[strongSwan] How to display negotiated key values using VICI
Noel Kuntze
noel.kuntze+strongswan-users-ml at thermi.consulting
Wed May 31 13:42:15 CEST 2017
On 31.05.2017 13:36, Subramonia Pillai wrote:
> Thanks Noel. But I am writing my own version of "swanctl --list-sa" that should display keyvalue too
>
> Could you please share any pointer to achieve this req.
I don't have any, sorry.
>
> thanks
> subbu
>
> On 31 May 2017 at 16:56, Noel Kuntze <noel.kuntze+strongswan-users-ml at thermi.consulting <mailto:noel.kuntze+strongswan-users-ml at thermi.consulting>> wrote:
>
> Hello Subramonia,
>
> On 31.05.2017 12:40, Subramonia Pillai wrote:
> > Hi,
> >
> > I am using kernel-libipsec and vici. The problem is when trying to display the details of established SAs using VICI, the negotiated keyvalue are not getting printed.
> Keyvalue? Do you mean the key length? That is statically defined in the RFCs for those algorithms and is not variable.
> >
> > I tried listing the SAs, similar to 'swanctl --list-sa' command. Only the encr-alg and encr-keysize are displayed, but the negotiated key value not getting displayed.
> That is because that would be superfluous information.
>
> Kind regards
>
> Noel
>
>
>
>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170531/a4804632/attachment.sig>
More information about the Users
mailing list