It is my understanding that the patch supplied only fixes IDs for DNs extracted from certs.
What about IDs from DNs mentioned as (left|right)id in config file? As far as I can see, they get scrambled too. Scenario is a CA-based authentication where each peer is using a CA-signed cert and leftid=%fromcert. Rightid is set to double-quoted remote peer's DN, which now shows as a binary (0x....) string in 'ipsec auto --status' whereas it used to be the human-readable before. O course, this breaks connections too What should I patch to oevercome this? Thanks & regards Guillaume
