[strongSwan] Strongswan 5.6.1 X509 certificate validation

Philip Taylor philipjt at ntlworld.com
Mon Aug 30 01:23:18 CEST 2021

The Ubuntu strongSwan 5.6.1 base application I am working with validates
certificates wth CRLs using OpenSSL before installing all certs and CRLs
via a VICI interface.

*         I am surprised to see this code as I thought it would be part of
strongSwan certification validation.

*         I have not yet found any words that describe what certificate
validation is performed by strongSwan.


Please point me at the words that describe how strongSwan validates
certificates against ICA and CA certificates, and also CRLs.

*         My concern is that I will delete this duplicated application
functionality,  only to find it is really required.


Philip Taylor


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20210830/e9f6ca7e/attachment.html>

More information about the Users mailing list