I'm trying to understand how to use a pkcs#11 token/smartcard in
conjunction with openssl to authenticate an SSL client session. I'm
trying to find anything online showing how to stitch all this together
and just spinning around in circles, getting more confused.
The reference documentation on the various components that I'm finding
isn't explaining things at all well, but I gather this works with
callbacks, where I would register a psk_client_callback and when that
gets called, I'd make the PKCS#11 calls to my token provider to generate
the psk key pair?
just for extra fun, I need to do this with python and M2Python which
adds another layer of obfuscation to the mess.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
