Sure. I think it will work for a simple use cases when there is only
one key. And yes, for anything more sophisticated custom code is required.
On 8/9/17 10:58 AM, Roumen Petrov wrote:
> Aleksey Sanin wrote:
>> It was discussed in the mailing list in the past. You need to
>> create openssl config file to use the engine by default and
> Hmm, in general this configuration will not work.
> Engines that operate with keys material stored externally cannot be set
> as default - usually this break operations with keys stored differently
> (file and etc.).
>> pass it to xmlsec1 command line tool.
> Perhaps it will work for simple command line case with single key.
> On other side openssl command line option -engine specify where is
> located key (call method ENGINE_load_private_key).
> xmlsec mailing list
xmlsec mailing list