Am Samstag 17 April 2010 16:30:02 schrieb Martin Paljak: > Compatibility with OpenSSL 1.0 is a good reason for a new release but I've > not yet understood if it really is a problem with OpenSC or OpenSSL > (reading up)
as far as I understand the issue: * the combination of openssl, gost engine and opensc has problems * to work around that, the config loading in opensc was disabled * that breaks normal openssl + engine_pkcs11 + opensc combination. so I think it is best to revert the hack for gost, so normal users can again use opensc with openssl and engine_pkcs11. the problem with gost engine remains then, but I don't know it well enough to say if the problem is in openssl, gost or opensc. or maybe the problem is using openssl with two engines (gost and engine_pkcs11) which both load opensc? not sure if I understood this right. but if the situation is like that, maybe the engines should be merged into one engine that handles both rsa and gost encryption? I guess Aleksey can explain the situaiton best (added as cc:). Andreas _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
