Andreas Jellinghaus wrote: > in sc-pkcs11.h I see this: > /* Decide whether to use pkcs11 for initialization support */ > #ifdef ENABLE_OPENSSL > #define USE_PKCS15_INIT > #endif > > so we can only initialized cards if openssl is available? > also many drivers require openssl or are restricted, unless > openssl is available.
The other questions to ask, are what features from OpenSSL are being used, and could these be easily replaced. I know the PIV uses BIO, PEM and RSA functions to read and write public keys to files, mostly to make them text files. But it also use the EVP_encrypt and EVP_decrypt to use with the public keys, as the card can not do these. > > so I wonder if we should simply require openssl for trunk. > I don't know a single user that does not compile opensc with > openssl, or what use opensc would be in such a situation. > > what do you think? So I would say to require OpenSSL. If on the other hand are looking at using gnutls to replace OpenSSL? > > Regards, Andreas > _______________________________________________ > opensc-devel mailing list > [email protected] > http://www.opensc-project.org/mailman/listinfo/opensc-devel > > -- Douglas E. Engert <[email protected]> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
