From owner-freebsd-current@FreeBSD.ORG Tue Dec 9 14:52:37 2003 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0FE5916A4CE for ; Tue, 9 Dec 2003 14:52:37 -0800 (PST) Received: from maeko.hayai.de (maeko.hayai.de [217.172.178.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 58B4343D2C for ; Tue, 9 Dec 2003 14:52:33 -0800 (PST) (envelope-from mail@maeko.hayai.de) Received: from maeko.hayai.de (localhost [127.0.0.1]) by maeko.hayai.de (8.12.7/8.12.7) with ESMTP id hB9MqWia002177 (version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO) for ; Tue, 9 Dec 2003 23:52:32 +0100 Received: (from mail@localhost) by maeko.hayai.de (8.12.7/8.12.7/Submit) id hB9MqVXR002176 for current@freebsd.org; Tue, 9 Dec 2003 23:52:31 +0100 Date: Tue, 9 Dec 2003 23:52:31 +0100 From: Marco Wertejuk To: current@freebsd.org Message-ID: <20031209225231.GA2133@maeko.hayai.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.4i Subject: Is racoon known to be broken? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Dec 2003 22:52:37 -0000 Hello, today I tried to use racoon for isakmp, compiled it from my (todays) ports tree (portversion: 20030826a). The port compiled without problems but when I try to run racoon without modifying the default config it tells me, it could not parse the configuration file but truss shows this strange error (output from truss) lstat("/usr/local/etc/racoon/racoon.conf",0xbfbfd2b0) = 0 (0x0) open("/usr/local/etc/racoon/racoon.conf",0x0,0666) = 5 (0x5) break(0x80ae000) = 0 (0x0) ioctl(5,TIOCGETA,0xbfbfeb20) ERR#25 'Inappropriate ioctl for device' break(0x80af000) = 0 (0x0) fstat(5,0xbfbfe650) = 0 (0x0) break(0x80b3000) = 0 (0x0) read(0x5,0x80af000,0x4000) = 3080 (0xc08) read(0x5,0x80af000,0x4000) = 0 (0x0) gettimeofday(0xbfbfd848,0x0) = 0 (0x0) ... I could not get racoon running even after modifying the config file and the same configs are running in 4-Stable. When running racoon with -F -d it tells about 3DES being unsupported, I rebuilt world and my kernel to make sure it's not an out of sync problem but it persists: INFO: main.c:172:main(): @(#)package version freebsd-20030826a INFO: main.c:174:main(): @(#)internal version 20001216 sakane@kame.net INFO: main.c:175:main(): @(#)This product linked OpenSSL 0.9.7c 30 Sep 2003 (http://www.openssl.org/) DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for AH DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for ESP DEBUG: pfkey.c:371:pfkey_init(): call pfkey_send_register for IPCOMP DEBUG: cftoken.l:578:yycf_set_buffer(): reading config file /usr/local/etc/racoon/racoon.conf WARNING: cftoken.l:514:yywarn(): /usr/local/etc/racoon/racoon.conf:66: "support_mip6" it is obsoleted. use "support_proxy". DEBUG: algorithm.c:614:alg_oakley_dhdef(): hmac(modp1024) DEBUG: algorithm.c:614:alg_oakley_dhdef(): hmac(modp1024) ERROR: pfkey.c:2325:pk_checkalg(): Must get supported algorithms list first. ERROR: cftoken.l:494:yyerror(): /usr/local/etc/racoon/racoon.conf:103: ";" algorithm 3DES not supported ERROR: cfparse.y:1397:cfparse(): fatal parse failure (1 errors) Anyone seen this problem before? -- Mit freundlichen Gruessen, Marco Wertejuk - mwcis.com Consulting & Internet Solutions