Hello all, Over at Arroyo, we have a significant development use case for passing around certificates as strings and never writing them to file. Documentation for this is sparse, and examples seem to be unfindable. Reading over the source code, this direct loading of certificate data does not seem to be a supported use case but we can't say this with 100% confidence.
This is related to https://lists.strongswan.org/pipermail/users/2019-May/013563.html and has ties to the following files: https://github.com/strongswan/strongswan/blob/master/src/libcharon/plugins/vici/vici_config.c https://github.com/strongswan/strongswan/blob/master/src/libcharon/plugins/vici/vici_cred.c https://github.com/strongswan/strongswan/blob/master/src/swanctl/commands/load_conns.c https://github.com/strongswan/strongswan/blob/master/src/swanctl/commands/load_creds.c https://github.com/strongswan/strongswan/blob/master/src/libstrongswan/credentials/sets/auth_cfg_wrapper.c Is this a clear and concise enough use case and feature request, or should some further clarification be worked out? If this is acceptable, what more should we do to properly make such a feature request? -- Please be advised that this email may contain confidential information. If you are not the intended recipient, please notify us by email by replying to the sender and delete this message. The sender disclaims that the content of this email constitutes an offer to enter into, or the acceptance of, any agreement; provided that the foregoing does not invalidate the binding effect of any digital or other electronic reproduction of a manual signature that is included in any attachment. <https://twitter.com/arroyo_networks> <https://www.linkedin.com/company/arroyo-networks> <https://www.github.com/ArroyoNetworks>
