[Pkg-swan-devel] Bug#866324: Bug#866324: strongswan-swanctl: Install empty directories that ‘swanctl --load-all’ expects

Gerald Turner gturner at unzane.com
Wed Jun 28 21:07:43 UTC 2017

On Wed, Jun 28 2017, Yves-Alexis Perez wrote:
> On Wed, 2017-06-28 at 13:42 -0700, Gerald Turner wrote:
>> Whenever strongswan-swanctl.service is started, it logs warnings like:
>>   “opening directory '/etc/swanctl/x509' failed: No such file or directory”
>> I believe that, similar to how the strongswan-starter package
>> installs empty directores that are scanned by the charon daemon
>> (‘/etc/ipsec.d/cacerts’, etc.), that the strongswan-swanctl package
>> should also have it's dependent directores installed.
>> This would eliminate the [harmless] log messages and also aid in
>> discovery for and admins setting up strongswan-swanctl for the first
>> time.
> I don't have those logs message, because the folders actually exist
> here, so I somehow have the feeling that strongSwan actually created
> the directories itself.

I'm not sure... I made the conversion to VICI in April, I had these
errors in my test environment for days until I wrote that patch,
unfortunately my persistent journald logs don't go back that far.  I do
distinctly remember taking the time to grok the source code in order to
determine the correctness of this patch - and I don't recall seeing any
code which creates these directories.

Gerald Turner <gturner at unzane.com>        Encrypted mail preferred!
OpenPGP: 4096R / CA89 B27A 30FA 66C5 1B80  3858 EC94 2276 FDB8 716D
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 962 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-swan-devel/attachments/20170628/56fef900/attachment.sig>

More information about the Pkg-swan-devel mailing list