IPv6 Conformance Test For IPv6 IPsec

Tool Version :REL_3_3_2
Test Program Version :REL_2_1_1
Start:2011/10/24 15:18:36
End :2011/10/24 16:42:56
No.Title ResultLogScriptPacketDump
(bin)

Host Transport Mode





Initialize for Host




1Set Global Address and Check (Host)PASSXXXLink0

Host Transport AH Outbound





Host Transport AH Outbound with authentication




2Outbound AH packet (HMAC-MD5)PASSXXXLink0
3Outbound AH packet (HMAC-SHA1)PASSXXXLink0

Host Transport AH Outbound Header Order




4Outbound Header Order (Fragment Header vs AH)PASSXXXLink0

Host Transport AH Outbound Connect SA bundles




5Connect two SA bundles with different spi, different IPdstPASSXXXLink0
6Connect two SA bundles with same spi, different IPdstPASSXXXLink0

Host Transport AH Inbound





Host Transport AH Inbound with authentication




7Inbound AH packet (HMAC-MD5)PASSXXXLink0
8Inbound AH packet (HMAC-SHA1)PASSXXXLink0

Host Transport AH Inbound Header Order




9Inbound Header Order (Fragment Header vs AH)PASSXXXLink0

Host Transport AH Inbound Connect SA bundles




10Connect two SA bundles with different spi, different IPsrcPASSXXXLink0
11Connect two SA bundles with different spi, same IPsrcPASSXXXLink0

Host Transport AH Inbound, Detect modification of packet with AH




12Detect modification of IPv6 header IP dst address with AHPASSXXXLink0
13Detect modification of IPv6 header IP src address with AHPASSXXXLink0
14Undetect modification of IPv6 header hoplimit with AHPASSXXXLink0
15Detect modification of IPv6 header IP dst address with Routing header and AHPASSXXXLink0
16Detect modification of Routing header "last router address" with AHPASSXXXLink0
17Detect modification of DstOpt header option type before AHPASSXXXLink0
18Detect modification of DstOpt header option len before AHPASSXXXLink0
19Detect modification of DstOpt header option data before AHFAIL, WhyXXXLink0
20Detect modification of DstOpt header option data after AHFAIL, WhyXXXLink0
21Detect modification of HBHOpt header option type with AHPASSXXXLink0
22Detect modification of HBHOpt header option len with AHPASSXXXLink0
23Detect modification of HBHOpt header option data with AHFAIL, WhyXXXLink0
24Detect modification of payload with AHPASSXXXLink0

Host Transport ESP Outbound





ESP Outbound without authentication




25Outbound ESP packet (DES-CBC)PASSXXXLink0
26Outbound ESP packet (3DES-CBC)PASSXXXLink0
27Outbound ESP packet (RIJNDAEL-CBC)PASSXXXLink0

ESP Outbound with authentication




28Outbound ESP packet (NULL, HMAC-MD5)FAIL, WhyXXXLink0
29Outbound ESP packet (NULL, HMAC-SHA1)FAIL, WhyXXXLink0
30Outbound ESP packet (NULL, HMAC-SHA2-256)FAIL, WhyXXXLink0
31Outbound ESP packet (DES-CBC, HMAC-MD5)PASSXXXLink0
32Outbound ESP packet (DES-CBC, HMAC-SHA1)PASSXXXLink0
33Outbound ESP packet (DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
34Outbound ESP packet (3DES-CBC, HMAC-MD5)PASSXXXLink0
35Outbound ESP packet (3DES-CBC, HMAC-SHA1)PASSXXXLink0
36Outbound ESP packet (3DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
37Outbound ESP packet (RIJNDAEL-CBC, HMAC-MD5)PASSXXXLink0
38Outbound ESP packet (RIJNDAEL-CBC, HMAC-SHA1)PASSXXXLink0
39Outbound ESP packet (RIJNDAEL-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0

ESP Outbound Padding




40Outbound Padding (NULL, HMAC-MD5)FAIL, WhyXXXLink0
41Outbound Padding (NULL, HMAC-SHA1)FAIL, WhyXXXLink0
42Outbound Padding (NULL, HMAC-SHA2-256)FAIL, WhyXXXLink0
43Outbound Padding (DES-CBC, HMAC-MD5)PASSXXXLink0
44Outbound Padding (DES-CBC, HMAC-SHA1)PASSXXXLink0
45Outbound Padding (DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
46Outbound Padding (3DES-CBC, HMAC-MD5)PASSXXXLink0
47Outbound Padding (3DES-CBC, HMAC-SHA1)PASSXXXLink0
48Outbound Padding (3DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
49Outbound Padding (RIJNDAEL-CBC, HMAC-MD5)PASSXXXLink0
50Outbound Padding (RIJNDAEL-CBC, HMAC-SHA1)PASSXXXLink0
51Outbound Padding (RIJNDAEL-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0

ESP Outboud Sequence Counter Overflow




52Sequence Counter Overflow checkSKIP-XX-

ESP Outbound Lifetime of SA




53Lifetime of SA using time, ESP (NULL),ESP Authentication HMAC-MD5PASSXXXLink0
54Lifetime of SA using byte, ESP (NULL),ESP Authentication HMAC-MD5Not yet supportedXXXLink0

ESP Outbound Header Order




55Header Order (Fragment Header vs ESP (NULL, HMAC-MD5) )FAIL, WhyXXXLink0
56Header Order (Fragment Header vs ESP (NULL, HMAC-SHA1) )FAIL, WhyXXXLink0
57Header Order (Fragment Header vs ESP (NULL, HMAC-SHA2-256) )FAIL, WhyXXXLink0

ESP Outbound Connect SA bundles




58Connect two SA bundles with different spi, different IPdst, ESP (DES-CBC)PASSXXXLink0
59Connect two SA bundles with different spi, different IPdst, ESP (3DES-CBC)PASSXXXLink0
60Connect two SA bundles with different spi, different IPdst, ESP (RIJNDAEL-CBC)PASSXXXLink0
61Connect two SA bundles with same spi, different IPdst, ESP (DES-CBC)PASSXXXLink0
62Connect two SA bundles with same spi, different IPdst, ESP (3DES-CBC)PASSXXXLink0
63Connect two SA bundles with same spi, different IPdst, ESP (RIJNDAEL-CBC)PASSXXXLink0

Host Transport ESP Inbound





ESP Inbound without authentication




64Inbound ESP (DES-CBC) packetPASSXXXLink0
65Inbound ESP (3DES-CBC) packetPASSXXXLink0
66Inbound ESP (RIJNDAEL-CBC) packetPASSXXXLink0
67Inbound ESP (DES-CBC) packet (Invalid Encryption Key)PASSXXXLink0
68Inbound ESP (3DES-CBC) packet (Invalid Encryption Key)PASSXXXLink0
69Inbound ESP (RIJNDAEL-CBC) packet (Invalid Encryption Key)PASSXXXLink0

ESP Inbound with authentication




70Inbound ESP packet (NULL, HMAC-MD5)FAIL, WhyXXXLink0
71Inbound ESP packet (NULL, HMAC-SHA1)FAIL, WhyXXXLink0
72Inbound ESP packet (NULL, HMAC-SHA2-256)FAIL, WhyXXXLink0
73Inbound ESP packet (DES-CBC, HMAC-MD5)PASSXXXLink0
74Inbound ESP packet (DES-CBC, HMAC-SHA1)PASSXXXLink0
75Inbound ESP packet (DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
76Inbound ESP packet (3DES-CBC, HMAC-MD5)PASSXXXLink0
77Inbound ESP packet (3DES-CBC, HMAC-SHA1)PASSXXXLink0
78Inbound ESP packet (3DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
79Inbound ESP packet (RIJNDAEL-CBC, HMAC-MD5)PASSXXXLink0
80Inbound ESP packet (RIJNDAEL-CBC, HMAC-SHA1)PASSXXXLink0
81Inbound ESP packet (RIJNDAEL-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
82Inbound ESP (DES-CBC, HMAC-MD5) packet (Invalid Authentication Key)PASSXXXLink0
83Inbound ESP (DES-CBC, HMAC-SHA1) packet (Invalid Authentication Key)PASSXXXLink0
84Inbound ESP (DES-CBC, HMAC-SHA2-256) packet (Invalid Authentication Key)FAIL, WhyXXXLink0

ESP Inbound Padding




85Inbound Padding (NULL, HMAC-MD5)FAIL, WhyXXXLink0
86Inbound Padding (NULL, HMAC-SHA1)FAIL, WhyXXXLink0
87Inbound Padding (NULL, HMAC-SHA2-256)FAIL, WhyXXXLink0
88Inbound Padding (DES-CBC, HMAC-MD5)PASSXXXLink0
89Inbound Padding (DES-CBC, HMAC-SHA1)PASSXXXLink0
90Inbound Padding (DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
91Inbound Padding (3DES-CBC, HMAC-MD5)PASSXXXLink0
92Inbound Padding (3DES-CBC, HMAC-SHA1)PASSXXXLink0
93Inbound Padding (3DES-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
94Inbound Padding (RIJNDAEL-CBC, HMAC-MD5)PASSXXXLink0
95Inbound Padding (RIJNDAEL-CBC, HMAC-SHA1)PASSXXXLink0
96Inbound Padding (RIJNDAEL-CBC, HMAC-SHA2-256)FAIL, WhyXXXLink0
97Padding Length is 255 (max), ESP (DES-CBC)PASSXXXLink0
98Padding Length is 255 (max), ESP (3DES-CBC)PASSXXXLink0
99Padding Length is 255 (max), ESP (RIJNDAEL-CBC)PASSXXXLink0
100Invalid Padding, ESP(DES-CBC)PASSXXXLink0
101Invalid Padding, ESP(3DES-CBC)PASSXXXLink0
102Invalid Padding, ESP(RIJNDAEL-CBC)PASSXXXLink0

ESP Inbound Anti-Replay Window




103Duplicate Sequence Number checkFAIL, WhyXXXLink0
104Sliding receive window checkFAIL, WhyXXXLink0
105Expand or shift Receive Window-XXXLink0

ESP Inbound Lifetime of SA




106Lifetime of SA using time, ESP (NULL),ESP Authentication HMAC-MD5PASSXXXLink0
107Lifetime of SA using byte, ESP (NULL),ESP Authentication HMAC-MD5Not yet supportedXXXLink0

ESP Inbound Header Order




108Header Order (Fragment Header vs ESP (NULL, HMAC-MD5))FAIL, WhyXXXLink0
109Header Order (Fragment Header vs ESP (NULL, HMAC-SHA1))FAIL, WhyXXXLink0
110Header Order (Fragment Header vs ESP (NULL, HMAC-SHA2-256))FAIL, WhyXXXLink0

ESP Inbound Connect SA bundles




111Connect two SA bundles with different spi, different IPsrc, ESP (DES-CBC)PASSXXXLink0
112Connect two SA bundles with different spi, different IPsrc, ESP (3DES-CBC)PASSXXXLink0
113Connect two SA bundles with different spi, different IPsrc, ESP (RIJNDAEL-CBC)PASSXXXLink0
114Connect two SA bundles with different spi, same IPsrc, ESP (DES-CBC)PASSXXXLink0
115Connect two SA bundles with different spi, same IPsrc, ESP (3DES-CBC)PASSXXXLink0
116Connect two SA bundles with different spi, same IPsrc, ESP (RIJNDAEL-CBC)PASSXXXLink0

Host Transport AH-ESP Outbound




117Outbound AH-ESP combinationFAIL, WhyXXXLink0

Host Transport AH-ESP Inbound




118Inbound AH-ESP combinationFAIL, WhyXXXLink0

Host Transport Common Outbound




119Select SPD entry (policy=discard,none)FAIL, WhyXXXLink0
120Select SPD entry (policy=discard,none), ESP (DES-CBC)PASSXXXLink0
121Select SPD entry (policy=discard,none), ESP (3DES-CBC)PASSXXXLink0
122Select SPD entry (policy=discard,none), ESP(RIJNDAEL-CBC)PASSXXXLink0

Host Transport Common Inbound





Inbound Connect SA bundles




123Connect two SA bundles with same spi, same IPsrc, different protocolFAIL, WhyXXXLink0
124Select SPD entry (policy=discard,none), AH (HMAC-MD5)PASSXXXLink0
125Select SPD entry (policy=discard,none), ESP (DES-CBC)PASSXXXLink0
126Select SPD entry (policy=discard,none), ESP (3DES-CBC)PASSXXXLink0
127Select SPD entry (policy=discard,none), ESP (RIJNDAEL-CBC)PASSXXXLink0

Router Tunnel Mode





Initialize for Router




128Set Global Address and Check (Router)Router OnlyXXXLink0 Link1

Router Tunnel AH Outbound





Router Tunnel AH Outbound with authentication




129Outbound AH packet (HMAC-MD5)Router OnlyXXXLink0 Link1
130Outbound AH packet (HMAC-SHA1)Router OnlyXXXLink0 Link1

Router Tunnel AH Outbound Connect SA bundles




131Connect two SA bundles with different spi, different IPdstRouter OnlyXXXLink0 Link1
132Connect two SA bundles with same spi, different IPdstRouter OnlyXXXLink0 Link1

Router Tunnel AH Inbound





Router Tunnel AH Inbound with authentication




133Inbound AH Tunnel packet (with SPD entry)Router OnlyXXXLink0 Link1
134Inbound AH packet (HMAC-MD5)Router OnlyXXXLink0 Link1
135Inbound AH packet (HMAC-SHA1)Router OnlyXXXLink0 Link1

Router Tunnel AH Inbound Header Order




136Header Order (Destination Options Header vs AH)Router OnlyXXXLink0 Link1

Router Tunnel AH Inbound Connect SA bundles




137Connect two SA bundles with different spi, different IPsrcRouter OnlyXXXLink0 Link1
138Connect two SA bundles with different spi, same IPsrcRouter OnlyXXXLink0 Link1

Router Tunnel AH Inbound, Detect modification of packet with AH




139Detect modification of IPv6 header IP dst address with AHRouter OnlyXXXLink0 Link1
140Detect modification of IPv6 header IP src address with AHRouter OnlyXXXLink0 Link1
141Undetect modification of IPv6 header hoplimit with AHRouter OnlyXXXLink0 Link1
142Detect modification of IPv6 header IP dst address with Routing header and AHRouter OnlyXXXLink0 Link1
143Detect modification of Routing header "last router address" with AHRouter OnlyXXXLink0 Link1
144Detect modification of DstOpt header option type before AHRouter OnlyXXXLink0 Link1
145Detect modification of DstOpt header option len before AHRouter OnlyXXXLink0 Link1
146Detect modification of DstOpt header option data before AHRouter OnlyXXXLink0 Link1
147Detect modification of HBHOpt header option type with AHRouter OnlyXXXLink0 Link1
148Detect modification of HBHOpt header option len with AHRouter OnlyXXXLink0 Link1
149Detect modification of HBHOpt header option data with AHRouter OnlyXXXLink0 Link1
150Detect modification of inner IPv6 header hoplimit of AH tunnelRouter OnlyXXXLink0 Link1
151Detect modification of inner payload of AH tunnelRouter OnlyXXXLink0 Link1

Router Tunnel ESP Outbound





ESP Outbound without authentication




152Outbound ESP packet (DES-CBC)Router OnlyXXXLink0 Link1
153Outbound ESP packet (3DES-CBC)Router OnlyXXXLink0 Link1

ESP Outbound with authentication




154Outbound ESP packet (NULL, HMAC-MD5)Router OnlyXXXLink0 Link1
155Outbound ESP packet (NULL, HMAC-SHA1)Router OnlyXXXLink0 Link1
156Outbound ESP packet (DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
157Outbound ESP packet (DES-CBC, HMAC-SHA1)Router OnlyXXXLink0 Link1
158Outbound ESP packet (3DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
159Outbound ESP packet (3DES-CBC, HMAC-SHA1)Router OnlyXXXLink0 Link1

ESP Outbound Padding




160Outbound Padding (NULL, HMAC-MD5)Router OnlyXXXLink0 Link1
161Outbound Padding (DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
162Outbound Padding (3DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1

ESP Outbound Connect SA bundles




163Connect two SA bundles with different spi, different IPdstRouter OnlyXXXLink0 Link1
164Connect two SA bundles with same spi, different IPdstRouter OnlyXXXLink0 Link1

Router Tunnel ESP Inbound




165Inbound ESP Tunnel packet (with SPD entry)Router OnlyXXXLink0 Link1

ESP Inbound without authentication




166Inbound ESP packet (DES-CBC)Router OnlyXXXLink0 Link1
167Inbound ESP packet (3DES-CBC)Router OnlyXXXLink0 Link1
168Inbound ESP packet (Invalid Encryption Key)Router OnlyXXXLink0 Link1

ESP Inbound with authentication




169Inbound ESP packet (NULL, HMAC-MD5)Router OnlyXXXLink0 Link1
170Inbound ESP packet (NULL, HMAC-SHA1)Router OnlyXXXLink0 Link1
171Inbound ESP packet (DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
172Inbound ESP packet (DES-CBC, HMAC-SHA1)Router OnlyXXXLink0 Link1
173Inbound ESP packet (3DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
174Inbound ESP packet (3DES-CBC, HMAC-SHA1)Router OnlyXXXLink0 Link1
175Inbound ESP packet (Invalid Authentication Key)Router OnlyXXXLink0 Link1

Router Tunnel ESP Inbound Header Order




176Header Order (Destination Options Header vs ESP)Router OnlyXXXLink0 Link1

ESP Inbound Padding




177Inbound Padding (NULL, HMAC-MD5)Router OnlyXXXLink0 Link1
178Inbound Padding (DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
179Inbound Padding (3DES-CBC, HMAC-MD5)Router OnlyXXXLink0 Link1
180Padding Length is 255 (max)Router OnlyXXXLink0 Link1
181Invalid PaddingRouter OnlyXXXLink0 Link1

ESP Inbound Connect SA bundles




182Connect two SA bundles with different spi, different IPsrcRouter OnlyXXXLink0 Link1
183Connect two SA bundles with different spi, same IPsrcRouter OnlyXXXLink0 Link1

Router Tunnel Common Inbound





Inbound Connect SA bundles




184Connect two SA bundles with same spi, same IPsrc, different protocolRouter OnlyXXXLink0 Link1
Index
This Report was generated by TAHI IPv6 Conformance Test Suite