[Swan-dev] ikev2-frag-02-ipv6 fails due to certificate problems
Tuomo Soini
tis at foobar.fi
Sat Jun 20 13:37:54 EEST 2015
On Sat, 20 Jun 2015 04:26:07 -0400 (EDT)
"D. Hugh Redelmeier" <hugh at mimosa.com> wrote:
> I don't think that I had anything to do with this failure (but I
> cannot be sure):
>
> +certutil: unable to open "/testing/x509/certs/key4096.crt" for
> reading (-5950, 2).
>
> -002 added connection description "v6-tunnel"
> +000 leftcert with the nickname "key4096" does not exist in NSS db
You need to recreate testing certificates - new 4096 sized host key,
is needed so fragmentation is triggered.
--
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
More information about the Swan-dev
mailing list