[Swan] Cannot compile Libreswan 3.14 and newer on CentOS 5

Paul Wouters paul at nohats.ca
Fri Sep 25 18:39:53 UTC 2015


On Fri, 25 Sep 2015, Tomas France wrote:

> Subject: Re: [Swan] Cannot compile Libreswan 3.14 and newer on CentOS 5
> 
> The prelink trick worked, it's all "green" now.
>
> However, both the "ipsec checknss" and "ipsec initnss" commands result in
> the mentioned error. See below:
>
> ---------------------------------------
> [root at fr4 logs]# ipsec checknss
> Initializing NSS database
> See 'man pluto' if you want to protect the NSS database with a password
>
> certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key
> database is in an old, unsupported format.
> Failed to initialize nss database sql:/etc/ipsec.d

Looks like the RHEL5 version of nss does not support the sql format? I
guess you should grab the nss srpm of centos6 and recompile for centos5

Paul


More information about the Swan mailing list