On Wed, Jul 23, 2003, Kevin Stefanik wrote: > Someone asked about getting the s_client app working to test the opensc engine > for openssl 0.9.7b. From what I can tell, s_client doesn't accept a -keyform > argument and assumes that the key is in a file. Any objections or > recommendations if I attempt to change that as below? The only real > headache will be getting the engine function references into the right place. > Can I use the SSL_CTX structure that's already being passed in for that? > >
The easiest way to handle this is to get the key into an EVP_PKEY structure using load_key() as the other apps do and then pass that to SSL_CTX_use_PrivateKey(). That way you don't need to make any changes to the SSL library. > Also, is there a way to load certificates through the engine interface? > Not in 0.9.7. The storage engines in 0.9.8 should support that though. Steve. -- Dr Stephen N. Henson. Core developer of the OpenSSL project: http://www.openssl.org/ Freelance consultant see: http://www.drh-consultancy.demon.co.uk/ Email: [EMAIL PROTECTED], PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
