[strongSwan] How do dump additional data during IKEv2 AUTH verification

Dennis Frett frett at us.ibm.com
Tue Sep 18 17:52:16 CEST 2012

I'm trying to debug an IKEv2 issue with strongswan and another platform i'm
testing with.  The issue is that strongswan does not appear to authenticate
the signature sent in the AUTH payload from the other platform in the
IKE_AUTH response.

in charon.log i see the following:
11[IKE] octets = message + nonce + prf(Sk_px, IDx') => 413 bytes @

Is there any way for me to have strongswan dump or for me to otherwise
access the entire 413 bytes generated by strongswan here for the AUTH
signature validation?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120918/3d8f8c7c/attachment.html>

More information about the Users mailing list