[Pkg-swan-devel] Bug#1098865: strongswan-starter: bug in /usr/sbin/ipsec, service fails to start

[Giacomo Mulas]

Package: strongswan-starter
Version: 6.0.0-2
Severity: important

Dear Maintainer,

the latest strongswan-starter package has a bug in the starting script: it attempts to execute /ust/lib/ipsec/charon (hardcoded) but /ust/lib/ipsec/charon is not installed by it nor by any of its dependencies. There is /usr/lib/ipsec/charon-nm, but no charon. Creating by hand a link charon-nm -> charon allowed it to successfully start, but this is not the kind of manual fiddling one would want to do.
Please make sure that the starter script attempts to use an executable that can be assumed to be present, either because it was installed by its dependencies or because it created it.

Thanks in advance, best regards
Giacomo Mulas


-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (401, 'unstable'), (10, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.12.16-amd64 (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages strongswan-starter depends on:
ii  adduser                3.141
ii  debconf [debconf-2.0]  1.5.89
ii  init-system-helpers    1.68
ii  libc6                  2.40-7
ii  libstrongswan          6.0.0-2
ii  sysvinit-utils         3.14-3

Versions of packages strongswan-starter recommends:
pn  strongswan-charon  <none>

strongswan-starter suggests no packages.

-- Configuration Files:
/etc/ipsec.secrets [Errno 13] Permesso negato: '/etc/ipsec.secrets'

-- debconf information excluded