Project

General

Profile

SQLite HOWTO » History » Version 3

Martin Willi, 28.06.2008 12:13
document identity, private_key, certificate, and authentication types

1 1 Martin Willi
= SQLite HOWTO =
2 2 Martin Willi
3 3 Martin Willi
SQLite tables defined in [browser:trunk/testing/hosts/default/etc/ipsec.d/tables.sql tables.sql]
4 3 Martin Willi
5 3 Martin Willi
== TABLE identities ==
6 3 Martin Willi
7 3 Martin Willi
'''type''' defined in [browser:trunk/src/libstrongswan/utils/identification.h#L58 identification.h]
8 3 Martin Willi
9 3 Martin Willi
||  0||ID_ANY             ||matches any id                      ||right=''%any''                                            ||
10 3 Martin Willi
||  1||ID_IPV4_ADDR       ||IPv4 address                        ||right=''192.168.0.1''                                     ||
11 3 Martin Willi
||  2||ID_FQDN            ||fully qualified domain name         ||right=''@moon.strongswan.org''                            ||
12 3 Martin Willi
||  3||ID_RFC822_ADDR     ||RFC822 email address                ||right=''carol@strongswan.org''                            ||
13 3 Martin Willi
||  5||ID_IPV6_ADDR       ||IPv6 address                        ||right=''fec0::1''                                         ||
14 3 Martin Willi
||  9||ID_DER_ASN1_DN     ||ASN.1 distinguished name            ||right=''C=CH, O=Linux strongSwan, CN=moon.strongswan.org''||
15 3 Martin Willi
|| 11||ID_KEY_ID          ||opaque octet string                 ||right=''@#                                                ||
16 3 Martin Willi
||202||ID_PUBKEY_INFO_SHA1||SHA-1 hash over subjectPublicKeyInfo||                                                          ||
17 3 Martin Willi
||203||ID_PUBKEY_SHA1     ||SHA-1 hash over subjectPublicKey    ||                                                          ||
18 3 Martin Willi
19 3 Martin Willi
== TABLE private_keys ==
20 3 Martin Willi
21 3 Martin Willi
'''type''' defined in [browser:trunk/src/libstrongswan/credentials/keys/public_key.h#L37 public_key.h]
22 3 Martin Willi
23 3 Martin Willi
||1||KEY_RSA  ||RSA key in PKCS!#1 format     ||
24 3 Martin Willi
||2||KEY_ECDSA||ECDSA key in ANSI X9.62 format||
25 3 Martin Willi
26 3 Martin Willi
== TABLE certificates ==
27 3 Martin Willi
28 3 Martin Willi
'''type''' defined in [browser:trunk/src/libstrongswan/credentials/certificates/certificate.h#L35 certificate.h]
29 3 Martin Willi
30 3 Martin Willi
||1||CERT_X509          ||X.509 certificate                ||
31 3 Martin Willi
||2||CERT_X509_CRL      ||X.509 certificate revocation list||
32 3 Martin Willi
||5||CERT_X509_AC       ||X.509 attribute certificate      ||
33 3 Martin Willi
||6||CERT_TRUSTED_PUBKEY||trusted public key               ||
34 3 Martin Willi
35 3 Martin Willi
'''keytype''' defined in [browser:trunk/src/libstrongswan/credentials/keys/public_key.h#L37 public_key.h]
36 3 Martin Willi
37 3 Martin Willi
== TABLE peer_configs ==
38 3 Martin Willi
39 3 Martin Willi
'''auth_method''' defined in [browser:trunk/src/charon/config/peer_cfg.h#L87 peer_cfg.h]
40 3 Martin Willi
41 3 Martin Willi
||1||CONF_AUTH_PUBKEY||authentication using public key      ||authby=''rsasig'', authby=''ecdsasig''||
42 3 Martin Willi
||2||CONF_AUTH_PSK   ||authentication using pre-shared secret||authby=''psk''                       ||
43 3 Martin Willi
||3||CONF_AUTH_EAP   ||authentication using EAP              ||authby=''eap''                       ||