Martin Willi
a474081f1f
Removed obsolete per-command debug level option
2009-09-16 12:52:56 +02:00
Martin Willi
4e1cade52f
Fixed loading of DER encoded certificate files
2009-09-16 11:24:35 +02:00
Andreas Steffen
934942dddb
corrected usage
2009-09-15 22:43:22 +02:00
Andreas Steffen
c657492705
pki --req generates a PKCS#10 certificate request
2009-09-15 22:33:32 +02:00
Andreas Steffen
edf30136b0
implemented ASN.1 encoding of PKCS#10 attributes
2009-09-15 21:55:44 +02:00
Andreas Steffen
8101695b32
fixed typo
2009-09-15 16:48:13 +02:00
Martin Willi
88fdf88a1f
Disable rtnetlink defaultroute lookup if pluto is disabled
...
As we do not support Pluto on BSD/Mac, exclude the Linux specific
rtnetlink routing lookup; Charon doesn't require it anyway.
2009-09-15 13:16:39 +02:00
Heiko Hund
aa5d446939
Get starter default route via rtnetlink
...
This patch changes the way routes are fetched from the kernel by starter.
The way it's currently done (via /proc) is limited to routes in the
"main" routing table. Routes from the "default" table are never seen by
starter. Starter may miss the default route even if it's set. Thus, default
routes are now read from the "main" and the "default" table.
The way this code behaves if more than one default route is found is slightly
different to before. Instead of bailing out it just chooses the one with the best
metric. I thought this was be a reasonable change.
2009-09-15 12:55:25 +02:00
Martin Willi
ae7452e87c
Handle pki --debug and --options in a generic way for all command
2009-09-15 11:53:46 +02:00
Martin Willi
4fdb9f6f74
pki tool supports single letter short options
2009-09-15 10:20:22 +02:00
Martin Willi
012f62a820
Exponents of a RSA key in openssl are optional (for PGP)
2009-09-15 09:33:00 +02:00
Martin Willi
b6b90b68a1
Added some NEWS
2009-09-15 09:13:31 +02:00
Martin Willi
9f45b19fe7
Use ID_KEY_ID as PGP user id, as it can contain any string
2009-09-15 08:45:08 +02:00
Martin Willi
e4be5ef8fb
Fall back to default credential set lookup if fingerprint lookup fails
2009-09-15 08:44:10 +02:00
Martin Willi
79c6f16212
Implemented support for preinstalled PGP certificates in charon
2009-09-15 08:23:48 +02:00
Martin Willi
4cb0e1bb76
Added basic support for PGP certificates (no trust relationships yet)
2009-09-15 08:23:48 +02:00
Martin Willi
88f3ffa1b1
Moved generic PGP parsing functions to pgp_utils.[ch]
2009-09-15 08:23:47 +02:00
Andreas Steffen
622e558cb0
pki --pub and --keyid accept pkcs10 as input
2009-09-15 06:24:14 +02:00
Martin Willi
0912f0d2bc
replaced the missed ${confdir} by ${sysconfdir}
2009-09-14 21:38:36 +02:00
Andreas Steffen
0001db115d
check if PKCS#10 version is 1
2009-09-14 19:38:57 +02:00
Andreas Steffen
29662a9b73
cosmetics
2009-09-14 19:29:05 +02:00
Andreas Steffen
5a4dee6dc4
enable debug level setting
2009-09-14 19:29:05 +02:00
Martin Willi
af0dfe4987
Fixed pluto certificate parsing
2009-09-14 17:18:43 +02:00
Martin Willi
b9fbd66587
Added support to build RSA keys from components in openssl
2009-09-14 14:29:10 +02:00
Andreas Steffen
341af94dc6
support of PKCS#10 certificate request generation without attributes
2009-09-14 00:45:51 +02:00
Andreas Steffen
210d287368
extended hasher_signature_algorithm_to_oid() function
2009-09-13 21:41:51 +02:00
Andreas Steffen
ba274c2343
removed req.h
2009-09-13 21:03:36 +02:00
Andreas Steffen
f03e0e9147
support of PKCS#10 certificate request parsing
2009-09-13 21:00:15 +02:00
Andreas Steffen
4c51c6be01
parsing error caused segfault in destroy()
2009-09-13 20:56:12 +02:00
Andreas Steffen
b6f28c2870
need two PKCS#9 OIDs
2009-09-13 00:42:15 +02:00
Andreas Steffen
beace4af14
corrected captions
2009-09-12 17:39:15 +02:00
Andreas Steffen
4da11016e7
fixed another typo
2009-09-12 06:44:11 +02:00
Andreas Steffen
abffb63ffe
fixed typo
2009-09-12 06:42:35 +02:00
Martin Willi
06a8df11d9
pki tool can issue/self-sign certificates with OCSP URIs
2009-09-11 17:17:56 +02:00
Martin Willi
6dc57cd02e
x509 plugin supports encoding of OCSP AuthorityInfo AccessLocations
2009-09-11 17:16:22 +02:00
Martin Willi
6d24a5d746
added lost session cookie buffer
2009-09-11 16:23:15 +02:00
Martin Willi
3b878dae7e
Removed chunk_from_buf() in favor of a simpler chunk_from_chars() macro
2009-09-11 15:39:35 +02:00
Martin Willi
3a7bd9bd49
pki tool can issue certificates with CRL distribution points
2009-09-11 15:36:22 +02:00
Martin Willi
881b259943
x509 plugin supports encoding of CRL distribution points
2009-09-11 15:36:22 +02:00
Martin Willi
31f87c29c7
double check session id has been initialized
2009-09-10 20:51:43 +02:00
Martin Willi
356b2b2780
pass NULL to library_init() to load settings from default file
2009-09-10 18:52:42 +02:00
Martin Willi
5b03a350fc
use NULL to load plugins from default plugin directory
2009-09-10 18:52:42 +02:00
Martin Willi
6de28173f0
remove obsolete @brief doxygen tags
2009-09-10 18:52:42 +02:00
Martin Willi
6d8e913ab6
Use wrapped mutex_t/condvar_t instead of pthread_mutex/cond_t
2009-09-10 18:52:42 +02:00
Martin Willi
48a606b5ff
libfast uses enumerator instead of deprecated iterator
2009-09-10 18:52:42 +02:00
Martin Willi
d73f453c29
Updated x509 plugin to the new builder API
2009-09-10 16:20:21 +02:00
Martin Willi
91ef5c66ab
Updated pubkey plugin to the new builder API
2009-09-10 16:20:20 +02:00
Martin Willi
872176d350
Updated pkcs1 plugin to the new builder API
2009-09-10 16:20:20 +02:00
Martin Willi
43224e9527
Updated pgp plugin to the new builder API
2009-09-10 16:20:20 +02:00
Martin Willi
de408caf93
Updated pem plugin to the new builder API
2009-09-10 16:20:19 +02:00