On Wednesday 23 July 2003 07:44 pm, Dr. Stephen Henson wrote: > On Wed, Jul 23, 2003, Kevin Stefanik wrote: > > Someone asked about getting the s_client app working to test the opensc > > engine for openssl 0.9.7b. From what I can tell, s_client doesn't accept > > a -keyform argument and assumes that the key is in a file. Any > > objections or recommendations if I attempt to change that as below? The > > only real headache will be getting the engine function references into > > the right place. Can I use the SSL_CTX structure that's already being > > passed in for that? > > The easiest way to handle this is to get the key into an EVP_PKEY structure > using load_key() as the other apps do and then pass that to > SSL_CTX_use_PrivateKey(). That way you don't need to make any changes to > the SSL library. > > > Also, is there a way to load certificates through the engine interface? > > Not in 0.9.7. The storage engines in 0.9.8 should support that though. > > Steve.
Thanks for the info. Just modifying set_cert_stuff to call the engine key loading is much easier; as long as it's clean enough. Are the storage engines in development or just planning stages, now? Where can I peek for more info? Kevin ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
