Hi Harry, yes your assumption is correct. swanctl decrypts protected private keys and sends them as plaintext via VICI to the charon daemon.
Best regards Andreas On 06.01.2016 03:59, Harry Chan-Maestas wrote:
Hi, Is this assumption/understanding correct? Going through the swantcl code, it seems that the way it deals with encrypted private keys is by reading the key, decrypting it, and sending the decrypted version to Charon. If this is not the case, would anyone know what is the API to send the encrypted RSA private key and the decrypt password to Charon through VICI? Thank you in advance, Harry
====================================================================== Andreas Steffen [email protected] strongSwan - the Open Source VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]==
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Dev mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/dev
