Call own sign/verify callback - engine

Hello, I'd like that my callback is called when a sign/verify is being requested by *EVP_DigestSignFinal()* function. I've tried add a EVP_PKEY_METHOD to app_methods stack, that works good however doesnt fit on my solution. I noticed that creating an engine and set pkey methods there, it could so

RSA-PSS - Backwards compatability - EVP_PKEY_get0_RSA

y (RSA-PSS) . I have to support openssl 1.0.1h and 1.1.1b. -- Best regards, Pedro Lopes

Fails on verifying signature - RSA_padding_check_PKCS1_type_1:invalid padding

gQDsCXvs8rmEDP+NuB4mCvztondC +yfzy6DYswE6jvSJdgZe8PAhkNagyoWsCNGqNEqpQmXY1Ufmxh4tdInod/KyT4uZ 8vpu+yhqujRlwill+T9JCtA+DnUSn0QiOV7OVFRMkleGW0ADr1LUp+wRe4aS/xxo c5GAc7UhAy7VZyj6jQIBAQ== -END PUBLIC KEY- Could you please help me with this? Thanks in advance. -- Regards, Pedro Lopes

Re: Fails on verifying signature - RSA_padding_check_PKCS1_type_1:invalid padding

text > -out /tmp/t.text.sig > > engine "pkcs11" set. > > Enter PKCS#11 token PIN for Blumenthal, Uri (UR20980): > > $ openssl rsautl -engine pkcs11 -keyform engine -pubin -verify -inkey > "pkcs11:manufacturer=piv_II;object=SIGN%20pubkey;type=public" -in > /tmp/t.tex

Opaque structures - Cant access buf_len variable from evp_cipher_ctx_st

= NULL_PTR || *pulPartLen < required_len) { *pulPartLen = required_len; return pPart == NULL_PTR ? CKR_OK : CKR_BUFFER_TOO_SMALL; } ... } -- Kind Regards, Pedro Lopes