On Thu, 18 Dec 2003, Crist J. Clark wrote: Hi, > I just upgraded a ThinkPad 600E from RELENG_5_1 to RELENG_5_2. I seem > to be having trouble with my IKE deamon, racoon(8), but I don't think > the problem is with racoon(8), but it may be the FreeBSD KAME IPsec > implementation. .... > Anyone else seeing this? I am seeing a lot of other trouble with IPSEC implementation at the moment. Multiple 0xdeadc0de accesses and I have successfully been able to panic my router test box by at least 3 different ways. Last sunday evening I have been able to prevent this by some patch (unusable in any productive setup). I am currently trying to narrow the problem down and cleanup all my debugging from kernel but had no time last evenings. Hopefully I will find the time on weekend. In the meantime there are two things you can do: a) if you do not need IPv6 you may use FAST_IPSEC which worked for me b) re-enable all debugging and perhaps let me know if you can see messages like: Invalid policy for PCB -559038242 (0xdeadc0de) or crashes/panic reated to ipsec. Any backtrace will of course not show the real problem but give some idea when the access to 0xdeadc0de happens (I have seen three possible paths here). -- Greetings Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT 56 69 73 69 74 http://www.zabbadoz.net/Received on Thu Dec 18 2003 - 23:00:12 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:37:34 UTC