Bug ID 474751: IKEv1 daemon crashes when flushing SAs

Last Modified: Oct 06, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4

Fixed In:
12.0.0, 11.6.0 HF5

Opened: Aug 06, 2014
Severity: 1-Blocking

Symptoms

IKEv1 daemon (racoon) may occasionally crash because of freeing null pointer when the IKEv1 negotiation data is flushed.

Impact

IKEv1 daemon (racoon) crashes and restarts, losing unrelated but useful state information. IKEv1 daemon (racoon) can re-establish security associations on demand by user traffic.

Conditions

The IKEv1 security associations are flushed by user issued commands.

Workaround

None.

Fix Information

A safety check during memory management function can prevent such erroneous memory freeing event. Crash is no longer seen.

Behavior Change