]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 306c0c9) | patch
vici: Directly provide CA certificates in authority sections
authorTobias Brunner <tobias@strongswan.org>
Wed, 20 May 2020 12:40:51 +0000 (14:40 +0200)
committerTobias Brunner <tobias@strongswan.org>
Mon, 20 Jul 2020 12:05:38 +0000 (14:05 +0200)
commit46ff2688856441dc22daf74d728302ae88b27b81
tree36afe939b61a7793fcfc406bafa67baabe305d33tree | snapshot
parent306c0c9f8e4c33cf5a74a54224e8281d76c6d4a4commit | diff
vici: Directly provide CA certificates in authority sections

With the previous approach, CA certificates that were not re-loaded via
load-cert() (e.g. from tokens or via absolute paths) would not be available
anymore after the clear-creds() command was used.  This avoids this
issue, but can cause duplicate CA certificates to get stored and enumerated,
so there might be a scaling factor.
src/libcharon/plugins/vici/vici_authority.c diff | blob | blame | history
src/libcharon/plugins/vici/vici_authority.h diff | blob | blame | history
src/libcharon/plugins/vici/vici_plugin.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.