On Tue, 16 Jan 2024 at 14:45, Paul Wouters <[email protected]> wrote: > > On Jan 16, 2024, at 13:51, Marc <[email protected]> wrote: > > > > Working with the CA of the example on this page[1] > > > > certutil -S -x -n "Example CA" -s "O=Example,CN=Example CA" \ > > -k rsa -g 4096 -v 12 -d sql:${HOME}/tmpdb -t "CT,," -2 > > > > certs xxx.example.com are accepted however aaa.bbbb.example.com seem to be > > reject. > > Why? Did you specify constrains in the rightid= ? > > > This is not really logged, is it possible to have this logged? > > Can you show the full log of what you see? All rejections are logged.
I suspect I've seen this, can you file a bug with the example and add the tag logging. _______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
