[Openswan Users] "/usr/local/sbin/ipsec setup --start" doesn't return the prompt on Ubuntu 9.10 when complied from source.
Paul Wouters
paul at xelerance.com
Thu Dec 10 09:20:23 EST 2009
On Thu, 10 Dec 2009, phearnomore wrote:
> Once again it froze. Differently then with /bin/dash, at least "graphically":
>
> assiduus at ubuntu:~$ sudo /usr/local/sbin/ipsec setup --start
> ipsec_setup: Starting Openswan IPsec U2.6.23/K2.6.31-14-generic-pae...
> ^C
> assiduus at ubuntu:~$
>
> but in comparison to the dash freezing this is what it got from ps aux
> - and it grows every time I run Openswan with bash:
>
> root 9453 0.0 0.0 2720 640 pts/0 S 12:54 0:00
> /bin/sh /usr/local/lib/ipsec/_plutorun --debug --uniqueids yes --f
> root 9457 0.0 0.0 2692 1140 pts/0 S 12:54 0:00
> /bin/sh /usr/local/libexec/ipsec/newhostkey --quiet
> root 9461 0.0 0.0 2692 668 pts/0 S 12:54 0:00
> /bin/sh /usr/local/libexec/ipsec/newhostkey --quiet
> root 9464 0.0 0.0 1948 408 pts/0 S 12:54 0:00
> /usr/local/libexec/ipsec/rsasigkey 2192
> root 9468 0.0 0.0 2692 612 pts/0 S 12:54 0:00
> /bin/sh /usr/local/libexec/ipsec/newhostkey --quiet
It is generating a new host key and your system is either low on cpu or
low on entropy. This will only happen on the first initial startup when
openswan is creating a raw RSA hostkey. You should wait until this is
done, possibly generating disk or network IO for interrupts which feed
into the entropy pool.
Paul
More information about the Users
mailing list