https://github.com/nodejs/help/issues/1622
Here is a more detailed explanation of how NodeJS is failing...I posted in November, but we are close to production, so scrambling to find solutions Thanks so much for the help. -------- Original Message -------- From: Viktor Dukhovni <openssl-us...@dukhovni.org> Sent: Sun Jun 02 19:14:29 PDT 2019 To: "openssl-users@openssl.org" <openssl-users@openssl.org> Subject: Re: -keyform ENG and NodeJS > On Jun 2, 2019, at 9:47 PM, Erik Madsen <emad...@hbmachining.com> wrote: > > It is TLS and we want Root Of Trust from a non exportable, non readable > Private key on the Hardware Security Module. > > By explicitly adding "-keyform ENG" s_client works perfectly. > > And with cURL "--key-type ENG" also works > > NodeJs crypto module has setEngine but there's no option for passing keyform. > > I requested from NodeJs team as well, but if we can do something to tell > openssl "keyform is always ENG" I think maybe that would work. If nobody on the list finds something I missed, a feature request on Github is the next step, or you could do that right away. [ Some on the team prefer to track issues on Github from the outset, I prefer to resolve routine questions on the list, and move to Github when it is clear that developer action will be needed to resolve the issue. The workflow preference is matter of taste... ] -- Viktor.