Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

IPsec using Racoon #2358

Closed
Umesh1148 opened this issue Jul 20, 2017 · 3 comments
Closed

IPsec using Racoon #2358

Umesh1148 opened this issue Jul 20, 2017 · 3 comments
Labels
duplicate

Comments

@Umesh1148
Copy link

Umesh1148 commented Jul 20, 2017
edited
Loading

Windows 10 1703, Ubuntu 16.04

Trying to use ipsec-tools is WSL to decrypt ESP packets

When the command "setkey -c" is called, WSL throws an error "pfkey_open: Address family not supported by protocol"

Strace op:
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8f03690000
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8f03680000
arch_prctl(ARCH_SET_FS, 0x7f8f03680740) = 0
mprotect(0x7f8f031de000, 16384, PROT_READ) = 0
mprotect(0x7f8f033fe000, 4096, PROT_READ) = 0
mprotect(0x7f8f03a0d000, 4096, PROT_READ) = 0
mprotect(0x7f8f03622000, 4096, PROT_READ) = 0
munmap(0x7f8f036a2000, 22382) = 0
time(NULL) = 1500563709
brk(0) = 0x7fffdf3b4000
brk(0x7fffdf3d5000) = 0x7fffdf3d5000
open("/etc/localtime", O_RDONLY|O_CLOEXEC) = 3
fstat(3, {st_mode=S_IFREG|0644, st_size=1073, ...}) = 0
fstat(3, {st_mode=S_IFREG|0644, st_size=1073, ...}) = 0
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8f03670000
read(3, "TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\2\0\0\0\2\0\0\0\0"..., 4096) = 1073
lseek(3, -685, SEEK_CUR) = 388
read(3, "TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\2\0\0\0\2\0\0\0\0"..., 4096) = 685
close(3) = 0
munmap(0x7f8f03670000, 4096) = 0
stat("/etc/localtime", {st_mode=S_IFREG|0644, st_size=1073, ...}) = 0
socket(PF_KEY, SOCK_RAW, 2) = -1 EAFNOSUPPORT (Address family not supported by protocol)
dup(2) = 3
fcntl(3, F_GETFL) = 0x2 (flags O_RDWR)
fstat(3, {st_mode=S_IFCHR|0600, st_rdev=makedev(4, 1), ...}) = 0
ioctl(3, SNDCTL_TMR_TIMEBASE or SNDRV_TIMER_IOCTL_NEXT_DEVICE or TCGETS, {B38400 opost isig icanon echo ...}) = 0
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8f03670000
lseek(3, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
write(3, "pfkey_open: Address family not s"..., 53) = 53
close(3)
@fpqc
Copy link

fpqc commented Jul 20, 2017

Do ipsec in your Windows environment. There's no ipsec implementation in the lxcore driver.

@Umesh1148
Copy link
Author

Hello,

Thanks for the quick response. Is there any link can you share to setup ipsec in windows environment. This will help me greatly.

Thanks in advance

@therealkenc
Copy link
Collaborator

socket(PF_KEY, SOCK_RAW, 2) = -1 EAFNOSUPPORT (Address family not supported by protocol)

SOCK_RAW is #717 #1383

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
duplicate
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@fpqc @therealkenc @Umesh1148