Hello!
I'm playing with iked on current and found some strange behaviour.
After i issued the reload command iked process consumes 100% CPU.
# ps auxw | grep iked
_iked 16598 0.0 0.4 1892 1096 ?? I 9:54PM 0:00.00
iked: ca (iked)
root 7333 0.0 0.6 2124 1460 ?? Is 9:54PM 0:00.00
iked: parent (iked)
_iked 23699 0.0 0.4 1832 884 ?? I 9:54PM 0:00.00
iked: ikev1 (iked)
_iked 21828 0.0 0.4 1860 1084 ?? I 9:54PM 0:00.00
iked: ikev2 (iked)
#
# ikectl reload
#
# ps auxw | grep iked
_iked 21828 97.0 0.4 1872 1100 ?? R 9:54PM 1:12.57
iked: ikev2 (iked)
_iked 16598 0.0 0.5 1960 1180 ?? I 9:54PM 0:00.00
iked: ca (iked)
root 7333 0.0 0.6 2144 1464 ?? Is 9:54PM 0:00.00
iked: parent (iked)
_iked 23699 0.0 0.4 1832 900 ?? I 9:54PM 0:00.00
iked: ikev1 (iked)
# ifconfig
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33144
priority: 0
groups: lo
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
inet 127.0.0.1 netmask 0xff000000
vio0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 08:00:27:c4:ea:4a
priority: 0
groups: egress
media: Ethernet autoselect
status: active
inet6 fe80::a00:27ff:fec4:ea4a%vio0 prefixlen 64 scopeid 0x1
inet 10.0.2.15 netmask 0xffffff00 broadcast 10.0.2.255
vio1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 08:00:27:8b:79:fb
priority: 0
media: Ethernet autoselect
status: active
inet6 fe80::a00:27ff:fe8b:79fb%vio1 prefixlen 64 scopeid 0x2
inet 192.168.56.101 netmask 0xffffff00 broadcast 192.168.56.255
enc0: flags=0<>
priority: 0
groups: enc
status: active
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33144
priority: 0
groups: pflog
vether0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> rdomain 1 mtu 1500
lladdr fe:e1:ba:d0:7e:75
priority: 0
groups: vether
media: Ethernet autoselect
status: active
inet 172.16.1.1 netmask 0xffffff00 broadcast 172.16.1.255
inet6 fe80::fce1:baff:fed0:7e75%vether0 prefixlen 64 scopeid 0x6
vether1: flags=8802<BROADCAST,SIMPLEX,MULTICAST> rdomain 2 mtu 1500
lladdr fe:e1:ba:d1:83:38
priority: 0
groups: vether
media: Ethernet autoselect
status: active
# cat /etc/iked.conf
ikev2 esp \
from 10.3.0.0/24 to 10.1.0.0/24 \
from 10.5.0.0/24 to 10.1.0.0/24 \
from 10.5.0.0/24 to 172.16.2.0/24 \
local 192.168.56.101 peer 192.168.2.1 \
psk "you-should-not-use-psk-authentication!"
# dmesg
OpenBSD 5.5-current (GENERIC) #122: Mon May 12 22:32:59 MDT 2014
[email protected]:/usr/src/sys/arch/amd64/compile/GENERIC
real mem = 251592704 (239MB)
avail mem = 236306432 (225MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.5 @ 0xe1000 (10 entries)
bios0: vendor innotek GmbH version "VirtualBox" date 12/01/2006
bios0: innotek GmbH VirtualBox
acpi0 at bios0: rev 2
acpi0: sleep states S0 S5
acpi0: tables DSDT FACP APIC SSDT
acpi0: wakeup devices
acpitimer0 at acpi0: 3579545 Hz, 32 bits
acpimadt0 at acpi0 addr 0xfee00000: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 2480.80 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,MWAIT,SSSE3,NXE,LONG,LAHF,PERF
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: smt 0, core 0, package 0
mtrr: CPU supports MTRRs but not enabled by BIOS
cpu0: apic clock running at 1000MHz
ioapic0 at mainbus0: apid 1 pa 0xfec00000, version 11, 24 pins
acpiprt0 at acpi0: bus 0 (PCI0)
acpicpu0 at acpi0
acpibat0 at acpi0: BAT0 model "1" serial 0 type VBOX oem "innotek"
acpiac0 at acpi0: AC unit online
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 "Intel 82441FX" rev 0x02
pcib0 at pci0 dev 1 function 0 "Intel 82371SB ISA" rev 0x00
pciide0 at pci0 dev 1 function 1 "Intel 82371AB IDE" rev 0x01: DMA,
channel 0 configured to compatibility, channel 1 configured to
compatibility
wd0 at pciide0 channel 0 drive 0: <VBOX HARDDISK>
wd0: 128-sector PIO, LBA, 2048MB, 4194304 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
atapiscsi0 at pciide0 channel 1 drive 0
scsibus1 at atapiscsi0: 2 targets
cd0 at scsibus1 targ 0 lun 0: <VBOX, CD-ROM, 1.0> ATAPI 5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
vga1 at pci0 dev 2 function 0 "InnoTek VirtualBox Graphics Adapter" rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
virtio0 at pci0 dev 3 function 0 "Qumranet Virtio Network" rev 0x00:
Virtio Network Device
vio0 at virtio0: address 08:00:27:c4:ea:4a
virtio0: apic 1 int 19
"InnoTek VirtualBox Guest Service" rev 0x00 at pci0 dev 4 function 0
not configured
auich0 at pci0 dev 5 function 0 "Intel 82801AA AC97" rev 0x01: apic 1
int 21, ICH AC97
ac97: codec id 0x83847600 (SigmaTel STAC9700)
audio0 at auich0
ohci0 at pci0 dev 6 function 0 "Apple Intrepid USB" rev 0x00: apic 1
int 22, version 1.0
piixpm0 at pci0 dev 7 function 0 "Intel 82371AB Power" rev 0x08: SMBus disabled
virtio1 at pci0 dev 8 function 0 "Qumranet Virtio Network" rev 0x00:
Virtio Network Device
vio1 at virtio1: address 08:00:27:8b:79:fb
virtio1: apic 1 int 16
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
usb0 at ohci0: USB revision 1.0
uhub0 at usb0 "Apple OHCI root hub" rev 1.00/1.00 addr 1
vscsi0 at root
scsibus2 at vscsi0: 256 targets
softraid0 at root
scsibus3 at softraid0: 256 targets
root on wd0a (34b3aefbcbcc3c62.a) swap on wd0b dump on wd0b
