<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:arial, helvetica, sans-serif;font-size:12pt"><div><br></div><div>Thanks for the reply. That is interesting. I'm using OpenSSL 0.9.8n that I had to build from source. This gives me something to try as well.</div><div><br></div><div>Thanks!</div><div>Bill</div><div style="font-family:arial, helvetica, sans-serif;font-size:12pt"><br><div style="font-family:arial, helvetica, sans-serif;font-size:13px"><font size="2" face="Tahoma"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Tobias Brunner <tobias@strongswan.org><br><b><span style="font-weight: bold;">To:</span></b> users@lists.strongswan.org<br><b><span style="font-weight: bold;">Sent:</span></b> Fri, December 3, 2010 10:19:46 AM<br><b><span style="font-weight: bold;">Subject:</span></b> Re: [strongSwan] Fail on loading secrets (ECDSA)<br></font><br>
Hi Bill,<br><br>I just tried to recreate the crash with the certificate and key you <br>provided, but I wasn't able to. Using strongSwan 4.5.0 and OpenSSL <br>0.9.8o, it worked flawlessly:<br><br> Output of ipsec listcerts:<br><br> subject: "C=US, ST=NC, O=CO, CN=KAP8"<br> issuer: "C=US, ST=NC, O=CO, CN=KAP8"<br> serial: 00:c8:89:b5:5e:e1:01:2e:43<br> validity: not before Nov 30 21:20:58 2010, ok<br> not after Dec 30 21:20:58 2010, ok (expires in 27 days)<br> pubkey: ECDSA 384 bits, has private key<br> keyid: 85:c1:33:e6:5f:47:be:78:1a:eb:f4:37:c9:dd:92:00:22:91:a2:a9<br> subjkey: 53:9e:25:03:bc:a4:fa:1b:26:f0:55:c0:dd:0b:6b:14:30:34:8f:2f<br> authkey: 53:9e:25:03:bc:a4:fa:1b:26:f0:55:c0:dd:0b:6b:14:30:34:8f:2f<br><br>It might be a problem with your version of
OpenSSL.<br><br>To debug charon with gdb, you can try to start it with "ipsec start <br>--attach-gdb".<br><br>Regards,<br>Tobias<br><br>On 12/03/2010 03:30 PM, William Greene wrote:<br>><br>> I'm pretty much at a dead end on how to proceed further. Does anyone<br>> have ideas or suggestions to debug the charon daemon when it is in a<br>> restart loop when using ECDSA public and private keys?<br>><br>> Thanks in advance for any help and/or suggestions to proceed,<br>> Bill<br><br>_______________________________________________<br>Users mailing list<br><a ymailto="mailto:Users@lists.strongswan.org" href="mailto:Users@lists.strongswan.org">Users@lists.strongswan.org</a><br><a href="https://lists.strongswan.org/mailman/listinfo/users" target="_blank">https://lists.strongswan.org/mailman/listinfo/users</a><br></div></div><div style="position:fixed"></div>
</div><br>
</body></html>