Hi,
Thanks for your reply.
I am trying to establish SA between two machines of which one is QNX
machine and the other is Linux machine. I am able to transmit the
IKE_SA_INIT request and response messages from one machine to another
but when IKE_AUTH request is received by any of the machine it
Hi,
1) upgrade to kernel 2.6.29 and apply patch [1] from above, to the linux
kernel.
No, 2.6.29 already contains the patch.
2) stick with kernel 2.6.28 and apply the disable-iaf-tunnels patch to
charon, (this patch will brake v6/v4 mixed operation)
Yes, then no kernel patch is required.
Hi,
I just got the solution of my problem. Its actually the problem of
endianness as the endianness is not getting set in the sha1_hasher.c
and also the code on qnx is compiled using armbe which is big endian.
So I just set the BIG_ENDIAN in the sha1_hasher.c and finally the
authentication is
Hello Sasha,
yeah, the proposal parser does not recognize your belt cipher
defined by
esp=belt-sha1!
the error message is
Sep 3 15:57:27 samar charon:
02[CFG] skipped invalid proposal string: belt-sha1
The new entry in libstrongswan/crypto/proposal/proposal_keywords.txt
ecp384,
Hello,
I try to add ability to use my custom cipher algorithm with charon ESP in
strongSwan4.3.4.
First, I have edited linux kernel to add this algorithm via CryptoAPI and
XFRM interface.
Then I have use this commands to test that this algorithm is can be used by
the kernel:
# ip xfrm state
Hi Vivek,
could you send a log file generated with the options
charondebug=chd 2, knl2
on the linux machine so the reason for the delete becomes
apparent.
Regards
Andreas
vivek bairathi wrote:
Hi,
I just got the solution of my problem. Its actually the problem of
endianness as the
Hi,
received NO_PROPOSAL_CHOSEN notify, no CHILD_SA built
Your peer does not like the proposal you offer. Have you included the
belt cipher in your peers proposal, too?
Regards
Martin
___
Users mailing list
Users@lists.strongswan.org