[strongSwan] Building of deb of Strongswan in my own (false) !
CpServiceSPb .
cpservicespb at gmail.com
Fri Jul 25 15:23:08 CEST 2014
I have Ubuntu 14.04 Lts installed.
There is 5.1.2 version in repository.
But there is 5.2.1dc1 version in Git.
So I tried to build 5.2.1dc1 as 5.2.0 from tarball:
./configure --prefix=/usr/local/strongswan --sysconfdir=/etc --enable-acert
--enable-addrblock --enable-af-alg --enable-agent --enable-blowfish.
--enable-ccm --enable-certexpire --enable-cmd --enable-conftest
--enable-coupling --enable-ctr --enable-curl --enable-dhcp --enable-dnscert.
--enable-duplicheck --enable-eap-aka --enable-eap-dynamic
--enable-eap-identity --enable-eap-md5 --enable-eap-mschapv2
--enable-eap-peap.
--enable-eap-radius --enable-eap-sim --enable-eap-sim-file --enable-eap-tls
--enable-eap-tnc --enable-eap-ttls --enable-error-notify --enable-farp.
--enable-ha --enable-imc-attestation --enable-imc-os --enable-imc-scanner
--enable-imc-swid --enable-imc-test --enable-imv-attestation
--enable-imv-os.
--enable-imv-scanner --enable-imv-swid --enable-imv-test
--enable-integrity-test --enable-ipseckey --enable-kernel-klips
--enable-kernel-libipsec.
--enable-kernel-pfkey --enable-libipsec --enable-leak-detective
--enable-led --enable-load-tester --enable-lock-profiler --enable-lookip
--enable-md4.
--enable-monolithic --enable-ntru --enable-openssl --enable-padlock
--enable-pkcs11 --enable-rdrand --enable-smp --enable-socket-dynamic.
--enable-systime-fix --enable-test-vectors --enable-tnccs-11
--enable-tnccs-20 --enable-tnccs-dynamic --enable-tnc-ifmap
--enable-unit-tester.
--enable-whitelist --enable-xauth-eap --enable-xauth-noauth
--enable-kernel-iph --enable-winhttp --enable-medcli && make &&
checkinstall -D --install=no
Made without make also.
But after starting of built Strongswan there are messages:
/usr/local/strongswan/lib/ipsec/libstrongswan.so.0 @ 0xb763e000
(leak_detective_create+0x77) [0xb76825f7]
-> ??:?
/usr/local/strongswan/lib/ipsec/libstrongswan.so.0 @ 0xb763e000
(library_init+0xad) [0xb7655b8d]
-> ??:?
/usr/local/strongswan/libexec/ipsec/starter @ 0x8048000 [0x8049b33]
-> ??:0
/lib/i386-linux-gnu/libc.so.6 @ 0xb7446000 (__libc_start_main+0xf3)
[0xb745fa83]
-> /build/buildd/eglibc-2.19/csu/libc-start.c:321
/usr/local/strongswan/libexec/ipsec/starter @ 0x8048000 [0x804abb6]
-> ??:0
And when client tries to connect:
IPsec SA: unsupported mode
failed to create SAD entry
IPsec SA: unsupported mode
failed to create SAD entry
unable to install inbound and outbound IPsec SA (SAD) in kernel
How is build correctly Strongswan ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20140725/8b2d1388/attachment.html>
More information about the Users
mailing list