[Openswan Users] OpenBSD interop problem

Michael Richardson mcr at sandelman.ottawa.on.ca
Wed May 12 17:22:24 CEST 2004


-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Nels" == Nels Lindquist <nlindq at maei.ca> writes:
    >> You might also try plutodebug=control in ipsec.conf to see what
    >> the various logging messages say about key_lens while parsing the
    >> packets.

    Nels> I enabled pluto control debugging and compared two sections of
    Nels> my logfile, one where OpenBSD is trying to connect and the
    Nels> problem occurs, and the other is a connection from SFS on
    Nels> Linux.

  You aren't running HEAD are you?

    >> authkeylen=20 ip-39 pluto[18383]: "maei-darrnet" #4: ASSERTION
    >> FAILED at kernel.c:2222: st->st_esp.keymat_len == key_len +
    >> ei->authkeylen ip-39 ipsec__plutorun: Restarting Pluto
    >> subsystem...

  A bug relating to this was fixed last night in HEAD.

- --
]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson,    Xelerance Corporation, Ottawa, ON    |net architect[
] mcr at xelerance.com      http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBQKKHf4qHRg3pndX9AQE4vQQA1AWN+mUxcKwI85m+5Ntv/qFGb66FMUVm
U/+Es8vIF4293otsHPQ3dGdpw9A0iecdOc9RS7Opva1mjBA+6OXRhQdyWB9WNvZW
/qYPJ8ZBg26medvu1+zWdLuS+qH1vlJ3R0zVkz8yNUKORecYwQ/HCIB5QdiN4DsG
i7esSqINbcE=
=Y0Bw
-----END PGP SIGNATURE-----


More information about the Users mailing list