This way openssl will automatically detect the used algorithm of the pem and the helper is not limited to rsa.
Signed-off-by: Michael Grzeschik <[email protected]> --- scripts/lib/ptxd_lib_code_signing.sh | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/scripts/lib/ptxd_lib_code_signing.sh b/scripts/lib/ptxd_lib_code_signing.sh index bafdc1654..a98596b28 100644 --- a/scripts/lib/ptxd_lib_code_signing.sh +++ b/scripts/lib/ptxd_lib_code_signing.sh @@ -233,7 +233,7 @@ cs_import_pubkey_from_pem() { openssl_keyopt=( -passin "file:${OPENSSL_KEYPASS}" ) fi - openssl rsa \ + openssl pkey \ "${openssl_keyopt[@]}" \ -in "${pem}" -inform pem -pubout -outform der | softhsm_pkcs11_tool --type pubkey --write-object /dev/stdin --label "${role}" @@ -257,7 +257,7 @@ cs_import_privkey_from_pem() { openssl_keyopt=( -passin "file:${OPENSSL_KEYPASS}" ) fi - openssl rsa \ + openssl pkey \ "${openssl_keyopt[@]}" \ -in "${pem}" -inform pem -outform der | softhsm_pkcs11_tool --type privkey --write-object /dev/stdin --label "${role}" -- 2.39.5
