[Swan] How to log Encryption Keys?
Sahil S
198sahil at gmail.com
Thu Dec 26 03:12:48 UTC 2019
Hi all,
I have set the logging level to plutodebug=all,private . However, I still
do not see actual keys in log files. All I see is pointers to the keys.
Dec 25 20:43:35.238403: | NSS: pointers skeyid_d 0x55adadcf9340, skeyid_a
0x7fc5d0000ee0, skeyid_e 0x7fc5d0000f70, enc_key 0x7fc5d000c910
Please find attached, log files and ipsec.conf.
Regards,
Sahil
On Wed, Dec 25, 2019 at 8:10 PM Sahil S <198sahil at gmail.com> wrote:
> Hi Paul,
>
> Thank you for pointing me in right direction.
>
> Merry Christmas to you.
>
> Regards,
> Sahil
>
> On Wed, Dec 25, 2019 at 5:42 PM Paul Wouters <paul at nohats.ca> wrote:
>
>> plutodebug=private,all
>>
>> That will log the private keys.
>>
>> Paul
>>
>> Sent from my iPhone
>>
>> > On Dec 24, 2019, at 15:35, Sahil S <198sahil at gmail.com> wrote:
>> >
>> > Hi All,
>> >
>> > Pardon me asking such a naive question.
>> >
>> > I am student and recently started learning IPSEC and Libreswan. I am
>> trying to decrypt ISAKMP packet 5 and 6 in a tool like wireshark.
>> >
>> > Can anyone help me understand how I can obtain the encryption key used
>> to encrypt packet 5 and 6 of phase 1?
>> >
>> > Thank you in advance.
>> >
>> > Regards,
>> > Sahil
>> > _______________________________________________
>> > Swan mailing list
>> > Swan at lists.libreswan.org
>> > https://lists.libreswan.org/mailman/listinfo/swan
>>
>>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20191225/1299e6d0/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pluto.log
Type: application/octet-stream
Size: 896198 bytes
Desc: not available
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20191225/1299e6d0/attachment-0003.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipsec.conf
Type: application/octet-stream
Size: 1453 bytes
Desc: not available
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20191225/1299e6d0/attachment-0004.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ipsec.secrets
Type: application/octet-stream
Size: 131 bytes
Desc: not available
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20191225/1299e6d0/attachment-0005.obj>
More information about the Swan
mailing list