Project

General

Profile

SQLite HOWTO » History » Version 3

Version 2 (Martin Willi, 23.06.2008 21:29) → Version 3/28 (Martin Willi, 28.06.2008 12:13)

= SQLite HOWTO =

* SQLite tables defined in table definition template : [browser:trunk/testing/hosts/default/etc/ipsec.d/tables.sql tables.sql]

== TABLE identities ==

'''type''' defined in [browser:trunk/src/libstrongswan/utils/identification.h#L58 identification.h]

|| 0||ID_ANY ||matches any id ||right=''%any'' ||
|| 1||ID_IPV4_ADDR ||IPv4 address ||right=''192.168.0.1'' ||
|| 2||ID_FQDN ||fully qualified domain name ||right=''@moon.strongswan.org'' ||
|| 3||ID_RFC822_ADDR ||RFC822 email address ||right=''carol@strongswan.org'' ||
|| 5||ID_IPV6_ADDR ||IPv6 address ||right=''fec0::1'' ||
|| 9||ID_DER_ASN1_DN ||ASN.1 distinguished name ||right=''C=CH, O=Linux strongSwan, CN=moon.strongswan.org''||
|| 11||ID_KEY_ID ||opaque octet string ||right=''@# ||
||202||ID_PUBKEY_INFO_SHA1||SHA-1 hash over subjectPublicKeyInfo|| ||
||203||ID_PUBKEY_SHA1 ||SHA-1 hash over subjectPublicKey || ||

== TABLE private_keys ==

'''type''' defined in [browser:trunk/src/libstrongswan/credentials/keys/public_key.h#L37 public_key.h]

||1||KEY_RSA ||RSA key in PKCS!#1 format ||
||2||KEY_ECDSA||ECDSA key in ANSI X9.62 format||

== TABLE certificates ==

'''type''' defined in [browser:trunk/src/libstrongswan/credentials/certificates/certificate.h#L35 certificate.h]

||1||CERT_X509 ||X.509 certificate ||
||2||CERT_X509_CRL ||X.509 certificate revocation list||
||5||CERT_X509_AC ||X.509 attribute certificate ||
||6||CERT_TRUSTED_PUBKEY||trusted public key ||

'''keytype''' defined in [browser:trunk/src/libstrongswan/credentials/keys/public_key.h#L37 public_key.h]

== TABLE peer_configs ==

'''auth_method''' defined in [browser:trunk/src/charon/config/peer_cfg.h#L87 peer_cfg.h]

||1||CONF_AUTH_PUBKEY||authentication using public key ||authby=''rsasig'', authby=''ecdsasig''||
||2||CONF_AUTH_PSK ||authentication using pre-shared secret||authby=''psk'' ||
||3||CONF_AUTH_EAP ||authentication using EAP ||authby=''eap'' ||