/testing/guestbin/swan-prep --x509 Preparing X.509 files kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# # remove CA kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# certutil -D -d sql:/etc/ipsec.d -n "Libreswan test CA for mainca - Libreswan" kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# # this leaves real east and real west certs. other end will use different fake west cert kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# ipsec start Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Error: Peer netns reference is invalid. Redirecting to: namespaces direct start via ipsec pluto kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# /testing/pluto/bin/wait-until-pluto-started kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# ipsec auto --add westnet-eastnet-ikev2 002 added connection description "westnet-eastnet-ikev2" kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# ipsec auto --status | grep westnet-eastnet-ikev2 000 "westnet-eastnet-ikev2": 192.0.2.0/24===192.1.2.23<192.1.2.23>[C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=user-east@testing.libreswan.org]...192.1.2.45<192.1.2.45>[C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=west.testing.libreswan.org, E=user-west@testing.libreswan.org]===192.0.1.0/24; unrouted; eroute owner: #0 000 "westnet-eastnet-ikev2": oriented; my_ip=unset; their_ip=unset; mycert=east; hiscert=west; my_updown=ipsec _updown; 000 "westnet-eastnet-ikev2": xauth us:none, xauth them:none, my_username=[any]; their_username=[any] 000 "westnet-eastnet-ikev2": our auth:rsasig, their auth:rsasig 000 "westnet-eastnet-ikev2": modecfg info: us:none, them:none, modecfg policy:push, dns:unset, domains:unset, banner:unset, cat:unset; 000 "westnet-eastnet-ikev2": labeled_ipsec:no; 000 "westnet-eastnet-ikev2": policy_label:unset; 000 "westnet-eastnet-ikev2": CAs: 'C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=Libreswan test CA for mainca, E=testing@libreswan.org'...'C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=Libreswan test CA for mainca, E=testing@libreswan.org' 000 "westnet-eastnet-ikev2": ike_life: 3600s; ipsec_life: 28800s; replay_window: 32; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; 000 "westnet-eastnet-ikev2": retransmit-interval: 500ms; retransmit-timeout: 60s; 000 "westnet-eastnet-ikev2": initial-contact:no; cisco-unity:no; fake-strongswan:no; send-vendorid:no; send-no-esp-tfc:no; 000 "westnet-eastnet-ikev2": policy: RSASIG+ENCRYPT+TUNNEL+PFS+IKEV2_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO; 000 "westnet-eastnet-ikev2": conn_prio: 24,24; interface: eth1; metric: 0; mtu: unset; sa_prio:auto; sa_tfc:none; 000 "westnet-eastnet-ikev2": nflog-group: unset; mark: unset; vti-iface:unset; vti-routing:no; vti-shared:no; nic-offload:auto; 000 "westnet-eastnet-ikev2": our idtype: ID_DER_ASN1_DN; our id=C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=user-east@testing.libreswan.org; their idtype: ID_DER_ASN1_DN; their id=C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=west.testing.libreswan.org, E=user-west@testing.libreswan.org 000 "westnet-eastnet-ikev2": dpd: action:hold; delay:0; timeout:0; nat-t: encaps:auto; nat_keepalive:yes; ikev1_natt:both 000 "westnet-eastnet-ikev2": newest ISAKMP SA: #0; newest IPsec SA: #0; kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# echo "initdone" initdone kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# ../../pluto/bin/ipsec-look.sh ==== cut ==== start raw xfrm state: end raw xfrm state: ==== tuc ==== east Sat Sep 21 07:29:01 UTC 2019 XFRM state: XFRM policy: XFRM done IPSEC mangle TABLES NEW_IPSEC_CONN mangle TABLES ROUTING TABLES default via 192.1.2.254 dev eth1 192.0.1.0/24 via 192.1.2.45 dev eth1 192.0.2.0/24 dev eth0 proto kernel scope link src 192.0.2.254 192.1.2.0/24 dev eth1 proto kernel scope link src 192.1.2.23 NSS_CERTIFICATES Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI east u,u,u hashsha1 P,, nic P,, north P,, road P,, west P,, west-ec P,, kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# : ==== cut ==== kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest]# ipsec auto --status whack: is Pluto running? connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused) kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest 33]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 33 final.sh 'ipsec auto --status' <<<<<<<<<, argv=) at /home/build/libreswan/programs/pluto/plutomain.c:1458 BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory Warning: couldn't activate thread debugging using libthread_db: Cannot find new threads: generic error BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory Warning: couldn't activate thread debugging using libthread_db: Cannot find new threads: generic error warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory Failed to read a valid object file image from memory. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory Warning: couldn't activate thread debugging using libthread_db: Cannot find new threads: generic error BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory Warning: couldn't activate thread debugging using libthread_db: Cannot find new threads: generic error warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory warning: Couldn't read general-purpose registers from `.reg/16022' section in core file. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory warning: Couldn't read floating-point registers from `.reg2/16022' section in core file. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory warning: Couldn't read XSAVE extended state registers from `.reg-xstate/16022' section in core file. BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory BFD: reopening /tmp/core.road.pluto.16022: No such file or directory mv: cannot stat '/tmp/core.road.pluto.16022': No such file or directory CORE FOUND: /tmp/core.road.pluto.16045 [New LWP 16045] [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib64/libthread_db.so.1". Core was generated by `/usr/local/libexec/ipsec/pluto --config /etc/ipsec.conf'. Program terminated with signal SIGABRT, Aborted. #0 0x00007fee8faa4e75 in raise () from /lib64/libc.so.6 #0 0x00007fee8faa4e75 in raise () from /lib64/libc.so.6 #1 0x00007fee8fa8f895 in abort () from /lib64/libc.so.6 #2 0x00005640afed8ecb in lswlog_passert_suffix (buf=buf@entry=0x7ffe8ac566a0, where=...) at /home/build/libreswan/lib/libswan/lswlog_passert.c:32 #3 0x00005640afeca2e8 in lsw_passert_fail (where=..., fmt=fmt@entry=0x5640aff27624 "%s") at /home/build/libreswan/lib/libswan/lsw_passert_fail.c:31 #4 0x00005640afe66586 in free_signal_handlers () at /home/build/libreswan/programs/pluto/server.c:624 #5 free_pluto_event_list () at /home/build/libreswan/programs/pluto/server.c:671 #6 0x00005640afe630c9 in exit_pluto (status=10) at /home/build/libreswan/programs/pluto/plutomain.c:1850 #7 0x00005640afe29907 in create_lock () at /home/build/libreswan/programs/pluto/plutomain.c:272 #8 main (argc=, argv=) at /home/build/libreswan/programs/pluto/plutomain.c:1458 /tmp/core.road.pluto.16045: No such file or directory. No stack. mv: cannot stat '/tmp/core.road.pluto.16045': No such file or directory kroot@swantest:/home/build/libreswan/testing/pluto/ikev2-x509-24-fakewest\[root@east ikev2-x509-24-fakewest 1]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 1 final.sh '../bin/check-for-core.sh' <<<<<<<<<>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 1 final.sh 'if [ -f /sbin/ausearch ]; then ausearch -r -m avc -ts recent ; fi' <<<<<<<<<