On Mon, Apr 12, 2010, Klaus Heinrich Kiwi wrote: > On Fri, 9 Apr 2010 11:58:57 -0300 > Klaus Heinrich Kiwi <[email protected]> wrote: > > > Is there a way to register a RSA dynamic engine that would only > > support e.g. RSA512 to RSA2048, leaving RSA4096 for OpenSSL to deal > > with? > > > > I noted that ENGINE_set_ciphers() and ENGINE_set_digests() can bring > > the sizes/modes implicitly, but what to do with > > ENGINE_set_RSA/DSA/DH()? > > > Anyone? >
There isn't a way to do this at present. What you can do however is to fallback to software methods if the modulus size isn't supported. The fallback might involve calling the software OpenSSL method for the corresponding algorithm. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
