Identifier verification fails with UTF-8-encoded RDN
Bug #1407274 reported by
Kaarle Ritvanen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ipsec-tools (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Ubuntu Trusty seems to be affected by the scenario number 1 described in this post on OpenSSL's bug tracker:
http://
To summarize, verifying the peer's identifer fails when the peer's DN contains a component of ASN.1 type UTF8String. As per RFC 3280, all new X.509 certificates must use such an encoding for DNs.
I have tested with the following version of racoon: 1:0.8.0-14ubuntu4
To post a comment you must log in.