[strongSwan] Startup with strongSwan 5.2.0
prashant.upadhyaya at aricent.com
Thu Jul 31 07:28:22 CEST 2014
I cross compiled strongSwan5.2.0 for MIPS thus (build machine x86) -
./configure CC=mips64-octeon-linux-gnu-gcc --host mips64 LDFLAGS=-L/home/prashant/gmp/lib CPPFLAGS=-I/home/prashant/gmp/include --prefix=/home/prashant/strongswan
Followed by make, make install
I cross compiled the gmp library separately and provided to the build above hence the additional LDFLAGS/CPPFLAGS
Then I picked all the install stuff and took it to the MIPS target, just used the factory default config files, no additional config as I just wanted to see if the whole thing starts up (will deal with additional config subsequently)
Now at the MIPS target system, when I do "ipsec start", I get the following logs -
/home/prashant/strongswan/sbin # ./ipsec start
Starting strongSwan 5.2.0 IPsec [starter]...
Jan 1 00:03:45 (none) authpriv.info ipsec_starter: Starting strongSwan 5.2.0 IPsec [starter]...
NET: Registered protocol family 15
Initializing XFRM netlink socket
Jan 1 00:03:45 (none) authpriv.info scepclient: building CRED_PRIVATE_KEY - RSA failed, tried 0 builders
error: no RSA private key available
Jan 1 00:03:45 (none) daemon.info charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.2.0, Linux 22.214.171.124-Cavium-Octeon, mips64)
Jan 1 00:03:45 (none) daemon.info charon: 00[LIB] feature CUSTOM:libcharon in critical plugin 'charon' has unmet dependency: NONCE_GEN
Jan 1 00:03:45 (none) daemon.info charon: 00[LIB] feature CUSTOM:libcharon-receiver in critical plugin 'charon' has unmet dependency: HASHER:HASH_SHA1
Jan 1 00:03:45 (none) daemon.info charon: 00[LIB] failed to load 2 critical plugin features
Jan 1 00:03:45 (none) daemon.info charon: 00[DMN] initialization failed - aborting charon
/home/prashant/strongswan/sbin # Jan 1 00:04:00 (none) authpriv.info ipsec_starter: charon too long to start... - kill kill
Jan 1 00:04:09 (none) authpriv.info ipsec_starter: starter_stop_charon(): charon does not respond, sending KILL
Jan 1 00:04:11 (none) authpriv.info ipsec_starter: starter_stop_charon(): can't stop charon !!!
Jan 1 00:04:11 (none) authpriv.info ipsec_starter: ipsec starter stopped
I did try the command -
ipsec pki -gen > myKey.der
and it failed with the same message highlighted above i.e. building CRED_PRIVATE_KEY - RSA failed, tried 0 builders
Am I missing something basic in the build itself or there is something wrong with my target setup/kernel, would appreciate any advice.
"DISCLAIMER: This message is proprietary to Aricent and is intended solely for the use of the individual to whom it is addressed. It may contain privileged or confidential information and should not be circulated or used for any purpose other than for what it is intended. If you have received this message in error, please notify the originator immediately. If you are not the intended recipient, you are notified that you are strictly prohibited from using, copying, altering, or disclosing the contents of this message. Aricent accepts no responsibility for loss or damage arising from the use of the information transmitted by this email including damage from virus."
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Users