https://bugs.openwrt.org/index.php?do=details&task_id=2888
I believe it is 1556ed1 that caused this problem, ipsec works well after revert its changes.
1 Like
IPSec works again after switching to 5.4 kernel. But it seems that there are other issues, I will do more tests to confirm.
1 Like
This bug bit me too. I reverted commit 1556ed1 and all is fine again. This commit seems funky. xfrm_mode_beet, xfrm_mode_transport and xfrm_mode_tunnel were added way before kernel 5.2. At least xfrm_mode_tunnel anyway otherwise ipsec would not work at all in older kernels.
A diff from lsmod of the trunk and reverted versions shows exactly this:
xfrm4_mode_beet 16384 0
xfrm4_mode_transport 16384 0
xfrm4_mode_tunnel 16384 0
xfrm6_mode_beet 16384 0
xfrm6_mode_transport 16384 0
xfrm6_mode_tunnel 16384 0
Also, the ko files are missing:
Trunk:
root@router ~# opkg files kmod-ipsec4
Package kmod-ipsec4 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm4_tunnel.ko
/lib/modules/4.19.115/esp4.ko
/lib/modules/4.19.115/ah4.ko
/etc/modules.d/32-ipsec4
/lib/modules/4.19.115/ipcomp.ko
root@router ~# opkg files kmod-ipsec6
Package kmod-ipsec6 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm6_tunnel.ko
/lib/modules/4.19.115/ipcomp6.ko
/etc/modules.d/32-ipsec6
/lib/modules/4.19.115/esp6.ko
/lib/modules/4.19.115/ah6.ko
Reverted:
root@router ~# opkg files kmod-ipsec4
Package kmod-ipsec4 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm4_mode_beet.ko
/lib/modules/4.19.115/xfrm4_mode_tunnel.ko
/lib/modules/4.19.115/xfrm4_tunnel.ko
/lib/modules/4.19.115/xfrm4_mode_transport.ko
/lib/modules/4.19.115/esp4.ko
/lib/modules/4.19.115/ah4.ko
/etc/modules.d/32-ipsec4
/lib/modules/4.19.115/ipcomp.ko
root@router ~# opkg files kmod-ipsec6
Package kmod-ipsec6 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm6_mode_beet.ko
/lib/modules/4.19.115/xfrm6_tunnel.ko
/lib/modules/4.19.115/xfrm6_mode_tunnel.ko
/lib/modules/4.19.115/ipcomp6.ko
/lib/modules/4.19.115/xfrm6_mode_transport.ko
/etc/modules.d/32-ipsec6
/lib/modules/4.19.115/esp6.ko
/lib/modules/4.19.115/ah6.ko
How can I revert this changes?
to:
root@router ~# opkg files kmod-ipsec4
Package kmod-ipsec4 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm4_mode_beet.ko
/lib/modules/4.19.115/xfrm4_mode_tunnel.ko
/lib/modules/4.19.115/xfrm4_tunnel.ko
/lib/modules/4.19.115/xfrm4_mode_transport.ko
/lib/modules/4.19.115/esp4.ko
/lib/modules/4.19.115/ah4.ko
/etc/modules.d/32-ipsec4
/lib/modules/4.19.115/ipcomp.ko
root@router ~# opkg files kmod-ipsec6
Package kmod-ipsec6 (4.19.115-1) is installed on root and has the following files:
/lib/modules/4.19.115/xfrm6_mode_beet.ko
/lib/modules/4.19.115/xfrm6_tunnel.ko
/lib/modules/4.19.115/xfrm6_mode_tunnel.ko
/lib/modules/4.19.115/ipcomp6.ko
/lib/modules/4.19.115/xfrm6_mode_transport.ko
/etc/modules.d/32-ipsec6
/lib/modules/4.19.115/esp6.ko
/lib/modules/4.19.115/ah6.ko
Does this work for kernel 4.19?