[Bug 219453] tcpmd5 kernel module regression
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue May 23 08:39:29 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219453
Andrey V. Elsukov <ae at FreeBSD.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ae at FreeBSD.org
--- Comment #4 from Andrey V. Elsukov <ae at FreeBSD.org> ---
(In reply to Marek Zarychta from comment #0)
> After upgrade from 11.0-STABLE r318137 to 11.1-PRERELEASE TCP MD5 signatures
> cannot be verified, so bird session cannot be established.
> Neither ISP, nor our side changed the configuration. Bird-1.6.3_1 was
> recompiled from port, but it doesn't fix the trouble.
> # netstat -sp tcp | grep signature
> 0 packets with matching signature received
> 4601 packets with bad signature received
> 42 times failed to make signature due to no SA
> 0 times unexpected signature received
> 30 times no signature provided by segment
There were no changes in stable/11 in TCP-MD5 code. So if it worked in r318137,
it should work. Do you use bird's "password" option to set SAs or are they set
via setkey(8)? There is patch for bird in
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=218907
I sent it to bird's developer and port maintainer, but seems it is not
committed.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list