<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Hi Rick, <div><br></div><div>I'm into the exact same problem as you describe in your openswan mailing list. </div><div><br></div><div>Reference: </div><h1><span class="Apple-style-span" style="font-weight: normal; "><font class="Apple-style-span" size="3">My post:</font></span></h1><h1><span class="Apple-style-span" style="font-weight: normal; "><font class="Apple-style-span" size="3">[Openswan Users] ERROR: netlink XFRM_MSG_DELPOLICY response for flow
eroute_connection delete included errno 2: No such file or directory</font></span></h1><div><a href="https://lists.openswan.org/pipermail/users/2012-June/021668.html">https://lists.openswan.org/pipermail/users/2012-June/021668.html</a> , I'm not going to any tech details, but the main problem remains even in openswan 2.6.38 </div><div><br></div><div>Your post:</div><div><h1><font class="Apple-style-span" size="3" style="font-weight: normal;">[Openswan Users] IP XFRM/Netkey/Stale Routes/%pass</font></h1></div><div><a href="https://lists.openswan.org/pipermail/users/2010-September/019322.html">https://lists.openswan.org/pipermail/users/2010-September/019322.html</a></div><div><br></div><div><br></div><div><div>#ip xfrm policy</div><div>src 50.50.50.10/32 dst 116.55.126.226/32 proto udp sport 1701 dport 55103 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir out priority 2080 ptype main </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>tmpl src 0.0.0.0 dst 0.0.0.0</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>proto esp reqid 16401 mode transport</div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 3 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 3 priority 0 ptype main </div></div><div><br></div><div>The problem described by you match exactly the trouble that I have, I also try to dig it to the code and compare old vs. new versions 2.6.26 to 2.6.38 kernel_netlink.c file but because I do not understand C I'm lost….</div><div><br></div><div>tested with EPEL Openswan 2.6.32 - same issue… </div><div><br></div><div>pluto try to delete the xfrm dir out policy but because there is not exact match ( I think it's client 'dport' is not there at all in the delete statement ) that's why it yells: "ERROR: netlink XFRM_MSG_DELPOLICY response for flow eroute_connection delete included errno 2: No such file or directory "</div><div><br></div><div>Especially " No such file or directory " shows up if only if the policy that is left does not match completely. Examlpe could be applaied to the policy shown above:</div><div><div>If we try to delete it with this statement Missing is dport (clients port) # ip xfrm policy delete dir out src 50.50.50.10/32 dst 116.55.126.226/32 proto udp sport 1701</div><div>we get this error: RTNETLINK answers: No such file or directory</div></div><div><br></div><div><div>#ip xfrm policy</div><div>src 50.50.50.10/32 dst 116.55.126.226/32 proto udp sport 1701 dport 55103 </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>dir out priority 2080 ptype main </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>tmpl src 0.0.0.0 dst 0.0.0.0</div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>proto esp reqid 16401 mode transport</div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>dir 3 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space: pre; "> </span>dir 3 priority 0 ptype main</div></div><div><br></div><div>but if we do: # ip xfrm policy delete dir out src 50.50.50.10/32 dst 116.55.126.226/32 proto udp sport 1701 <b>dport 55103</b></div><div>we get no error and dir out policy is deleted, so I guess that dport either is missed in the pluto xfrm delete code ( which I could not locate clearly in kernel_netlink.c if this is the correct file) </div><div><br></div><div><div>ip xfrm policy</div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 3 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 4 priority 0 ptype main </div><div>src 0.0.0.0/0 dst 0.0.0.0/0 </div><div><span class="Apple-tab-span" style="white-space:pre"> </span>dir 3 priority 0 ptype main </div></div><div><br></div><div><br></div><div>So can you explain your "dirty hack" with _updown.netkey script? Where are you put this script and how you call it? Is this full script code?</div><div><br></div><div>Best Regards,</div><div><br></div><div>Martin</div><div><br></div><div> </div><div><br></div><div><br></div></body></html>