 192.1.2.23
PING 192.1.2.23 (192.1.2.23) 56(84) bytes of data.

--- 192.1.2.23 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 91ms

kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack 1]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 1 westrun.sh 'ping -n -c 4 192.1.2.23' <<<<<<<<<<tuc<<<<<<<<<<# should show traffic
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack 1]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 1 westrun.sh '# should show traffic' <<<<<<<<<<tuc<<<<<<<<<<ipsec whack --trafficstatus
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack 33]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 33 westrun.sh 'ipsec whack --trafficstatus' <<<<<<<<<<tuc<<<<<<<<<<echo done
done
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-01-whack\[root@west certoe-01-whack]#