[Swan] ERROR: netlink response for Del SA included errno 3: No such process

Paul Wouters paul at nohats.ca
Wed Feb 1 15:21:13 UTC 2017


On Tue, 31 Jan 2017, Xinwei Hong wrote:

> 
> Thanks. The only thing I did was "ipsec start/ipsec stop". It does not seem possible that administrator or something else could delete the interface or IP (and thus the SA). Is it
> possible that the code race condition and tries to delete the SA twice? I can probably just ignore it for now.

Yes, there are a few weird corner cases where the kernel auto-deletes
things when there are network changes.

It is usually safe to ignore, although in theory they could be some
plaintext packet leaks if you don't have proper firewall rules.

Paul


More information about the Swan mailing list