I've found the reason for the error message iked[24455]: pfkey_write: writev failed: Invalid argument iked[24455]: pfkey_write: writev failed: Invalid argument
that comes up when the Child SA expires. (this affects 6.4 and -current) It appears when using a tap interface != default enc0 (for example enc5 in routing domain 5). So you can simply reproduce via $ doas ifconfig enc1 create use "tap enc1" in iked.conf (hint: "tap enc0" works) For testing purposes it makes sense to lower "lifetime" to f.e. 2m. On Tue, Sep 25, 2018 at 10:50:43AM -0300, Martin Pieuchot wrote: > On 24/09/18(Mon) 20:21, Mark Patruck wrote: > > Hi Martin, > > > > if you need additional info or have a diff to test, drop me a > > note. > > I don't have time to look at this, better send a report to bugs@, you > could also poke patrick@ to see if he has some ideas. -- Mark Patruck ( mark at wrapped.cx ) GPG key 0xF2865E51 / 187F F6D3 EE04 1DCE 1C74 F644 0D3C F66F F286 5E51 http://www.wrapped.cx
