Andreas Jellinghaus wrote: > I got very bad results with OpenSSL 1.0.0 (and 1.0.0a) on Windows in Server > Environment: stability issues that couldn't be tracked down. The same code > works well with 0.9.8o. > > So maybe you too want to go back to the last 0.9.8* release, until OpenSSL > releases a stable 1.0.* version? > > (I saw the changes for the build project using openssl 1.0.0a now...) > Not quite related to the topic.
Afaiu, in OpenSSL 1.0.0 it's possible to generate the RSA key with an engine using the command line tools, there is no such possibility in the 0.9.x versions. From your point of view, is it worth to implement the 'key_gen' facility in OpenSC engine_pkcs11 & libp11 ? The same about implementing the engine's 'store_meth'. Afaiu, in this case OpenSSL can be used to list/store/delete certificates, data, ... on the card, and probably more. (For a moment I do not see how to access the engine's 'store' with the OpenSSL tools.) I have in mind the unique family of tools to perform all card enrollment operations. (Actually, when doing decentralized enrollment: key is generated with OpenSC, P10 is signed with OpenSSL, certificate is imported with OpenSC.) > Regards, Andreas > Kind wishes, Viktor. > _______________________________________________ > opensc-devel mailing list > [email protected] > http://www.opensc-project.org/mailman/listinfo/opensc-deve _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
