On Fri, Aug 17, 2012, Felipe Blauth wrote: > I see. I've digged a little bit more in the built-in engines and found out > that this is the way some of them are implemented. I guess there's no way > to to the same for ECDSA_METHOD tough, since there's no finish function > pointer on that... >
There is a way to attach data to an EC_KEY structure which differs from the normal ex_data methods. Data is attached on a per key basis (as opposed to globally for ex_data) and once cleaned up the function pointers are no longer referenced. See functions like EC_KEY_insert_key_method_data. > By the way, I took a look at the gost engine, which uses EVP_PKEY_METHOD. > Is it possible to achieve the behaviour I'm looking for only using the EVP > interface. Better explaining, I want to implement RSA and ECDSA signing and > verifying, and a proper cleanup for both. If it is possible, I'll use that > engine as an example. > It should be possible in most cases though this hasn't been tested for additional implementations of existing methods: the gost ENGINE implements completely new algorithms. There are a few exceptions where the old APIs haven't yet been updated. The most notable is SSL/TLS/DTLS client authentication. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org