On Tue, 24 Feb 2015, Matt Rogers wrote:
Yes, the re-write uses the SQL format database which is for allowing simultaneous access. Now the decoding, verification, revocation checking and importing of certificates is handled by a helper program that does its own initialization of what will be pluto's 'runtime' nss db in the SQL format. When it imports certificates, pluto is able to pick those up right away, so it works well.
When you say "runtime" you mean an ephemeral store right? I think Bob called this the "cached nss db". That is, the "runtime" nss.db is the file based nss.db plus the cached nss.db. On stop the cache is lost. Paul _______________________________________________ Swan-dev mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan-dev
