Re: Error in X509_check_private_key when using pkcs11 engine (OpenSSL 1.0.2j)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 09/16/2017 12:18 AM, Dr. Stephen Henson wrote:
> On Fri, Sep 15, 2017, Anton Gerasimov wrote:
>
>> So it turns out load_privkey() function of engine_pkcs11.so sets pub_key
>> in the returned 'struct ec_key_st' to NULL. Is it a failure inside
>> engine_pkcs11.so?
>>
> Well sort of. OpenSSL requires that public key components are set for private
> keys (except for a legacy RSA case).

OK, thank you. It turns out I've just used the wrong command to import a
key into SoftHSM, namely 'pkcs11-tool -w' instead of 'softhsm2-tool
--import', so libp11 could only find the private key.

Thanks,
Anton


-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users



[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux