Error Unable To Get Local Issuer Certificate20 Raccoon
Contents |
Thu, 20 Mar 2003 17:46:02 +0100 Delivered-to: racoon-archive@kame.net Delivered-to: racoon-outgoing@kame.net Delivered-to: racoon@kame.net Importance: normal Reply-to: racoon@kame.net Sender: owner-racoon@kame.net error 20 at 0 depth lookup:unable to get local issuer certificate Thread-index: AcLvADSaxk3y/EJVTIuGddELZM3YpQ== Thread-topic: How trust a certification authotiry Hi all
Verify Error Num 20 Unable To Get Local Issuer Certificate
i am using racoon (netBSD 1.6) with certificates and I need to trust a error unable to get local issuer certificate getting chain certification authority. I installed the CA certificate file in my openssl cert dir and create a link named
Verify Error:num=20:unable To Get Local Issuer Certificate
Faito racoon: ERROR: oakley.c:1291: Invalid authority of the CERT. I have no idea where the error is. Can someone help me? ++Fabrizio ==================================================================== CONFIDENTIALITY NOTICE This message and its attachments are addressed solely to the persons above and may contain confidential information. If you have received the message in error, be informed that any use of the content hereof is prohibited. Please return it immediately to the sender and delete the message. Should you have any questions, please contact us by replying to MailAdmin@tilab.com. Thank you ==================================================================== Follow-Ups: (racoon 67) Re: How trust a certification authotiry From: Shoichi Sakane
I installed the CA certificate file in my openssl cert dir and create a link named
Curl Unable To Get Local Issuer Certificate
local issuer certificate(20) at depth:0 SubjectName:/C=IT/O=o/OU=IPsec Devices/CN=cn Mar 20 17:53:04 Faito racoon: ERROR: oakley.c:1291: Invalid authority of the CERT. I have no idea where the error is. Can someone help me? http://www.kame.net/racoon/racoon-ml/msg00054.html ++Fabrizio ==================================================================== CONFIDENTIALITY NOTICE This message and its attachments are addressed solely to the persons above and may contain confidential information. If you have received the message in error, be informed that any use of the content hereof is prohibited. Please return it immediately to the sender and delete the message. Should you have any questions, please contact us by replying to http://osdir.com/ml/network.ipv6.kame.racoon/2003-03/msg00007.html MailAdmin@xxxxxxxxxx Thank you ==================================================================== Thread at a glance: Previous Message by Date: (racoon 59) Fw: bin/20704 ---BeginMessage--- Hi itojun, I am trying to analyze bin/20704 and maybe you can help me out. In racoon/pfkey.c:1136 I find: /* * since we are going to reuse the phase2 handler, we need to * remain it and refresh all the references between ph1 and ph2 to use. */ unbindph12(iph2); iph2->sce = sched_new(iph2->approval->lifetime, isakmp_ph2expire_stub, iph2); Could you elaborate on that ? As it looks like from looking at the coredump I have, the phase2 handler gets passed to isakmp_ph2resend after isakmp_ph2expire is scheduled but before isakmp_ph2expire is called (sc->dead is still 0). How does it get 'reused' ? Greetings, -- Michael van Elst Internet: mlelstv@xxxxxxxxxx "A potential Snark may lurk in every tree." ---End Message--- Next Message by Date: (racoon 61) Configuring racoon with multiple road-warriors ---BeginMessage--- Hi, I'm trying to figure out how to use setkey and racoon to make a couple different IPsec configurations. 1) a road-warrior.. I'd like to configure a machine to tunnel back to a known VPN server. I know what my int