I am trying to write a JAVA program to establish a TLS client connection to a server using openssl FIPS object module on an Android platform.
I understand on a high level that I will have to build the FIPS module and write a JNI wrapper to allow the openssl routines to be invoked from JAVA and pass results back. But I am not quite clear about the specifics. In particular, since the private key cannot be extracted in JAVA, how does one give openssl the necessary key materials to use in the TLS handshaking? Do I have to go into the handshaking process and graft the the JAVA part into it?