Btw, how do you build the CAPI engine in versions of openssl that don't
have the enable-capieng configure argument (e.g., 1.0.2u)? I tried
-D__COMPILE_CAPIENG, but e_capi.c isn't even being compiled.
Thanks,
Brett S.
On Fri, Oct 23, 2020 at 9:45 AM Matt Caswell wrote:
>
>
> On 23/10/2020 14:10,
Jakob,
I don't really understand why the engine *needs* to do PSS. Neither of the
badssl certificates seem to use it for signatures. (I'm assuming the fact
that a cert was signed with RSA-PSS would show up in the Windows
certificate viewer...) If you could give a short summary of the problem as
you
Dear Francesco,
I think this link is relevant:
https://github.com/OpenSC/libp11/blob/master/src/eng_front.c
On Sat, Oct 24, 2020 at 1:45 PM Francesco Pretto wrote:
> Hi Dmitry,
>
> thank you for the prompt answer. Are you able to provide me with a
> link to an example of creating such engines t
Hi Dmitry,
thank you for the prompt answer. Are you able to provide me with a
link to an example of creating such engines that will fit this use
case? On my searches I was able to find staff like EVP_PKEY_METHOD[1]
but I wasn't able to use them for my purpose. Not assuming how stuff
works today, i
Dear Francesco,
On Sat, Oct 24, 2020 at 1:06 PM Francesco Pretto wrote:
> Hello,
>
> I'm trying to create a CMS context for subsequent export using
> CMS_sign(). I add a signer using CMS_add1_signer() that allows me to
> specify a X509 certificate and a hash function. I would like the CMS
> cont
Hello,
I'm trying to create a CMS context for subsequent export using
CMS_sign(). I add a signer using CMS_add1_signer() that allows me to
specify a X509 certificate and a hash function. I would like the CMS
context to perform hash computation and ANS1 structure filling, but I
want to delegate enc
