From owner-freebsd-current@FreeBSD.ORG  Tue Sep 10 14:27:42 2013
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 5B4DBED5
 for <freebsd-current@freebsd.org>; Tue, 10 Sep 2013 14:27:42 +0000 (UTC)
 (envelope-from vince@unsane.co.uk)
Received: from unsane.co.uk (unsane-pt.tunnel.tserv5.lon1.ipv6.he.net
 [IPv6:2001:470:1f08:110::2])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id D6C5B2EAB
 for <freebsd-current@freebsd.org>; Tue, 10 Sep 2013 14:27:41 +0000 (UTC)
Received: from vhoffman.lon.namesco.net (lon.namesco.net [195.7.254.102])
 (authenticated bits=0)
 by unsane.co.uk (8.14.7/8.14.6) with ESMTP id r8AERZ1a003625
 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO);
 Tue, 10 Sep 2013 15:27:37 +0100 (BST)
 (envelope-from vince@unsane.co.uk)
Message-ID: <522F2C58.2010700@unsane.co.uk>
Date: Tue, 10 Sep 2013 15:27:36 +0100
From: Vincent Hoffman <vince@unsane.co.uk>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6;
 rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: Maciej Milewski <milu@dat.pl>
Subject: Re: Panic/Freeze with IPSEC on r254532
References: <5213939C.8050609@unsane.co.uk>
 <alpine.BSF.2.00.1309100916020.73394@thunderhorn.york.ac.uk>
 <522F1184.2010107@unsane.co.uk> <522F1DB3.3020407@dat.pl>
In-Reply-To: <522F1DB3.3020407@dat.pl>
X-Enigmail-Version: 1.5.2
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: "freebsd-current@freebsd.org" <freebsd-current@freebsd.org>
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Sep 2013 14:27:42 -0000

On 10/09/2013 14:25, Maciej Milewski wrote:
> On 10.09.2013 14:33, Vincent Hoffman wrote:
>> root@bsdpkgbuild:~ # racoonctl show-sa ipsec
>> send: Bad file descriptor
>> l
>> I did try stating racoon under truss and using racoon -F -d -d -d but
>> didnt see it even try to open /var/db/racoon/racoon.sock
>> while on the other end (8.4-RELEASE) I see
>> 2013-09-10 13:24:19: DEBUG: open /var/db/racoon/racoon.sock as racoon
>> management.
>> in the output from racoon -F -d -d -d
>>
> Have you enabled admin port during installation of ipsec-tools?
>
I have
OPTIONS_FILE_UNSET+=ADMINPORT
in the options file so I didnt think so.
but on the working (8.4-RELEASE) box i have
OPTIONS_FILE_SET+=ADMINPORT

ok will change that. pebkac :)

Vince