Control flow to OpenSSL
I could not find this info in the README section or in the Strongswan forum which is why I'm posting it here.
Suppose I'm using the OpenSSL engine to perform IKEv1 and IKEv2, then how does the control flow to OpenSSL?
Code for IKE I see is in libcharon. So I'm interested in understanding how does control from libstrongswan and libcharon and OpenSSL plugin.
Thanks in advance!
#2 Updated by Noel Kuntze 3 months ago
OpenSSL is only used for cryptographic primitives, third party lib dependencies and certificate authentication (if no other plugin provides the functionality). OpenSSL never takes part in the IKE negotiation as part of the control flow of the protocol or the parsing of packets. Only its primitives are used for cryptographic operations (and certificate parsing and authentication).