strongswan

Commit Graph

Author	SHA1	Message	Date
Reto Buerki	0063e03325	Do not hardwire keys to KEY_RSA Make the TKM private and public keys more easily extendable by determining the associated key type dynamically.	2013-03-19 15:23:51 +01:00
Reto Buerki	38c1fd3cb1	Provide TKM credential encoder The TKM credential encoder creates fingerprints of type KEYID_PUBKEY_INFO_SHA1 and KEYID_PUBKEY_SHA1 using CRED_PART_RSA_PUB_ASN1_DER. This makes the pkcs1 plugin unnecessary.	2013-03-19 15:23:51 +01:00
Adrian-Ken Rueegsegger	9a5c51c44f	Add TKM public key implementation The key unconditionally returns TRUE for the verify operation if it is called with a supported signature algorithm. All such verification operations are performed by the TKM (e.g. trustchain or auth octets verification) anyway, so this is safe.	2013-03-19 15:23:49 +01:00

Author

SHA1

Message

Date

Reto Buerki

0063e03325

Do not hardwire keys to KEY_RSA

Make the TKM private and public keys more easily extendable by
determining the associated key type dynamically.

2013-03-19 15:23:51 +01:00

Reto Buerki

38c1fd3cb1

Provide TKM credential encoder

The TKM credential encoder creates fingerprints of type
KEYID_PUBKEY_INFO_SHA1 and KEYID_PUBKEY_SHA1 using
CRED_PART_RSA_PUB_ASN1_DER.

This makes the pkcs1 plugin unnecessary.

2013-03-19 15:23:51 +01:00

Adrian-Ken Rueegsegger

9a5c51c44f

Add TKM public key implementation

The key unconditionally returns TRUE for the verify operation if it is called
with a supported signature algorithm. All such verification operations are
performed by the TKM (e.g. trustchain or auth octets verification) anyway, so
this is safe.

2013-03-19 15:23:49 +01:00

3 Commits