[strongSwan] ipv6 address parsing from certificate
divya mohan
divzsecondary at gmail.com
Wed Mar 28 14:22:19 CEST 2012
Hi,
I am trying to configure ipsec using certificates.
I had generated openssl certificates with an ipv6 address (2002::5010:1) as
subjectAltName.
--------------------------------------------------------------
# openssl x509 -in cert.pem -noout -text
.
.
X509v3 Subject Alternative Name:
IP Address:2002:0:0:0:0:0:5010:1
.
.
--------------------------------------------------------------
But for some unknown reason, first 4 bytes of this ipv6 is being parsed as
an ipv4 address.
Logs:
-----------------------------------------------------------------------------------------------------------------------------------------------------
charon: 16[LIB] L8 - ipAddress:
charon: 16[LIB] => 16 bytes @ 0x100a2028
charon: 16[LIB] 0: 20 02 00 00 00 00 00 00 00 00 00 00 50 10 00 01
...........P...
charon: 16[LIB] '32.2.0.0'
# ipsec stroke listcerts
List of X.509 End Entity Certificates:
altNames: 32.2.0.0
-----------------------------------------------------------------------------------------------------------------------------------------------------
Any suggestion on how to proceed?
Regards,
Divya
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120328/3f0e5bf8/attachment.html>
More information about the Users
mailing list