[strongSwan] %prompt not working

Tobias Brunner tobias at strongswan.org
Tue Sep 11 15:11:15 CEST 2012

Hi Claude,

> Is there a special reason for this ?

It was always like this for the charon daemon, which has no connection
to the console when the stroke plugin (which reads the secrets) is
initialized during startup.  When ipsec rereadsecrets is executed later
stroke maintains a connection with the plugin that allows it to log
error messages and prompt for passwords and PINs.  I think pluto also
prompted for PINs during ipsec up, but due to its multi-threaded nature
and its different handling of secrets charon currently can't do this.


More information about the Users mailing list