support of ECDSA signatures for all certificate types

src/libstrongswan/plugins/x509/x509_ac.c

@@ -796,6 +796,9 @@ static bool issued_by(private_x509_ac_t *this, certificate_t *issuer)
 		case OID_SHA512_WITH_RSA:
 			scheme = SIGN_RSA_EMSA_PKCS1_SHA512;
 			break;
+		case OID_ECDSA_WITH_SHA1:
+			scheme = SIGN_ECDSA_WITH_SHA1;
+			break;
 		default:
 			return FALSE;
 	}

src/libstrongswan/plugins/x509/x509_crl.c

@@ -452,6 +452,9 @@ static bool issued_by(private_x509_crl_t *this, certificate_t *issuer)
 		case OID_SHA512_WITH_RSA:
 			scheme = SIGN_RSA_EMSA_PKCS1_SHA512;
 			break;
+		case OID_ECDSA_WITH_SHA1:
+			scheme = SIGN_ECDSA_WITH_SHA1;
+			break;
 		default:
 			return FALSE;
 	}

src/libstrongswan/plugins/x509/x509_ocsp_request.c

@@ -267,6 +267,10 @@ static chunk_t build_optionalSignature(private_x509_ocsp_request_t *this,
 			oid = OID_SHA1_WITH_RSA;
 			scheme = SIGN_RSA_EMSA_PKCS1_SHA1;
 			break;
+		case KEY_ECDSA:
+			oid = OID_ECDSA_WITH_SHA1;
+			scheme = SIGN_ECDSA_WITH_SHA1;
+			break;
 		default:
 			DBG1("unable to sign OCSP request, %N signature not supported",
 				 key_type_names, this->key->get_type(this->key));

src/libstrongswan/plugins/x509/x509_ocsp_response.c

@@ -745,6 +745,9 @@ static bool issued_by(private_x509_ocsp_response_t *this, certificate_t *issuer)
 		case OID_SHA512_WITH_RSA:
 			scheme = SIGN_RSA_EMSA_PKCS1_SHA512;
 			break;
+		case OID_ECDSA_WITH_SHA1:
+			scheme = SIGN_ECDSA_WITH_SHA1;
+			break;
 		default:
 			return FALSE;
 	}