[strongSwan] Why a certificate error when we are using PSK....
martin at strongswan.org
Tue Apr 3 08:39:01 CEST 2012
> invalid X509 hash length (0)in certreq
> CERTIFICATE_REQUEST payload verification failed
It seems that your Sonicwall sends a CERTREQ payload without any
content, which does not make much sense to me (especially with PSK
settings). We are rather strict in payload checking and hence reject the
Try the attached patch, strongSwan should accept and ignore the payload
with the patch applied.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 917 bytes
Desc: not available
More information about the Users