[Openswan Users] openswan crashing kernel (long)

Paul Wouters paul at xelerance.com
Wed May 13 17:45:27 EDT 2009


On Wed, 13 May 2009, Giovani Moda wrote:

> I'm having a problem with openswan-2.4.10 and above on systems running
> FC5. Any attempt to upgrade from openswan-2.4.9 to any newer versions
> causes a Oops, apparently in KLIPS module. Recently I tried to upgrade
> to 2.4.14, due to CVE-2009-0790, and I had several crashes on three
> different servers. On top of that, I could not get the tunnel to work. I
> could ping the remote subnet, but any other protocol would not go
> through, and eventually, one of the servers would crash. Here is the
> scenario:

That's unfortunate. I do not know why KLIPS would cause those problems
on newer versions.

You can run KLIPS from 2.4.10 with the userland of 2.4.14, as the CVE
issue is purely a userland issue.

The oops does not really tell us much, it does not seem to have happened
in the klips code.

Paul


More information about the Users mailing list