[strongSwan] error notify plugin
Modster, Anthony
Anthony.Modster at Teledyne.com
Fri Oct 16 00:42:43 CEST 2020
Hello
We are using the strongswan Error Notify plugin.
Charon reported the below error.
2020 Oct 6 23:13:08+00:00 wglng-6957 charon [info] 05[IKE] received AUTHENTICATION_FAILED notify error
The Error Notify plugin reported error_notify_msg_t::type = 2.
And the information string was set to error_notify_msg_t:: str = creating local authentication data failed
What causes this error on the peer side ?
error_notify_msg.h
/**
* Message type, these are mapped to ALERT_* types.
*/
enum {
ERROR_NOTIFY_RADIUS_NOT_RESPONDING = 1,
ERROR_NOTIFY_LOCAL_AUTH_FAILED = 2,
ERROR_NOTIFY_PEER_AUTH_FAILED = 3,
ERROR_NOTIFY_PARSE_ERROR_HEADER = 4,
ERROR_NOTIFY_PARSE_ERROR_BODY = 5,
ERROR_NOTIFY_RETRANSMIT_SEND_TIMEOUT = 6,
ERROR_NOTIFY_HALF_OPEN_TIMEOUT = 7,
ERROR_NOTIFY_PROPOSAL_MISMATCH_IKE = 8,
ERROR_NOTIFY_PROPOSAL_MISMATCH_CHILD = 9,
ERROR_NOTIFY_TS_MISMATCH = 10,
ERROR_NOTIFY_INSTALL_CHILD_SA_FAILED = 11,
ERROR_NOTIFY_INSTALL_CHILD_POLICY_FAILED = 12,
ERROR_NOTIFY_UNIQUE_REPLACE = 13,
ERROR_NOTIFY_UNIQUE_KEEP = 14,
ERROR_NOTIFY_VIP_FAILURE = 15,
ERROR_NOTIFY_AUTHORIZATION_FAILED = 16,
ERROR_NOTIFY_CERT_EXPIRED = 17,
ERROR_NOTIFY_CERT_REVOKED = 18,
ERROR_NOTIFY_NO_ISSUER_CERT = 19,
ERROR_NOTIFY_RETRANSMIT_SEND = 20,
};
/**
* Message to exchange over notify socket, strings are null-terminated.
*/
struct error_notify_msg_t {
/** message type */
int type;
/** string with an error description */
char str[384];
/** connection name, if known */
char name[64];
/** peer identity, if known */
char id[256];
/** peer address and port, if known */
char ip[60];
} __attribute__((packed));
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20201015/b5a2cb6e/attachment-0001.html>
More information about the Users
mailing list